This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Q53Rzq4PZdYqLrfGfEjdQw59ppY.cer File: Q53Rzq4PZdYqLrfGfEjdQw59ppY.cer (raw, json) Hash identifier: 7miVmTgIZBqswjo3ET34kp1g0/zIDDFkj73wQPifLLA= Subject key identifier: 43:9D:D1:CE:AE:0F:65:D6:2A:2E:B7:C6:7C:48:DD:43:0E:7D:A6:96 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED7BB98B804CEDB7CBF00018C6108B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:17 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201876 IP: 185.50.112.0/22 IP: 2a01:a1a0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:7b:b9:8b:80:4c:ed:b7:cb:f0:00:18:c6:10:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=439dd1ceae0f65d62a2eb7c67c48dd430e7da696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:a2:0f:76:2e:10:8c:1d:45:ce:86:f5:e4: 65:cc:c3:ef:c9:1f:76:29:de:dc:97:50:6a:5f:1d: 57:af:45:c5:13:b8:62:51:36:89:95:f7:2f:bc:91: cc:b8:5a:aa:6e:21:99:2e:2d:11:ed:99:02:31:11: cd:e6:da:ef:ec:90:d7:4a:db:60:17:4e:e3:86:15: 6e:e5:4e:c6:6d:bc:3e:c5:c7:de:a5:a7:ec:b2:da: 01:cd:b1:c8:0e:c3:98:63:81:36:71:78:cb:1f:81: 0a:e2:e6:5f:3c:49:18:e0:1f:d5:98:cb:3f:c3:72: b6:ae:62:81:bc:e6:75:5b:ce:7e:b6:59:76:5b:49: 15:80:e9:b0:b9:cc:c0:49:45:56:cd:fe:4c:e6:40: bf:de:97:4b:b2:9a:62:fd:ea:89:13:e6:e8:b7:f6: 3d:2d:ea:4c:92:42:c5:ab:60:13:7d:f9:55:ff:0c: 16:0a:28:e6:7f:10:20:b6:1a:ee:e4:c1:ad:53:f2: bd:a7:d4:03:e1:c2:19:31:28:ac:e7:7e:f8:6b:2e: 9e:de:e2:0b:57:7c:75:55:f0:06:53:17:fe:3a:c1: 97:c3:08:dc:25:21:89:09:d7:e7:73:62:41:28:c0: c8:11:b9:20:ea:e3:44:e3:a5:50:8d:00:e9:48:6e: de:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:9D:D1:CE:AE:0F:65:D6:2A:2E:B7:C6:7C:48:DD:43:0E:7D:A6:96 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.50.112.0/22 IPv6: 2a01:a1a0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201876 Signature Algorithm: sha256WithRSAEncryption 2d:16:de:55:27:3b:87:85:2e:1e:24:49:88:a3:b1:9d:49:8e: e6:73:71:23:73:c3:3a:9f:bb:ce:74:a4:50:b8:9b:67:cb:9e: 91:8a:3d:50:b8:71:d4:82:5d:17:ec:09:2a:52:e1:64:9e:00: 9d:6c:f8:46:c7:39:a3:23:7b:17:a8:a8:e4:3a:5b:a3:a4:94: ce:4c:9b:16:f5:3f:e2:9c:41:6b:a5:8f:9b:1c:49:3f:65:63: 62:78:7b:8e:eb:4a:0d:38:bc:a3:31:20:99:47:8c:94:e3:de: c2:4c:75:61:0d:b4:7a:5e:e6:8a:f6:80:ee:52:58:a4:c2:52: 61:96:10:d0:c4:03:e0:85:79:9d:d6:d9:3c:86:17:07:fd:ad: 3e:2d:ca:96:60:c8:d7:93:80:59:8c:a7:8b:3c:55:2d:36:fb: e2:71:2c:2e:fc:7e:2a:95:16:b3:6a:38:f7:e4:08:e1:d9:9f: 6e:1e:d7:4f:8c:7c:ce:52:a7:8a:e8:09:b9:f6:e5:ee:93:f2: 73:34:20:94:e0:7e:76:f2:53:1e:e1:3a:e2:b0:67:df:eb:ce: 04:09:e9:1f:0c:65:12:7b:f7:c8:7c:76:0d:77:5b:3a:18:a6: 70:ec:fa:b6:0d:a8:ad:5f:d1:65:78:c9:f9:b9:c8:ee:6d:39: 1a:28:89:c9 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt87Xu5i4BM7bfL8AAYxhCLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzlkZDFjZWFlMGY2NWQ2MmEyZWI3YzY3YzQ4ZGQ0MzBlN2RhNjk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaOiD3YuEIwdRc6G9eRlzMPvyR92 Kd7cl1BqXx1Xr0XFE7hiUTaJlfcvvJHMuFqqbiGZLi0R7ZkCMRHN5trv7JDXSttg F07jhhVu5U7Gbbw+xcfepafsstoBzbHIDsOYY4E2cXjLH4EK4uZfPEkY4B/VmMs/ w3K2rmKBvOZ1W85+tll2W0kVgOmwuczASUVWzf5M5kC/3pdLsppi/eqJE+bot/Y9 LepMkkLFq2ATfflV/wwWCijmfxAgthru5MGtU/K9p9QD4cIZMSis5374ay6e3uIL V3x1VfAGUxf+OsGXwwjcJSGJCdfnc2JBKMDIEbkg6uNE46VQjQDpSG7e+QIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFEOd0c6uD2XWKi63xnxI3UMOfaaWMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzViL2IzN2E1 Ni03YmIxLTRmODMtYTE3ZS02NDE3YmQ4ZmUyOWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIvYjM3YTU2 LTdiYjEtNGY4My1hMTdlLTY0MTdiZDhmZTI5Yy8xL1E1M1J6cTRQWmRZcUxyZkdm RWpkUXc1OXBwWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuTJwMA0EAgACMAcDBQAqAaGgMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMUlDANBgkqhkiG9w0BAQsFAAOCAQEALRbeVSc7h4Uu HiRJiKOxnUmO5nNxI3PDOp+7znSkULibZ8uekYo9ULhx1IJdF+wJKlLhZJ4AnWz4 Rsc5oyN7F6io5Dpbo6SUzkybFvU/4pxBa6WPmxxJP2VjYnh7jutKDTi8ozEgmUeM lOPewkx1YQ20el7mivaA7lJYpMJSYZYQ0MQD4IV5ndbZPIYXB/2tPi3KlmDI15OA WYynizxVLTb74nEsLvx+KpUWs2o49+QI4dmfbh7XT4x8zlKniugJufbl7pPyczQg lOB+dvJTHuE64rBn3+vOBAnpHwxlEnv3yHx2DXdbOhimcOz6tg2orV/RZXjJ+bnI 7m05GiiJyQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:17 2026 by rpki-client