This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PeJoHdoAcCp1l6cSV-FPenJeiQ4.cer File: PeJoHdoAcCp1l6cSV-FPenJeiQ4.cer (raw, json) Hash identifier: ENeNtRx2A2cmzwUilRg1zlHFCKfo/KIGGvCc/x3kUuE= Subject key identifier: 3D:E2:68:1D:DA:00:70:2A:75:97:A7:12:57:E1:4F:7A:72:5E:89:0E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC78AF5507D08F1AC8BB424B9FAEBD6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/PeJoHdoAcCp1l6cSV-FPenJeiQ4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:17:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 50799 IP: 145.43.0.0/16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:8a:f5:50:7d:08:f1:ac:8b:b4:24:b9:fa:eb:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3de2681dda00702a7597a71257e14f7a725e890e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d1:cb:50:2b:88:79:80:20:6e:ca:8b:ea:e7: 57:7f:74:7e:f3:3b:d6:d1:ad:68:33:de:ed:7d:4b: 41:c0:c3:f4:f0:3a:87:08:5e:5e:7a:d5:06:dc:31: f9:e5:ad:a1:24:9d:66:62:a2:e2:85:8b:7a:12:ec: af:50:37:78:1c:e0:61:a4:87:a9:ec:72:27:c2:02: bc:87:db:5f:3e:70:b6:53:b1:29:86:27:30:e0:66: 89:dd:10:2c:7a:76:40:67:12:3e:5e:5c:b5:41:36: a3:20:74:9c:5b:ca:62:d5:63:be:c3:fc:3c:26:12: a0:14:c3:ef:fb:86:ba:e1:88:54:7b:67:f0:d6:31: 70:1b:18:28:b8:16:39:a1:86:47:88:f8:16:8a:15: 74:ad:1d:8d:c6:35:aa:0f:f5:83:00:75:fa:35:29: f6:a4:39:fd:16:7c:d2:b5:9a:37:03:d5:38:37:90: a8:9f:5b:8f:7f:d1:c0:58:29:9f:f8:0f:18:11:c0: 72:c6:d1:8a:07:95:8c:ca:a3:fb:ab:46:83:3a:ab: 44:9e:82:0c:18:2d:38:26:c0:0e:93:ae:28:18:27: c5:9e:f2:36:53:5e:f9:2d:d5:64:ea:ab:2c:ca:16: bc:7d:7d:ff:e0:20:a2:96:48:00:94:30:50:b3:40: 3c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E2:68:1D:DA:00:70:2A:75:97:A7:12:57:E1:4F:7A:72:5E:89:0E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/PeJoHdoAcCp1l6cSV-FPenJeiQ4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.43.0.0/16 sbgp-autonomousSysNum: critical Autonomous System Numbers: 50799 Signature Algorithm: sha256WithRSAEncryption 1f:88:de:1a:4e:16:a8:3b:bc:9b:f0:95:dc:bc:7c:91:e4:63: ef:be:6d:99:55:53:89:2b:60:84:6d:a5:fa:d0:d4:d6:4a:d5: a0:8f:16:2f:04:1f:82:29:41:f4:27:d8:76:03:71:8e:31:11: c0:24:fc:f8:1a:64:b0:b4:8b:59:2a:84:0e:39:fd:33:99:3e: 82:26:fc:6f:4a:60:55:9d:8c:33:d8:08:ab:52:9a:e5:eb:9b: 7e:f3:5e:7f:41:a3:70:4a:3c:44:5b:87:08:61:d8:41:63:62: 35:7b:f6:4e:6a:94:60:52:4e:4a:d6:c0:ea:fe:2f:e8:54:3d: 43:2c:09:0f:2c:c1:56:a5:77:77:46:41:f6:61:d7:d4:29:37: e5:36:d2:fb:c3:7a:b9:b7:b4:4c:16:05:0d:90:49:95:da:e5: 1b:0d:80:a2:67:ee:9f:e7:7c:36:eb:91:cd:da:98:91:67:b4: c4:cf:ac:fa:f3:76:c2:cf:34:dc:29:c7:eb:30:cd:1e:00:f1: 7b:ed:ee:92:3e:22:d4:aa:07:90:29:a3:55:b3:c6:b8:ab:a4: 37:d1:a7:24:ac:5d:7e:bc:18:34:37:5b:8b:05:80:2d:0e:31: 1e:d0:82:5f:24:21:f3:b4:6c:1c:6f:34:d3:a2:1d:e3:d8:f7: d0:30:c1:eb -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt6x4r1UH0I8ayLtCS5+uvWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZGUyNjgxZGRhMDA3MDJhNzU5N2E3MTI1N2UxNGY3YTcyNWU4OTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNHLUCuIeYAgbsqL6udXf3R+8zvW 0a1oM97tfUtBwMP08DqHCF5eetUG3DH55a2hJJ1mYqLihYt6EuyvUDd4HOBhpIep 7HInwgK8h9tfPnC2U7Ephicw4GaJ3RAsenZAZxI+Xly1QTajIHScW8pi1WO+w/w8 JhKgFMPv+4a64YhUe2fw1jFwGxgouBY5oYZHiPgWihV0rR2NxjWqD/WDAHX6NSn2 pDn9FnzStZo3A9U4N5Con1uPf9HAWCmf+A8YEcByxtGKB5WMyqP7q0aDOqtEnoIM GC04JsAOk64oGCfFnvI2U175LdVk6qssyha8fX3/4CCilkgAlDBQs0A8IwIDAQAB o4ICnzCCApswHQYDVR0OBBYEFD3iaB3aAHAqdZenElfhT3pyXokOMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFhLzM2ZDZl NC04ZDc3LTQ4ZDUtYWZiNi1lMGFjNzI2M2RiMTIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWEvMzZkNmU0 LThkNzctNDhkNS1hZmI2LWUwYWM3MjYzZGIxMi8xL1BlSm9IZG9BY0NwMWw2Y1NW LUZQZW5KZWlRNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUF BwEHAQH/BA8wDTALBAIAATAFAwMAkSswGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQID AMZvMA0GCSqGSIb3DQEBCwUAA4IBAQAfiN4aThaoO7yb8JXcvHyR5GPvvm2ZVVOJ K2CEbaX60NTWStWgjxYvBB+CKUH0J9h2A3GOMRHAJPz4GmSwtItZKoQOOf0zmT6C JvxvSmBVnYwz2AirUprl65t+815/QaNwSjxEW4cIYdhBY2I1e/ZOapRgUk5K1sDq /i/oVD1DLAkPLMFWpXd3RkH2YdfUKTflNtL7w3q5t7RMFgUNkEmV2uUbDYCiZ+6f 53w265HN2piRZ7TEz6z683bCzzTcKcfrMM0eAPF77e6SPiLUqgeQKaNVs8a4q6Q3 0ackrF1+vBg0N1uLBYAtDjEe0IJfJCHztGwcbzTToh3j2PfQMMHr -----END CERTIFICATE-----Generated at Wed Jan 21 08:58:03 2026 by rpki-client