This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QCHf817fDObkKNav_CEsRxdnnuE.cer File: QCHf817fDObkKNav_CEsRxdnnuE.cer (raw, json) Hash identifier: aJyOLpFrQD7RwueeCNdfsyNFMfZIdjvLRjIWrApCo/A= Subject key identifier: 40:21:DF:F3:5E:DF:0C:E6:E4:28:D6:AF:FC:21:2C:47:17:67:9E:E1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A3425422E8950672319AD931F548D8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/QCHf817fDObkKNav_CEsRxdnnuE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:43 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204137 IP: 185.112.224.0/22 IP: 2a02:6860::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:42:54:22:e8:95:06:72:31:9a:d9:31:f5:48:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4021dff35edf0ce6e428d6affc212c4717679ee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:57:ac:b5:1d:07:ac:fa:f8:e9:ba:59:4f:17: 36:50:40:5c:2d:00:72:5f:91:11:a2:60:3d:30:c6: 01:2d:27:47:67:15:1f:49:6e:e6:c7:37:db:71:63: 23:2d:50:15:be:cb:3d:1a:e5:ca:9b:6b:d5:37:bd: 46:2b:d8:ab:82:3a:06:14:00:64:91:88:a2:ea:aa: 9f:bb:fc:d8:af:1f:81:6c:fd:82:17:7d:9c:3d:63: 70:1f:df:c9:f8:db:a2:27:80:5e:e0:23:17:c3:4b: 39:5d:21:25:6f:fd:f6:e9:07:6e:91:49:b4:c0:9b: 8d:a9:ec:8b:82:01:8a:fc:76:42:20:52:8e:25:a0: 62:ab:22:99:c0:cc:43:d7:64:8a:40:fa:85:c9:53: 78:ac:f8:0c:c0:bc:18:d8:1f:e5:34:ac:ce:26:6a: 2b:06:9d:a7:93:6f:78:4f:8e:4c:e6:2b:25:2d:20: 7a:e6:24:39:90:8a:f9:17:fe:3b:18:cd:47:d3:4f: a3:3b:15:05:34:b0:2f:81:90:22:3f:06:7c:f9:0b: 74:d5:c1:20:9b:63:02:ac:a4:f5:73:b0:ef:3b:3d: 1c:e3:c0:d0:e2:bf:2f:4d:fa:3d:62:08:fe:20:57: bb:7d:45:e2:45:cb:90:9c:5e:5e:28:4d:6c:01:4d: 72:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:21:DF:F3:5E:DF:0C:E6:E4:28:D6:AF:FC:21:2C:47:17:67:9E:E1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/QCHf817fDObkKNav_CEsRxdnnuE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.112.224.0/22 IPv6: 2a02:6860::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204137 Signature Algorithm: sha256WithRSAEncryption 44:bd:fe:0c:8a:a6:f8:d7:43:82:33:cd:9f:ed:d0:91:f6:86: 44:b6:11:93:59:69:2c:d6:fd:d5:44:85:2a:21:cf:0a:17:11: 35:a5:b7:1b:10:0f:65:6d:09:e9:3d:c0:fe:72:2a:7d:21:ad: 4f:48:a4:79:4a:bb:cf:2d:f0:54:78:a2:08:03:68:ec:48:b0: c7:2e:63:4a:81:d5:c3:69:09:1e:29:dd:d8:30:8d:5d:79:00: 4c:8d:4a:3f:f6:c1:91:ef:e0:7c:41:06:24:46:d4:f4:f2:a7: 32:1a:11:65:aa:7d:c1:d5:29:d7:78:36:6e:10:30:27:49:2e: cc:ad:15:b7:3a:2a:a5:6d:a2:29:f8:cf:4b:ab:41:a2:ee:91: 85:58:08:8e:c2:28:53:c3:f2:05:17:5d:21:78:07:78:47:b5: e5:e5:69:5c:14:3a:6a:8c:30:fb:26:c1:18:4d:be:17:c6:cf: 55:6a:ae:71:f4:3b:28:aa:32:1b:c2:3a:e5:f0:25:df:d1:e7: e6:d6:f6:ee:0e:4a:16:93:89:e0:a4:38:b5:75:87:9e:e0:59: 23:ea:2a:62:5a:86:e3:02:ce:4c:29:30:57:0f:6b:b8:d7:ea: 08:76:12:88:45:d7:0e:71:72:a2:ad:81:b8:73:86:16:ef:d7: 2f:57:42:90 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt4o0JUIuiVBnIxmtkx9UjYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MDIxZGZmMzVlZGYwY2U2ZTQyOGQ2YWZmYzIxMmM0NzE3Njc5ZWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVestR0HrPr46bpZTxc2UEBcLQBy X5ERomA9MMYBLSdHZxUfSW7mxzfbcWMjLVAVvss9GuXKm2vVN71GK9irgjoGFABk kYii6qqfu/zYrx+BbP2CF32cPWNwH9/J+NuiJ4Be4CMXw0s5XSElb/326QdukUm0 wJuNqeyLggGK/HZCIFKOJaBiqyKZwMxD12SKQPqFyVN4rPgMwLwY2B/lNKzOJmor Bp2nk294T45M5islLSB65iQ5kIr5F/47GM1H00+jOxUFNLAvgZAiPwZ8+Qt01cEg m2MCrKT1c7DvOz0c48DQ4r8vTfo9Ygj+IFe7fUXiRcuQnF5eKE1sAU1y+QIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFEAh3/Ne3wzm5CjWr/whLEcXZ57hMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA1LzAxNDA4 OC01Njg0LTQ5YzItYjYzMC1lYjUzYTUxOGMyNjMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUvMDE0MDg4 LTU2ODQtNDljMi1iNjMwLWViNTNhNTE4YzI2My8xL1FDSGY4MTdmRE9ia0tOYXZf Q0VzUnhkbm51RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuXDgMA0EAgACMAcDBQAqAmhgMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMdaTANBgkqhkiG9w0BAQsFAAOCAQEARL3+DIqm+NdD gjPNn+3QkfaGRLYRk1lpLNb91USFKiHPChcRNaW3GxAPZW0J6T3A/nIqfSGtT0ik eUq7zy3wVHiiCANo7Eiwxy5jSoHVw2kJHind2DCNXXkATI1KP/bBke/gfEEGJEbU 9PKnMhoRZap9wdUp13g2bhAwJ0kuzK0VtzoqpW2iKfjPS6tBou6RhVgIjsIoU8Py BRddIXgHeEe15eVpXBQ6aoww+ybBGE2+F8bPVWqucfQ7KKoyG8I65fAl39Hn5tb2 7g5KFpOJ4KQ4tXWHnuBZI+oqYlqG4wLOTCkwVw9ruNfqCHYSiEXXDnFyoq2BuHOG Fu/XL1dCkA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:44 2026 by rpki-client