This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer File: QR4tQR1oe8tEScPfRb7twEEAfZQ.cer (raw, json) Hash identifier: Vvxtrf3bOPOcMkJf9Caz0tvGPFHYoCubR4QkfqmuDdQ= Subject key identifier: 41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BCDBFA20185E466F2686955EAF480ED1B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Sat 17 Jan 2026 20:57:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 44324 AS: 214720 IP: 2a0f:1cc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:cd:bf:a2:01:85:e4:66:f2:68:69:55:ea:f4:80:ed:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 17 20:57:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=411e2d411d687bcb4449c3df45beedc041007d94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b0:fe:f4:e5:bb:fb:5e:91:f0:0d:e4:12:c6: 22:d7:1f:e0:70:82:59:b2:44:b8:77:fe:f0:04:68: b6:5f:f9:b2:9f:a5:98:17:95:38:9c:31:38:08:41: c9:d6:8f:45:59:9a:5e:47:0a:4b:3d:2a:4e:99:28: 4d:b4:5a:02:87:24:c1:90:87:39:eb:af:d6:f2:5e: 52:13:19:42:ba:81:d7:7d:0c:b5:b6:b0:f5:e0:e8: f4:61:c2:06:bf:f9:e7:d9:80:ef:e8:43:0f:8b:55: 17:d0:6f:43:bd:7c:17:f4:7c:3a:9b:73:5a:bc:50: 1b:af:35:58:8a:75:77:fd:b9:5f:c7:20:7b:db:c8: 58:49:dd:10:56:f4:de:d6:88:69:c6:48:92:b5:8d: a6:cd:5e:4e:23:45:56:cf:d1:81:04:72:ab:22:8a: db:0a:db:af:71:cc:d5:ce:2a:51:b7:7a:e4:93:af: 1c:3c:6c:19:d8:4c:97:fb:5a:f7:56:55:72:56:f5: f4:4f:6f:4d:c0:40:70:85:62:ed:8e:aa:a1:3c:47: 1d:e4:3e:c0:51:72:8b:1d:c8:3c:a2:7b:e3:37:9d: 45:e1:33:5c:8a:7a:81:e5:55:61:6a:87:b8:9e:8e: d5:ef:33:78:60:94:c9:fa:de:3c:75:13:7e:f4:68: 60:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 44324 214720 Signature Algorithm: sha256WithRSAEncryption 0d:d9:e6:9c:b4:07:a4:6a:d6:c0:a9:01:57:ff:fe:66:35:43: 7d:07:47:73:fe:69:43:e0:a3:60:60:86:75:83:d6:e5:0a:ac: b3:05:79:71:bc:87:8c:a4:8c:8f:43:ca:40:80:d2:f2:3a:45: 8f:fb:27:e1:85:31:6a:e5:44:6a:a6:92:ec:e3:06:66:64:98: af:66:fa:b2:ef:96:29:75:50:90:e9:96:d2:1d:4c:34:18:c8: 4b:77:d0:ee:43:e2:ed:69:2f:3d:fc:98:0b:89:d1:da:b3:3e: c5:e6:24:34:35:f4:4d:b8:57:8b:d8:fc:f0:ca:e8:86:b9:6d: 78:95:61:2e:36:f8:06:08:1b:9f:c7:f8:b5:e2:59:8d:f0:84: ca:5d:01:22:c3:c6:8c:58:e1:b9:41:ce:16:41:7b:ea:b1:c2: db:32:c1:fa:e7:75:ff:f7:41:5a:d7:f9:8e:9e:bf:f2:b2:0b: 29:d0:d1:66:47:7f:24:ec:c0:b2:2d:46:c2:8a:5b:69:12:d9: 29:d7:1b:d3:74:67:95:8c:ed:3f:45:52:e6:18:fa:bc:7d:dc: 31:59:21:ff:b7:a4:5c:14:dc:a0:9d:54:61:45:28:76:15:88: 90:f7:bf:e6:51:65:12:fb:f2:99:5d:9b:6f:c2:f8:4b:45:f4: 0e:45:86:1a -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgISAZvNv6IBheRm8mhpVer0gO0bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTE3MjA1NzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MTFlMmQ0MTFkNjg3YmNiNDQ0OWMzZGY0NWJlZWRjMDQxMDA3ZDk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprD+9OW7+16R8A3kEsYi1x/gcIJZ skS4d/7wBGi2X/myn6WYF5U4nDE4CEHJ1o9FWZpeRwpLPSpOmShNtFoChyTBkIc5 66/W8l5SExlCuoHXfQy1trD14Oj0YcIGv/nn2YDv6EMPi1UX0G9DvXwX9Hw6m3Na vFAbrzVYinV3/blfxyB728hYSd0QVvTe1ohpxkiStY2mzV5OI0VWz9GBBHKrIorb CtuvcczVzipRt3rkk68cPGwZ2EyX+1r3VlVyVvX0T29NwEBwhWLtjqqhPEcd5D7A UXKLHcg8onvjN51F4TNcinqB5VVhaoe4no7V7zN4YJTJ+t48dRN+9GhgIQIDAQAB o4ICwjCCAr4wHQYDVR0OBBYEFEEeLUEdaHvLREnD30W+7cBBAH2UMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzhhZmI1 ZmUyLTNjMmEtNDkzOS05NWU5LTAwNzdiODBiNGYwZS8wLzCBiwYIKwYBBQUHMAqG f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGFm YjVmZTItM2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0ZjBlLzAvNDExRTJENDExRDY4 N0JDQjQ0NDlDM0RGNDVCRUVEQzA0MTAwN0Q5NC5tZnQwPAYIKwYBBQUHMA2GMGh0 dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF AyoPHMAwHwYIKwYBBQUHAQgBAf8EEDAOoAwwCgIDAK0kAgMDRsAwDQYJKoZIhvcN AQELBQADggEBAA3Z5py0B6Rq1sCpAVf//mY1Q30HR3P+aUPgo2BghnWD1uUKrLMF eXG8h4ykjI9DykCA0vI6RY/7J+GFMWrlRGqmkuzjBmZkmK9m+rLvlil1UJDpltId TDQYyEt30O5D4u1pLz38mAuJ0dqzPsXmJDQ19E24V4vY/PDK6Ia5bXiVYS42+AYI G5/H+LXiWY3whMpdASLDxoxY4blBzhZBe+qxwtsywfrndf/3QVrX+Y6ev/KyCynQ 0WZHfyTswLItRsKKW2kS2SnXG9N0Z5WM7T9FUuYY+rx93DFZIf+3pFwU3KCdVGFF KHYViJD3v+ZRZRL78pldm2/C+EtF9A5Fhho= -----END CERTIFICATE-----Generated at Sun Jan 18 11:56:33 2026 by rpki-client