This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WKXtjj7MkqLejICr6agZXV_5l-Y.cer File: WKXtjj7MkqLejICr6agZXV_5l-Y.cer (raw, json) Hash identifier: jxlxDtiijPZbNTmKoEJKDhJqRO3h/4pYKrwibC0Z8DU= Subject key identifier: 58:A5:ED:8E:3E:CC:92:A2:DE:8C:80:AB:E9:A8:19:5D:5F:F9:97:E6 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C11FA5E0EB71DCA94E1B18AC6C8D531 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/WKXtjj7MkqLejICr6agZXV_5l-Y.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:18:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49852 IP: 2001:678:6ac::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:fa:5e:0e:b7:1d:ca:94:e1:b1:8a:c6:c8:d5:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58a5ed8e3ecc92a2de8c80abe9a8195d5ff997e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:59:1d:8b:45:03:9a:b9:3f:9d:2d:ec:b7:42: e2:5c:3e:88:73:6b:4b:46:e5:6c:0c:32:d4:cd:2c: 74:0c:cc:74:17:b2:ad:2f:4f:a5:8e:d1:dc:4d:0d: cb:32:1f:c1:ac:dc:c0:dc:3d:37:c3:0e:7d:13:0f: fd:9e:19:0f:1f:81:55:85:91:36:e3:16:48:d4:bf: 1a:5b:58:bf:fc:c2:b1:af:70:fd:4d:6c:eb:3e:61: d8:0a:ea:24:ee:3b:9c:2f:3d:a4:26:76:b1:ee:d2: ce:aa:cb:6c:3c:36:2b:b4:6d:c0:46:de:9f:2b:72: e4:f7:dc:79:97:3a:e7:ed:5e:d4:b1:50:0d:30:b5: c2:30:bf:7d:3e:b6:22:12:7d:dd:ab:fc:4b:4c:58: 7b:2c:19:98:e4:ed:95:7f:34:a8:34:28:1f:a3:cb: 14:06:12:8d:72:81:bd:9e:a3:fa:2d:a7:8f:08:fc: 3a:d4:f0:f6:80:64:4f:32:11:a1:44:31:90:34:9b: 52:d6:9e:a1:b1:79:7a:59:09:f2:7c:d3:9f:a9:32: c8:86:90:9b:b8:b3:4a:0a:3f:6d:de:21:96:15:e7: 19:1f:86:f5:df:7f:5d:7e:dc:81:28:e5:7a:38:e0: 26:23:24:9d:e4:88:3d:6a:88:7b:f9:c4:2d:77:97: 14:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A5:ED:8E:3E:CC:92:A2:DE:8C:80:AB:E9:A8:19:5D:5F:F9:97:E6 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/WKXtjj7MkqLejICr6agZXV_5l-Y.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:6ac::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49852 Signature Algorithm: sha256WithRSAEncryption 40:91:6c:fb:65:b7:65:a5:b2:09:17:b7:98:c3:9b:a6:88:7a: 59:df:45:69:03:d4:70:81:92:70:74:1a:31:63:d9:e1:fa:27: 5f:18:32:4d:5d:a3:cb:ac:55:78:22:34:28:f2:a7:e4:22:72: 0e:f2:ed:db:c9:9e:de:9a:dc:09:6f:72:74:7b:b5:b9:7c:1e: 25:79:f3:17:da:bb:ab:ea:93:68:ce:e7:ab:f2:56:59:46:ce: 1c:21:f4:80:5e:dc:9a:99:42:fa:bf:82:f8:f9:ba:c8:db:a7: 7a:9c:43:c5:08:06:3d:c6:3f:4d:6b:2f:10:f0:c8:d0:c1:e1: ec:da:0c:a3:cd:99:4e:28:2a:38:fd:68:43:5d:60:0b:9c:b6: cc:81:dd:b7:c8:78:da:af:55:e0:b2:3e:04:40:98:72:51:5d: c3:9c:70:b8:85:a7:0c:25:05:40:49:18:30:6c:14:9d:85:84: a8:7e:46:14:1f:db:d3:9d:46:f9:bc:f7:23:3f:b6:23:24:a7: 37:06:4e:dc:f3:09:9a:e5:21:9c:74:81:11:dd:5b:db:73:28: e0:13:8d:35:f8:8c:77:58:de:b7:0e:8a:db:76:2f:83:08:5e: 25:1c:83:2c:41:3a:64:a7:40:23:92:a9:86:a0:49:35:85:52: 18:34:1e:51 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt8EfpeDrcdypThsYrGyNUxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGE1ZWQ4ZTNlY2M5MmEyZGU4YzgwYWJlOWE4MTk1ZDVmZjk5N2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFkdi0UDmrk/nS3st0LiXD6Ic2tL RuVsDDLUzSx0DMx0F7KtL0+ljtHcTQ3LMh/BrNzA3D03ww59Ew/9nhkPH4FVhZE2 4xZI1L8aW1i//MKxr3D9TWzrPmHYCuok7jucLz2kJnax7tLOqstsPDYrtG3ARt6f K3Lk99x5lzrn7V7UsVANMLXCML99PrYiEn3dq/xLTFh7LBmY5O2VfzSoNCgfo8sU BhKNcoG9nqP6LaePCPw61PD2gGRPMhGhRDGQNJtS1p6hsXl6WQnyfNOfqTLIhpCb uLNKCj9t3iGWFecZH4b1339dftyBKOV6OOAmIySd5Ig9aoh7+cQtd5cUEQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFFil7Y4+zJKi3oyAq+moGV1f+ZfmMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc5L2M1ODE4 OS1kNTdlLTQxNWQtYjk3Ny0wMDY3YmNhZjM3NzAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzkvYzU4MTg5 LWQ1N2UtNDE1ZC1iOTc3LTAwNjdiY2FmMzc3MC8xL1dLWHRqajdNa3FMZWpJQ3I2 YWdaWFZfNWwtWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAasMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwDCvDANBgkqhkiG9w0BAQsFAAOCAQEAQJFs+2W3ZaWyCRe3mMObpoh6Wd9F aQPUcIGScHQaMWPZ4fonXxgyTV2jy6xVeCI0KPKn5CJyDvLt28me3prcCW9ydHu1 uXweJXnzF9q7q+qTaM7nq/JWWUbOHCH0gF7cmplC+r+C+Pm6yNunepxDxQgGPcY/ TWsvEPDI0MHh7NoMo82ZTigqOP1oQ11gC5y2zIHdt8h42q9V4LI+BECYclFdw5xw uIWnDCUFQEkYMGwUnYWEqH5GFB/b051G+bz3Iz+2IySnNwZO3PMJmuUhnHSBEd1b 23Mo4BONNfiMd1jetw6K23YvgwheJRyDLEE6ZKdAI5KphqBJNYVSGDQeUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:15 2026 by rpki-client