This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WB7MGnTPkqthnF9xASOTfOUNnEM.cer File: WB7MGnTPkqthnF9xASOTfOUNnEM.cer (raw, json) Hash identifier: /pNrjoSwk1r6fa4lQ4flOCN2kR44oRTUQYzXuVQItaU= Subject key identifier: 58:1E:CC:1A:74:CF:92:AB:61:9C:5F:71:01:23:93:7C:E5:0D:9C:43 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5AD4C8F78F5A88CA9F25ABB63C2734 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/WB7MGnTPkqthnF9xASOTfOUNnEM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205296 AS: 208041 IP: 85.155.248.0/22 IP: 185.222.4.0/22 IP: 193.160.10.0/23 IP: 193.160.14.0/23 IP: 2a0c:8440::/29 IP: 2a0f:d180::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:d4:c8:f7:8f:5a:88:ca:9f:25:ab:b6:3c:27:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=581ecc1a74cf92ab619c5f710123937ce50d9c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:b5:e7:51:42:07:f8:4e:dd:50:62:06:d3:9f: 10:49:52:a1:16:48:89:b4:37:2c:a1:fc:cd:83:5f: 71:8f:11:d3:56:19:74:1a:ad:11:dc:05:d2:c0:8f: df:f4:27:93:e4:3c:7a:33:53:b1:e9:75:95:a9:73: 84:39:da:e7:c0:2f:3a:01:f9:a3:71:be:c7:a4:17: 5e:10:6b:08:69:96:e2:bf:8d:b6:94:39:2c:2c:10: 86:39:47:12:62:8f:47:28:8f:e5:e4:46:c1:9b:4a: 3d:2c:63:aa:32:df:99:2a:1c:d1:af:52:02:46:60: ef:ee:cf:cf:c6:ab:a7:a9:82:04:68:c9:34:8c:19: c7:a0:7a:b9:ce:73:51:d5:3e:3d:1d:c3:f4:4b:a3: b2:f4:90:7e:be:6c:43:bd:c1:07:9e:f7:e0:c1:97: b2:2e:22:25:10:f8:0f:83:8f:94:28:32:cc:9a:a7: 19:13:0e:0a:c8:06:e0:a0:87:32:1a:22:15:4f:a2: ae:9d:c0:fe:7c:a9:db:06:c1:ef:82:cf:a6:00:b4: 83:1a:42:ea:a2:74:bc:20:9c:57:0e:7f:67:29:1a: 5d:b0:dc:b2:ea:f5:e7:54:79:08:54:1c:92:7d:52: 82:d8:4f:95:9a:4f:dd:26:b0:3c:af:e0:45:90:f4: 94:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1E:CC:1A:74:CF:92:AB:61:9C:5F:71:01:23:93:7C:E5:0D:9C:43 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/WB7MGnTPkqthnF9xASOTfOUNnEM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.155.248.0/22 185.222.4.0/22 193.160.10.0/23 193.160.14.0/23 IPv6: 2a0c:8440::/29 2a0f:d180::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205296 208041 Signature Algorithm: sha256WithRSAEncryption 1d:e6:c2:d3:1a:88:bc:84:dd:f6:b8:8e:8e:e8:26:82:a8:e5: 79:4c:90:7d:6f:3b:d8:61:ef:a3:83:83:c5:a8:f2:d6:8c:af: 18:10:53:23:1c:11:88:68:8c:72:0d:89:db:03:dd:cc:5e:09: 64:4d:98:89:92:6f:3b:89:3c:a8:3a:9f:51:ac:0a:4a:77:d5: 40:3d:37:17:dc:8f:c9:4b:6d:97:62:56:68:ec:2d:85:b7:a2: fa:e9:84:54:71:c4:e2:73:1f:34:03:09:e5:1c:22:c2:b7:c1: c9:51:2b:df:21:36:3d:ee:18:0b:54:05:ff:4a:8e:d3:5c:e0: 2c:10:0d:dd:36:01:fc:a9:ad:fe:09:2c:88:05:3f:1d:c6:05: e4:4f:6a:c5:d0:2b:0b:4a:a4:be:e0:78:fa:50:65:dc:dd:c1: 1c:14:d5:9f:6d:c2:dd:78:c4:47:fc:ce:a5:e4:53:71:06:21: 0d:19:1b:0a:31:6f:61:0b:e8:3f:53:67:64:16:ca:8d:0f:5e: 60:c6:78:ca:a7:a8:e9:ab:81:3e:47:ef:6b:6c:41:d2:18:36: 1f:b2:11:9d:39:c6:5f:88:cd:01:5f:b6:5b:e3:87:f5:56:33: cb:32:bd:3f:d2:f2:60:3f:61:a9:f1:9e:9e:25:e7:bc:36:ef: d6:53:ac:03 -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgISAZt6WtTI949aiMqfJau2PCc0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODFlY2MxYTc0Y2Y5MmFiNjE5YzVmNzEwMTIzOTM3Y2U1MGQ5YzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjbXnUUIH+E7dUGIG058QSVKhFkiJ tDcsofzNg19xjxHTVhl0Gq0R3AXSwI/f9CeT5Dx6M1Ox6XWVqXOEOdrnwC86Afmj cb7HpBdeEGsIaZbiv422lDksLBCGOUcSYo9HKI/l5EbBm0o9LGOqMt+ZKhzRr1IC RmDv7s/PxqunqYIEaMk0jBnHoHq5znNR1T49HcP0S6Oy9JB+vmxDvcEHnvfgwZey LiIlEPgPg4+UKDLMmqcZEw4KyAbgoIcyGiIVT6KuncD+fKnbBsHvgs+mALSDGkLq onS8IJxXDn9nKRpdsNyy6vXnVHkIVBySfVKC2E+Vmk/dJrA8r+BFkPSUAwIDAQAB o4ICzTCCAskwHQYDVR0OBBYEFFgezBp0z5KrYZxfcQEjk3zlDZxDMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc3L2M3MWRh Zi1kZDY2LTQxZDgtYjA0Zi1kYTg4YjZiZGIzMTYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcvYzcxZGFm LWRkNjYtNDFkOC1iMDRmLWRhODhiNmJkYjMxNi8xL1dCN01HblRQa3F0aG5GOXhB U09UZk9VTm5FTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEcGCCsGAQUF BwEHAQH/BDgwNjAeBAIAATAYAwQCVZv4AwQCud4EAwQBwaAKAwQBwaAOMBQEAgAC MA4DBQMqDIRAAwUDKg/RgDAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMDIfACAwMs qTANBgkqhkiG9w0BAQsFAAOCAQEAHebC0xqIvITd9riOjugmgqjleUyQfW872GHv o4ODxajy1oyvGBBTIxwRiGiMcg2J2wPdzF4JZE2YiZJvO4k8qDqfUawKSnfVQD03 F9yPyUttl2JWaOwthbei+umEVHHE4nMfNAMJ5RwiwrfByVEr3yE2Pe4YC1QF/0qO 01zgLBAN3TYB/Kmt/gksiAU/HcYF5E9qxdArC0qkvuB4+lBl3N3BHBTVn23C3XjE R/zOpeRTcQYhDRkbCjFvYQvoP1NnZBbKjQ9eYMZ4yqeo6auBPkfva2xB0hg2H7IR nTnGX4jNAV+2W+OH9VYzyzK9P9LyYD9hqfGeniXnvDbv1lOsAw== -----END CERTIFICATE-----Generated at Mon Jan 26 17:47:25 2026 by rpki-client