This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UQzngdsNx-T59JQUWileTMsSHK4.cer File: UQzngdsNx-T59JQUWileTMsSHK4.cer (raw, json) Hash identifier: nJEOnkv+4p+vz8U94V+uBn8uItufx44yOYntIMKmS84= Subject key identifier: 51:0C:E7:81:DB:0D:C7:E4:F9:F4:94:14:5A:29:5E:4C:CB:12:1C:AE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5CDF9BC93C569957C9569B238A76A8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5f/31fd16-6d00-4d09-a8d4-c1d6c8f319c1/1/UQzngdsNx-T59JQUWileTMsSHK4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5f/31fd16-6d00-4d09-a8d4-c1d6c8f319c1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:19:57 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 21469 IP: 80.252.192.0/20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:df:9b:c9:3c:56:99:57:c9:56:9b:23:8a:76:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:19:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=510ce781db0dc7e4f9f494145a295e4ccb121cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ad:04:53:8c:40:dd:4d:91:b2:d8:97:7a:7d: 65:ff:1f:f7:e0:0a:ba:b1:bb:d2:a9:b4:c7:31:44: b6:d4:1e:f7:00:e2:c1:7b:9c:82:22:09:24:df:cf: 53:c9:57:c8:ff:2e:89:78:1b:24:9d:81:38:f7:7e: b5:26:1d:55:be:d5:60:b3:a7:c2:ea:eb:38:2b:55: c1:c8:73:3e:34:46:f5:c3:30:56:45:2b:b1:25:a1: 60:8b:73:4f:ed:2f:8f:5b:69:69:94:a6:1f:04:c0: 58:9c:8c:c4:9a:40:7a:da:1b:fe:33:74:1d:bb:7b: 1f:08:b0:d4:5c:0e:44:0e:07:ee:18:ce:7f:21:d0: 7c:9e:22:7e:6a:9b:0d:1f:6c:cf:c2:b8:02:36:16: 85:b4:ed:f3:d0:23:ff:7a:63:c9:45:97:e6:84:7b: a0:23:b4:1a:d4:25:3d:2e:47:57:43:7c:28:e7:ea: f9:db:4d:67:b9:d2:20:e7:fa:13:d1:1d:bf:87:04: 00:7f:06:45:8c:9a:f6:dc:af:1a:56:96:80:18:a2: 0e:3c:eb:ee:0e:a7:ea:36:76:26:cf:14:47:60:c6: 04:81:f8:9f:8e:73:37:de:fd:fd:da:42:88:e1:59: 1f:fb:5f:f9:e5:f9:de:f1:12:cb:b8:7b:14:74:5b: 38:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:0C:E7:81:DB:0D:C7:E4:F9:F4:94:14:5A:29:5E:4C:CB:12:1C:AE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31fd16-6d00-4d09-a8d4-c1d6c8f319c1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31fd16-6d00-4d09-a8d4-c1d6c8f319c1/1/UQzngdsNx-T59JQUWileTMsSHK4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.252.192.0/20 sbgp-autonomousSysNum: critical Autonomous System Numbers: 21469 Signature Algorithm: sha256WithRSAEncryption 5a:57:23:9c:cf:d9:d2:23:ea:e7:dd:6f:d4:e9:1d:c4:fb:8f: 61:df:e8:0e:66:13:98:0f:f5:7a:17:7d:b8:26:93:40:03:5c: 84:40:28:c2:6d:24:93:a6:96:13:b2:50:22:f7:80:69:2c:40: 85:9a:53:12:0a:94:c9:cb:ac:6c:da:e0:d8:af:81:81:ca:7e: d5:15:32:45:9f:7b:7e:c0:83:2b:7f:0a:7c:e7:c4:be:02:59: 97:6e:47:74:6e:f9:8a:be:ec:8c:73:7b:78:9b:2a:25:80:a2: 37:cf:fa:75:78:2d:05:8a:2b:aa:3e:da:87:5b:98:24:61:0d: 44:dd:c0:f7:77:8a:3e:03:80:0c:d8:c8:2b:92:2e:0b:cb:3a: 0e:27:67:7e:96:a9:60:5e:d7:0b:b3:44:85:1f:ab:2f:46:70: da:66:55:92:ac:c8:7f:43:c8:c8:99:94:c9:fd:91:a4:32:e4: ce:b9:c8:dc:e6:8e:55:33:c1:aa:91:d0:01:0d:14:fb:d6:52: 7b:b0:ca:08:43:96:69:46:72:19:57:b7:11:78:20:04:f7:c2: d5:5c:49:e3:1e:fa:3c:4d:7e:47:d7:74:4a:45:fa:25:0a:18: bb:35:0c:24:8a:c1:c8:9f:d9:1e:35:b4:69:ad:8c:36:b5:80: f4:9b:4f:a7 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt9XN+byTxWmVfJVpsjinaoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxOTU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTBjZTc4MWRiMGRjN2U0ZjlmNDk0MTQ1YTI5NWU0Y2NiMTIxY2FlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtq0EU4xA3U2RstiXen1l/x/34Aq6 sbvSqbTHMUS21B73AOLBe5yCIgkk389TyVfI/y6JeBsknYE49361Jh1VvtVgs6fC 6us4K1XByHM+NEb1wzBWRSuxJaFgi3NP7S+PW2lplKYfBMBYnIzEmkB62hv+M3Qd u3sfCLDUXA5EDgfuGM5/IdB8niJ+apsNH2zPwrgCNhaFtO3z0CP/emPJRZfmhHug I7Qa1CU9LkdXQ3wo5+r5201nudIg5/oT0R2/hwQAfwZFjJr23K8aVpaAGKIOPOvu DqfqNnYmzxRHYMYEgfifjnM33v392kKI4Vkf+1/55fne8RLLuHsUdFs4bwIDAQAB o4ICnzCCApswHQYDVR0OBBYEFFEM54HbDcfk+fSUFFopXkzLEhyuMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVmLzMxZmQx Ni02ZDAwLTRkMDktYThkNC1jMWQ2YzhmMzE5YzEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWYvMzFmZDE2 LTZkMDAtNGQwOS1hOGQ0LWMxZDZjOGYzMTljMS8xL1VRem5nZHNOeC1UNTlKUVVX aWxlVE1zU0hLNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQEUPzAMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AlPdMA0GCSqGSIb3DQEBCwUAA4IBAQBaVyOcz9nSI+rn3W/U6R3E+49h3+gOZhOY D/V6F324JpNAA1yEQCjCbSSTppYTslAi94BpLECFmlMSCpTJy6xs2uDYr4GByn7V FTJFn3t+wIMrfwp858S+AlmXbkd0bvmKvuyMc3t4myolgKI3z/p1eC0FiiuqPtqH W5gkYQ1E3cD3d4o+A4AM2Mgrki4LyzoOJ2d+lqlgXtcLs0SFH6svRnDaZlWSrMh/ Q8jImZTJ/ZGkMuTOucjc5o5VM8GqkdABDRT71lJ7sMoIQ5ZpRnIZV7cReCAE98LV XEnjHvo8TX5H13RKRfolChi7NQwkisHIn9keNbRprYw2tYD0m0+n -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:54 2026 by rpki-client