This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QVwQ-E3CKTfvbRXrcbu0pTCBYr8.cer File: QVwQ-E3CKTfvbRXrcbu0pTCBYr8.cer (raw, json) Hash identifier: zq1A/fvg2RN6fdbFAbRC1GSyw4dnY7jpi+6NBDj0YDw= Subject key identifier: 41:5C:10:F8:4D:C2:29:37:EF:6D:15:EB:71:BB:B4:A5:30:81:62:BF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797F0E09E8EC0BDFA794F7BECF385D91 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/QVwQ-E3CKTfvbRXrcbu0pTCBYr8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197524 IP: 5.22.240.0/21 IP: 88.133.0.0 -- 88.133.143.255 IP: 88.133.156.0/22 IP: 91.235.8.0/22 IP: 109.199.160.0/19 IP: 185.9.64.0/22 IP: 185.18.36.0/22 IP: 185.46.128.0/22 IP: 185.93.200.0/22 IP: 185.95.32.0/22 IP: 2a01:a980::/29 IP: 2a05:8240::/29 IP: 2a05:fa40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:0e:09:e8:ec:0b:df:a7:94:f7:be:cf:38:5d:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=415c10f84dc22937ef6d15eb71bbb4a5308162bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5d:eb:ef:6c:70:f4:bd:46:48:9e:3f:41:9f: be:c8:77:41:b1:2f:f0:77:70:0c:25:cb:43:08:1f: 98:69:f0:85:8b:84:d0:09:48:ee:d8:6b:89:7a:be: 77:b0:01:04:cb:89:56:90:08:9e:db:86:d4:f8:ca: b4:be:86:31:20:3c:7f:78:fc:40:16:fe:ed:b2:15: 0c:80:ed:ec:36:75:3e:39:39:56:3c:e2:e5:34:a1: 66:8e:58:42:7b:4e:e6:af:54:8b:48:3e:a2:ae:fc: 30:df:f3:f3:ce:e8:cf:77:a4:f0:88:0d:c7:96:d2: 7e:7f:ca:0f:f7:ae:e6:df:c7:a2:e7:6a:68:ca:dd: 7d:39:6e:ae:73:bc:ba:fa:ab:f2:ce:ed:c4:b6:6c: bb:13:8b:8e:33:22:51:49:b1:b0:35:fb:39:c8:84: 86:47:1e:94:40:4d:de:03:d3:ca:47:cb:e5:f1:c4: ea:60:58:92:07:f4:46:a1:3a:a6:c4:6e:01:82:55: 10:7a:ff:7e:7a:e6:f4:90:26:d2:71:43:2e:50:87: 8f:13:5c:d9:d2:20:16:a0:69:1f:10:44:9e:1d:ab: 9a:13:5a:a2:84:c2:af:13:6e:64:f2:8b:cb:ea:6e: 5f:42:0e:a7:c1:fa:b7:3c:15:0b:82:a8:39:45:85: 98:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:5C:10:F8:4D:C2:29:37:EF:6D:15:EB:71:BB:B4:A5:30:81:62:BF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/QVwQ-E3CKTfvbRXrcbu0pTCBYr8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.22.240.0/21 88.133.0.0-88.133.143.255 88.133.156.0/22 91.235.8.0/22 109.199.160.0/19 185.9.64.0/22 185.18.36.0/22 185.46.128.0/22 185.93.200.0/22 185.95.32.0/22 IPv6: 2a01:a980::/29 2a05:8240::/29 2a05:fa40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 197524 Signature Algorithm: sha256WithRSAEncryption 