This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W-cZ-YXfOUpCrBHly8j4K0t67F0.cer File: W-cZ-YXfOUpCrBHly8j4K0t67F0.cer (raw, json) Hash identifier: ZiyYDBl+e3BBKKcIrzw8fhWFOFJXJZ0BCnb5KCOFNE8= Subject key identifier: 5B:E7:19:F9:85:DF:39:4A:42:AC:11:E5:CB:C8:F8:2B:4B:7A:EC:5D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F1473EF79407761FACCA61425541150 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/W-cZ-YXfOUpCrBHly8j4K0t67F0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:20:05 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 56818 IP: 91.227.254.0/24 IP: 192.162.200.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:73:ef:79:40:77:61:fa:cc:a6:14:25:54:11:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5be719f985df394a42ac11e5cbc8f82b4b7aec5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:37:e2:9f:13:11:1e:9f:d0:27:64:2e:d5:45: d1:46:75:21:1b:9d:f5:11:95:8a:6e:11:68:f9:d6: b7:13:fa:b2:92:99:e5:50:ff:58:a5:a2:92:2a:05: 23:23:a4:19:ec:ee:2f:82:18:ee:52:e6:e2:18:53: 69:6e:45:e3:a2:41:f2:be:e7:8f:d0:7d:3d:fd:58: 54:84:45:d1:ae:5a:a7:4b:21:59:70:d5:30:00:f7: 2b:87:ef:07:40:09:68:65:63:95:dd:79:a0:27:71: f3:92:e8:d5:66:17:d7:b5:5d:73:97:78:b4:57:bb: 92:d5:64:6e:26:09:e9:65:24:8d:ea:1f:7f:d8:aa: 6a:11:9a:6d:65:a5:87:cf:6c:ad:aa:d4:7a:f4:b8: 6d:4a:16:91:17:ad:dc:52:4b:55:6f:6e:cd:85:71: f7:74:dc:aa:4e:6f:02:df:d0:e6:a3:70:44:64:45: 7b:54:45:10:09:1b:67:1e:0f:c5:e1:1d:87:20:70: 2a:30:f1:eb:ad:0f:9a:21:99:2d:71:7c:e5:65:0e: 36:e6:d0:8c:d4:7a:e1:d0:35:d6:30:78:d3:07:82: 3c:42:7f:eb:55:95:b9:a3:ff:0e:40:b3:58:3c:3c: 21:14:9c:54:62:de:8f:6c:e0:08:e0:3b:f4:84:1a: fd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E7:19:F9:85:DF:39:4A:42:AC:11:E5:CB:C8:F8:2B:4B:7A:EC:5D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/W-cZ-YXfOUpCrBHly8j4K0t67F0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.227.254.0/24 192.162.200.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 56818 Signature Algorithm: sha256WithRSAEncryption 5e:58:bc:1d:3d:d7:f5:7c:37:0c:5a:83:e0:13:66:07:96:fc: 0f:8a:e0:82:6e:2d:61:72:07:a8:c2:9c:81:35:70:75:63:b8: a2:db:9a:9b:65:87:04:cb:d9:11:90:e7:fb:ea:79:f6:b7:13: 7d:ac:62:f8:26:40:ba:07:8b:bf:3b:87:ff:87:13:32:b0:19: ca:78:1f:18:b5:59:ee:63:30:ec:e7:ab:15:7c:ab:db:ac:40: 7d:59:07:0b:f4:04:4e:7c:a6:eb:7b:b9:8d:91:72:db:c5:39: 2a:1e:c9:1a:6b:7f:df:34:a8:e6:e2:53:29:59:96:35:93:3b: 5d:93:b4:8b:5d:ef:27:bf:0d:02:53:63:e0:14:42:77:51:4c: 0f:78:bc:00:fb:ed:88:5e:c9:b4:5f:de:60:13:ea:87:a9:1e: 88:39:0a:79:1e:e5:3e:f6:62:cd:d3:2a:b5:20:f0:5d:34:48: 7b:ee:28:25:55:f9:29:a0:06:b9:04:b7:a2:9b:88:85:78:df: 3d:6d:94:20:65:ec:86:dc:f9:f9:fd:f6:07:94:13:bb:25:ad: 03:23:63:d7:42:98:9a:d5:64:6d:88:6c:86:5a:a5:2f:9b:ed: a2:3a:f3:94:7e:1a:ee:ba:17:a1:59:4d:94:6b:eb:b7:41:2c: bd:49:77:c2 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt/FHPveUB3YfrMphQlVBFQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YmU3MTlmOTg1ZGYzOTRhNDJhYzExZTVjYmM4ZjgyYjRiN2FlYzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTfinxMRHp/QJ2Qu1UXRRnUhG531 EZWKbhFo+da3E/qykpnlUP9YpaKSKgUjI6QZ7O4vghjuUubiGFNpbkXjokHyvueP 0H09/VhUhEXRrlqnSyFZcNUwAPcrh+8HQAloZWOV3XmgJ3HzkujVZhfXtV1zl3i0 V7uS1WRuJgnpZSSN6h9/2KpqEZptZaWHz2ytqtR69LhtShaRF63cUktVb27NhXH3 dNyqTm8C39Dmo3BEZEV7VEUQCRtnHg/F4R2HIHAqMPHrrQ+aIZktcXzlZQ425tCM 1Hrh0DXWMHjTB4I8Qn/rVZW5o/8OQLNYPDwhFJxUYt6PbOAI4Dv0hBr9tQIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFFvnGfmF3zlKQqwR5cvI+CtLeuxdMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM1LzljMDI3 OC01NDJjLTQ0NjctYWM3Yy0yNGFlZTJiMGU4MmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzUvOWMwMjc4 LTU0MmMtNDQ2Ny1hYzdjLTI0YWVlMmIwZTgyYi8xL1ctY1otWVhmT1VwQ3JCSGx5 OGo0SzB0NjdGMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAW+P+AwQCwKLIMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwDd8jANBgkqhkiG9w0BAQsFAAOCAQEAXli8HT3X9Xw3DFqD4BNmB5b8 D4rggm4tYXIHqMKcgTVwdWO4otuam2WHBMvZEZDn++p59rcTfaxi+CZAugeLvzuH /4cTMrAZyngfGLVZ7mMw7OerFXyr26xAfVkHC/QETnym63u5jZFy28U5Kh7JGmt/ 3zSo5uJTKVmWNZM7XZO0i13vJ78NAlNj4BRCd1FMD3i8APvtiF7JtF/eYBPqh6ke iDkKeR7lPvZizdMqtSDwXTRIe+4oJVX5KaAGuQS3opuIhXjfPW2UIGXshtz5+f32 B5QTuyWtAyNj10KYmtVkbYhshlqlL5vtojrzlH4a7roXoVlNlGvrt0EsvUl3wg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:23 2026 by rpki-client