This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SWsAWJcdKZOlelscts3_XS60Tj8.cer File: SWsAWJcdKZOlelscts3_XS60Tj8.cer (raw, json) Hash identifier: sfW/iBUHcc6omzBrMDloXbsiZMwgssFRGHJuwS1ThMs= Subject key identifier: 49:6B:00:58:97:1D:29:93:A5:7A:5B:1C:B6:CD:FF:5D:2E:B4:4E:3F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F837A9312348A43C20C68DF8D70CCFE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2a/d55dc1-7604-4c8d-a1b4-39f8e2b4675d/1/SWsAWJcdKZOlelscts3_XS60Tj8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2a/d55dc1-7604-4c8d-a1b4-39f8e2b4675d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:21:21 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 59472 IP: 5.152.160.0/21 IP: 185.94.68.0/22 IP: 2a01:8f40::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:7a:93:12:34:8a:43:c2:0c:68:df:8d:70:cc:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:21:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=496b0058971d2993a57a5b1cb6cdff5d2eb44e3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1e:6b:25:a0:d5:7a:5e:67:63:a3:21:cc:c7: 6b:9d:b4:74:5e:24:5f:c5:a1:2f:c2:0b:6c:c3:49: e2:d8:19:7c:78:16:dd:84:4f:bc:c2:69:92:d2:4a: 9a:8f:14:a9:19:23:c0:97:0e:65:1e:fe:59:f3:a4: 0e:5a:e7:0d:05:b9:44:96:2d:90:b1:fd:50:62:f0: 83:42:f5:75:e5:23:aa:a0:2c:a3:a3:c6:34:26:05: 18:b5:f5:42:de:86:de:97:cb:d5:06:89:78:ad:bb: 79:9b:8e:71:0c:8e:d7:61:63:b9:5d:48:aa:e4:5c: c5:27:b9:12:84:7f:5f:c8:58:96:b2:56:ab:d1:52: 67:8b:23:6c:1f:99:f7:2c:e8:a0:b1:e6:c5:45:b1: 27:1a:24:5c:b8:22:6c:e3:b7:f3:9e:ff:59:cf:17: c4:e2:3d:19:68:c5:d8:6b:d2:b3:76:0d:c5:a7:47: 0a:37:79:bb:b9:a1:4a:cb:62:a3:5f:c5:e5:11:8e: ac:ed:47:ee:79:d2:fe:1f:39:c1:95:10:68:3d:ed: d1:b5:c1:3d:d9:0b:a2:e0:1d:2b:e8:15:5f:03:47: 88:52:2c:6f:ee:49:f4:59:ba:67:e1:2a:ef:93:29: c6:1e:3a:32:0f:c8:8b:f9:7b:c8:77:71:3e:c2:ad: 08:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6B:00:58:97:1D:29:93:A5:7A:5B:1C:B6:CD:FF:5D:2E:B4:4E:3F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/d55dc1-7604-4c8d-a1b4-39f8e2b4675d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/d55dc1-7604-4c8d-a1b4-39f8e2b4675d/1/SWsAWJcdKZOlelscts3_XS60Tj8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.152.160.0/21 185.94.68.0/22 IPv6: 2a01:8f40::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 59472 Signature Algorithm: sha256WithRSAEncryption 80:72:31:95:87:fc:6f:7e:93:f9:d3:55:40:17:2a:d3:f1:7f: 92:60:32:0d:c7:88:08:35:b4:8d:67:1a:40:29:87:7e:df:34: 1f:3a:d7:ca:a5:f5:d0:41:c4:6c:2e:f3:2f:64:c1:c3:11:2a: 29:c1:7e:59:07:80:e4:61:c8:86:6f:1d:30:4d:a9:92:9c:02: 35:ee:b4:94:ef:cb:cc:ba:c1:f8:42:39:6b:67:c1:fb:27:83: 2c:a5:a2:7c:6c:6d:38:cc:e5:a5:67:d2:47:cb:a6:4c:f4:99: e8:d5:54:dc:17:24:75:9e:96:bb:13:02:9c:da:c9:d4:2f:6a: 5b:2c:ce:d2:e0:9c:ab:3b:85:42:4b:78:ad:06:90:a6:34:33: 78:ff:2a:40:dc:5a:43:0d:1c:a1:eb:f4:9a:c4:b7:26:c5:97: 2e:11:45:44:d0:30:3d:92:f3:26:f7:2e:7b:9b:12:bd:8c:a7: 81:0d:0d:e2:81:86:c3:01:72:9e:f8:b6:97:a4:fe:6c:82:dd: 83:d1:fc:48:56:f5:1d:63:27:31:3f:67:0e:bd:15:c8:86:be: b7:43:5f:bc:64:79:ab:35:17:a0:da:bc:26:f8:35:dd:a2:bd: d5:88:0c:1a:7c:ef:eb:9c:ca:05:39:e1:4a:82:4a:c2:65:03: b2:89:a5:eb -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt/g3qTEjSKQ8IMaN+NcMz+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTZiMDA1ODk3MWQyOTkzYTU3YTViMWNiNmNkZmY1ZDJlYjQ0ZTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoh5rJaDVel5nY6MhzMdrnbR0XiRf xaEvwgtsw0ni2Bl8eBbdhE+8wmmS0kqajxSpGSPAlw5lHv5Z86QOWucNBblEli2Q sf1QYvCDQvV15SOqoCyjo8Y0JgUYtfVC3obel8vVBol4rbt5m45xDI7XYWO5XUiq 5FzFJ7kShH9fyFiWslar0VJniyNsH5n3LOigsebFRbEnGiRcuCJs47fznv9ZzxfE 4j0ZaMXYa9Kzdg3Fp0cKN3m7uaFKy2KjX8XlEY6s7UfuedL+HznBlRBoPe3RtcE9 2Qui4B0r6BVfA0eIUixv7kn0Wbpn4SrvkynGHjoyD8iL+XvId3E+wq0I0wIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFElrAFiXHSmTpXpbHLbN/10utE4/MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJhL2Q1NWRj MS03NjA0LTRjOGQtYTFiNC0zOWY4ZTJiNDY3NWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmEvZDU1ZGMx LTc2MDQtNGM4ZC1hMWI0LTM5ZjhlMmI0Njc1ZC8xL1NXc0FXSmNkS1pPbGVsc2N0 czNfWFM2MFRqOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDBZigAwQCuV5EMA0EAgACMAcDBQAqAY9AMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwDoUDANBgkqhkiG9w0BAQsFAAOCAQEAgHIx lYf8b36T+dNVQBcq0/F/kmAyDceICDW0jWcaQCmHft80HzrXyqX10EHEbC7zL2TB wxEqKcF+WQeA5GHIhm8dME2pkpwCNe60lO/LzLrB+EI5a2fB+yeDLKWifGxtOMzl pWfSR8umTPSZ6NVU3BckdZ6WuxMCnNrJ1C9qWyzO0uCcqzuFQkt4rQaQpjQzeP8q QNxaQw0coev0msS3JsWXLhFFRNAwPZLzJvcue5sSvYyngQ0N4oGGwwFynvi2l6T+ bILdg9H8SFb1HWMnMT9nDr0VyIa+t0NfvGR5qzUXoNq8Jvg13aK91YgMGnzv65zK BTnhSoJKwmUDsoml6w== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:52 2026 by rpki-client