68:d5:13:5f:89:d7:91:ea:f8:f0:50:8f:b9:2c:1c:4e:b6:e2: d9:92:8c:da:f7:7e:dd:cc:ec:9a:52:d7:c3:cc:d2:14:60:9e: 18:0c:5a:41:13:a7:e7:c8:76:2d:15:8d:93:1a:b2:e5:7d:42: 36:82:7d:87:20:a2:0e:5b:c7:18:b0:20:8d:da:fe:a6:3c:08: 30:21:d7:93:e6:df:89:33:b6:9b:1e:88:31:14:34:a9:8f:c7: fd:3e:bb:1b:24:d3:32:de:54:d2:32:bb:77:b4:fe:1e:93:a7: 8e:8b:b0:d2:d3:54:96:fd:d9:09:05:2c:47:a9:c3:48:ad:15: 0d:b5:ef:11:e1:c6:93:41:5a:b8:e0:5a:b3:ac:ab:6e:01:c9: 60:7c:6e:f6:38:c6:40:54:22:eb:3a:85:4a:62:ca:cf:6f:38: 7f:ae:0c:4a:84:8d:07:e2:8c:df:4d:e7:a1:b4:0a:c4:01:69: 50:99:d4:ba:e4:3e:14:08:6f:ec:a9:53:cc:35:24:84:61:38: f4:11:66:b6:36:c8:9f:9f:30:46:34:53:f2:d5:c4:e5:04:d5: 4e:4d:ef:7c:3f:41:e3:9b:3f:48:b2:a1:9f:2f:a4:6b:18:71: 12:4c:da:fc:a6:fb:eb:1a:d0:85:26:ca:25:03:b3:33:46:c4: db:e3:07:6a -----BEGIN CERTIFICATE----- MIIF7jCCBNagAwIBAgISAZt5fw4J6OwL36eU977POF2RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MTVjMTBmODRkYzIyOTM3ZWY2ZDE1ZWI3MWJiYjRhNTMwODE2MmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp13r72xw9L1GSJ4/QZ++yHdBsS/w d3AMJctDCB+YafCFi4TQCUju2GuJer53sAEEy4lWkAie24bU+Mq0voYxIDx/ePxA Fv7tshUMgO3sNnU+OTlWPOLlNKFmjlhCe07mr1SLSD6irvww3/PzzujPd6TwiA3H ltJ+f8oP967m38ei52poyt19OW6uc7y6+qvyzu3Etmy7E4uOMyJRSbGwNfs5yISG Rx6UQE3eA9PKR8vl8cTqYFiSB/RGoTqmxG4BglUQev9+eub0kCbScUMuUIePE1zZ 0iAWoGkfEESeHauaE1qihMKvE25k8ovL6m5fQg6nwfq3PBULgqg5RYWYDwIDAQAB o4IC+jCCAvYwHQYDVR0OBBYEFEFcEPhNwik3720V63G7tKUwgWK/MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA2LzVjNTdl Ny03YmE4LTRhNjItOGQxNS1jNmI2ZmQxMmNlMjcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDYvNWM1N2U3 LTdiYTgtNGE2Mi04ZDE1LWM2YjZmZDEyY2UyNy8xL1FWd1EtRTNDS1RmdmJSWHJj YnUwcFRDQllyOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMHkGCCsGAQUF BwEHAQH/BGowaDBJBAIAATBDAwQDBRbwMAsDAwBYhQMEBFiFgAMEAliFnAMEAlvr CAMEBW3HoAMEArkJQAMEArkSJAMEArkugAMEArldyAMEArlfIDAbBAIAAjAVAwUD KgGpgAMFAyoFgkADBQMqBfpAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMDlDAN BgkqhkiG9w0BAQsFAAOCAQEAaNUTX4nXker48FCPuSwcTrbi2ZKM2vd+3czsmlLX w8zSFGCeGAxaQROn58h2LRWNkxqy5X1CNoJ9hyCiDlvHGLAgjdr+pjwIMCHXk+bf iTO2mx6IMRQ0qY/H/T67GyTTMt5U0jK7d7T+HpOnjouw0tNUlv3ZCQUsR6nDSK0V DbXvEeHGk0FauOBas6yrbgHJYHxu9jjGQFQi6zqFSmLKz284f64MSoSNB+KM303n obQKxAFpUJnUuuQ+FAhv7KlTzDUkhGE49BFmtjbIn58wRjRT8tXE5QTVTk3vfD9B 45s/SLKhny+kaxhxEkza/Kb76xrQhSbKJQOzM0bE2+MHag== -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:37 2026 by rpki-client