This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Q0llhOXPObVodN6Nx3qjpv-eih4.cer File: Q0llhOXPObVodN6Nx3qjpv-eih4.cer (raw, json) Hash identifier: iZcI5fBiQtLJVOHmcz8w8VFgck8VkqYCxaSj9xBB3vU= Subject key identifier: 43:49:65:84:E5:CF:39:B5:68:74:DE:8D:C7:7A:A3:A6:FF:9E:8A:1E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15FAE1EA6F971541CF83ACC5608C81 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f7/fbc3a9-0564-4a2c-ab11-e2c9228aac53/1/Q0llhOXPObVodN6Nx3qjpv-eih4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f7/fbc3a9-0564-4a2c-ab11-e2c9228aac53/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.1.106.0/24 IP: 2001:7f8:c0::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:fa:e1:ea:6f:97:15:41:cf:83:ac:c5:60:8c:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=43496584e5cf39b56874de8dc77aa3a6ff9e8a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ff:0b:48:6a:90:8b:21:81:0b:f7:b9:df:65: 27:67:5d:33:68:b4:72:f6:0a:e8:41:20:72:52:05: a5:5c:d9:b8:7b:83:11:8a:d1:bb:80:a0:f9:ec:1f: 70:a7:3b:bb:b8:d6:dd:d3:a5:65:7d:a5:e5:b6:7c: 3f:86:55:99:51:3a:66:41:67:d2:2a:4e:24:1f:10: 7b:d1:62:a5:1e:d6:a5:f9:11:17:35:a4:35:ae:ee: 3b:6d:41:1e:78:c9:e5:56:ee:31:81:39:d6:84:50: 30:4c:b8:00:66:bb:25:72:b0:09:b3:76:5b:7a:47: 8f:34:87:6b:af:b0:4c:83:90:8a:1f:fc:7a:ba:f9: 4b:2f:72:3c:0a:fa:41:a4:8b:20:e7:7d:c7:eb:d0: 38:f9:16:e2:9d:ca:4e:f2:3a:e4:25:b3:4a:49:d1: 7f:0c:1f:9c:76:84:6d:2d:ce:d0:ef:63:93:69:cc: c4:09:13:ad:9b:a7:6b:91:29:9c:98:a1:22:08:07: f5:b7:ac:6a:2d:f3:cd:f8:df:a8:bc:be:af:e6:a2: 74:cd:dc:7e:b5:f5:58:52:70:8b:b8:73:4e:ab:eb: 4f:fc:24:37:7f:81:e5:b1:b4:92:05:dd:58:43:96: 20:ba:a7:ff:f9:1a:8d:10:7d:85:ce:0b:ba:78:46: cd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:49:65:84:E5:CF:39:B5:68:74:DE:8D:C7:7A:A3:A6:FF:9E:8A:1E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/fbc3a9-0564-4a2c-ab11-e2c9228aac53/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/fbc3a9-0564-4a2c-ab11-e2c9228aac53/1/Q0llhOXPObVodN6Nx3qjpv-eih4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.106.0/24 IPv6: 2001:7f8:c0::/48 Signature Algorithm: sha256WithRSAEncryption 0b:3c:0a:c2:4b:00:0d:c4:b1:eb:8e:3d:c9:82:e2:80:42:cb: ec:39:25:3d:b8:d6:0d:9c:1a:61:0e:91:b2:b8:df:13:ed:28: fc:a4:03:39:10:cd:11:ea:15:1f:89:7c:6c:6b:bb:a6:0b:ea: 90:e3:f8:48:37:75:a6:74:97:ec:2b:7f:9a:c0:84:b0:fa:d9: c9:d4:46:60:fd:ce:37:0e:e0:8b:28:ed:bb:3a:dc:bc:f1:e5: 4d:c3:7c:9e:43:c1:a8:65:b6:d6:b9:c7:9b:d4:8b:ae:5b:cc: 48:95:55:32:4e:85:a8:c0:8f:23:01:21:7b:22:e2:de:a2:45: cb:00:c4:79:3a:ab:05:d1:89:ea:f1:6d:cc:a2:e1:75:7d:94: 47:ce:30:1e:b2:66:2c:06:9d:74:cc:df:47:3c:5e:fd:06:be: 7a:67:46:02:f5:d7:73:e6:0d:f1:16:e6:0f:7c:83:09:3d:b8: 82:75:38:e9:3e:2a:ee:61:4c:61:7f:03:39:b6:b8:b3:32:7f: c8:5d:b2:f6:77:d2:f6:0b:53:2d:e9:7c:30:16:fc:b5:96:03: 80:34:81:67:e7:51:95:5f:b7:9e:c5:40:46:2a:cc:19:d3:10: e0:e6:96:46:97:6f:ed:8b:e0:58:89:08:79:cd:1e:45:81:9d: 5e:01:89:1b -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgISAZt/Ffrh6m+XFUHPg6zFYIyBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzQ5NjU4NGU1Y2YzOWI1Njg3NGRlOGRjNzdhYTNhNmZmOWU4YTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxP8LSGqQiyGBC/e532UnZ10zaLRy 9groQSByUgWlXNm4e4MRitG7gKD57B9wpzu7uNbd06VlfaXltnw/hlWZUTpmQWfS Kk4kHxB70WKlHtal+REXNaQ1ru47bUEeeMnlVu4xgTnWhFAwTLgAZrslcrAJs3Zb ekePNIdrr7BMg5CKH/x6uvlLL3I8CvpBpIsg533H69A4+RbincpO8jrkJbNKSdF/ DB+cdoRtLc7Q72OTaczECROtm6drkSmcmKEiCAf1t6xqLfPN+N+ovL6v5qJ0zdx+ tfVYUnCLuHNOq+tP/CQ3f4HlsbSSBd1YQ5Yguqf/+RqNEH2Fzgu6eEbNTQIDAQAB o4IClTCCApEwHQYDVR0OBBYEFENJZYTlzzm1aHTejcd6o6b/nooeMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y3L2ZiYzNh OS0wNTY0LTRhMmMtYWIxMS1lMmM5MjI4YWFjNTMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcvZmJjM2E5 LTA1NjQtNGEyYy1hYjExLWUyYzkyMjhhYWM1My8xL1EwbGxoT1hQT2JWb2RONk54 M3FqcHYtZWloNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAuQFqMA8EAgACMAkDBwAgAQf4AMAwDQYJKoZI hvcNAQELBQADggEBAAs8CsJLAA3EseuOPcmC4oBCy+w5JT241g2cGmEOkbK43xPt KPykAzkQzRHqFR+JfGxru6YL6pDj+Eg3daZ0l+wrf5rAhLD62cnURmD9zjcO4Iso 7bs63Lzx5U3DfJ5Dwahltta5x5vUi65bzEiVVTJOhajAjyMBIXsi4t6iRcsAxHk6 qwXRierxbcyi4XV9lEfOMB6yZiwGnXTM30c8Xv0GvnpnRgL113PmDfEW5g98gwk9 uIJ1OOk+Ku5hTGF/Azm2uLMyf8hdsvZ30vYLUy3pfDAW/LWWA4A0gWfnUZVft57F QEYqzBnTEODmlkaXb+2L4FiJCHnNHkWBnV4BiRs= -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:38 2026 by rpki-client