This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer (raw, json) Hash identifier: QPKLBogjX0J6guJGUe07HoDp5zdcfqgvqtiakgd8ewk= Subject key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F84AF6FD01F3941EB8D7857800F1D04 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:22:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 57035 IP: 91.230.79.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:af:6f:d0:1f:39:41:eb:8d:78:57:80:0f:1d:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:22:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4501e85c0025c4ae29528058e232d737c2f495ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:90:01:27:17:4f:b5:6a:75:fd:6f:99:bb:47: 49:8f:b7:03:4d:93:28:e6:11:fd:98:2c:84:3b:23: 69:87:2e:a2:72:00:83:2f:37:17:be:7a:76:a6:77: fb:c1:d2:c7:cf:50:d3:91:07:0c:4b:41:ac:25:90: 53:97:48:1c:4a:38:55:43:8e:1b:6a:1d:13:c5:b7: 64:98:11:6d:2f:89:d2:0f:ba:cb:1b:1b:c1:a2:98: c2:d4:61:39:d3:d1:3e:eb:70:5a:4d:b1:66:df:b2: 68:42:0f:8e:8e:5c:91:dd:77:c9:63:3c:84:b2:79: 11:33:11:d0:74:a5:93:65:31:1d:35:19:ed:c7:51: f1:64:79:7f:f1:fd:45:46:e0:65:65:b3:34:bc:46: 27:74:3f:f3:1a:e6:a3:a8:83:2d:5d:60:62:e3:4c: 65:f4:ee:54:c4:4f:99:1f:d2:dd:47:8e:6b:a8:56: f9:05:b1:7f:2c:02:dd:ae:d2:3d:3e:e0:c2:75:41: 37:89:58:69:9e:5f:d6:a5:12:2e:0a:84:f5:f4:48: e3:73:51:81:37:89:b9:10:98:40:4e:3e:b8:f7:00: f8:e6:c5:df:9d:14:27:84:bf:25:71:8c:28:f0:9a: 62:3b:c0:fc:df:78:49:b5:f0:72:c5:2d:aa:21:d0: ae:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.230.79.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 57035 Signature Algorithm: sha256WithRSAEncryption 71:9e:f2:14:56:c2:95:3d:03:39:58:f4:17:2b:02:a9:d8:95: 42:fc:0f:59:2a:67:f3:f1:75:7e:c0:9d:b6:4c:b8:32:9f:32: 02:b9:aa:30:6b:6c:a7:d3:e4:00:af:0f:ae:69:39:69:58:2c: be:d7:b4:e4:f2:b5:8a:83:e3:ea:f9:5e:7f:10:4f:bf:07:31: 9f:25:3c:60:47:be:56:d7:79:d0:bf:df:ea:52:8f:11:c0:2f: ea:bd:f9:00:e6:f5:d5:f7:e8:82:6d:c1:b5:d5:49:d2:15:b6: 07:52:98:86:5b:8e:c8:28:1d:25:96:ff:61:a3:c6:18:d2:ba: eb:3f:f0:0a:2b:4f:ae:06:6e:dc:24:04:ea:1a:4c:33:e6:ba: b3:4a:82:8e:1a:2b:c4:56:02:51:88:d6:3f:6a:82:6a:8c:ae: d8:11:db:99:a8:7e:71:78:b2:0d:2d:b7:8c:fb:80:a3:45:db: 1a:39:6b:89:ca:11:86:8b:1e:be:de:a1:42:ca:7c:88:32:c5: b0:d1:74:89:1b:d7:35:dc:cd:4e:f6:f1:24:f3:9c:81:0e:14: 71:95:f7:cf:8c:8f:44:53:f8:68:7d:33:78:c1:71:b3:c1:d8: df:00:a4:73:56:4a:11:12:e2:70:14:24:02:5b:6a:f0:a3:2b: 33:aa:fd:ab -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt/hK9v0B85QeuNeFeADx0EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMjQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NTAxZTg1YzAwMjVjNGFlMjk1MjgwNThlMjMyZDczN2MyZjQ5NWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppABJxdPtWp1/W+Zu0dJj7cDTZMo 5hH9mCyEOyNphy6icgCDLzcXvnp2pnf7wdLHz1DTkQcMS0GsJZBTl0gcSjhVQ44b ah0TxbdkmBFtL4nSD7rLGxvBopjC1GE509E+63BaTbFm37JoQg+OjlyR3XfJYzyE snkRMxHQdKWTZTEdNRntx1HxZHl/8f1FRuBlZbM0vEYndD/zGuajqIMtXWBi40xl 9O5UxE+ZH9LdR45rqFb5BbF/LALdrtI9PuDCdUE3iVhpnl/WpRIuCoT19Ejjc1GB N4m5EJhATj649wD45sXfnRQnhL8lcYwo8JpiO8D833hJtfByxS2qIdCu7wIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFEUB6FwAJcSuKVKAWOIy1zfC9JXOMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRkL2QzZThh OC01OGVmLTQ2MzAtYmYzNS1jZWU2NDE5NTUzM2MvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQvZDNlOGE4 LTU4ZWYtNDYzMC1iZjM1LWNlZTY0MTk1NTMzYy8xL1JRSG9YQUFseEs0cFVvQlk0 akxYTjhMMGxjNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW+ZPMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDeyzANBgkqhkiG9w0BAQsFAAOCAQEAcZ7yFFbClT0DOVj0FysCqdiVQvwPWSpn 8/F1fsCdtky4Mp8yArmqMGtsp9PkAK8Prmk5aVgsvte05PK1ioPj6vlefxBPvwcx nyU8YEe+Vtd50L/f6lKPEcAv6r35AOb11ffogm3BtdVJ0hW2B1KYhluOyCgdJZb/ YaPGGNK66z/wCitPrgZu3CQE6hpMM+a6s0qCjhorxFYCUYjWP2qCaoyu2BHbmah+ cXiyDS23jPuAo0XbGjlricoRhosevt6hQsp8iDLFsNF0iRvXNdzNTvbxJPOcgQ4U cZX3z4yPRFP4aH0zeMFxs8HY3wCkc1ZKERLicBQkAltq8KMrM6r9qw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:31 2026 by rpki-client