This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer File: WLuO46dH7YtXhlfN1HN1hvX9uTE.cer (raw, json) Hash identifier: 7I6nkTCguyQz771x1my/6vQ7ePh2mkDBWGpojQdHvs8= Subject key identifier: 58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B35E5246A3E22A752D6CA6D36F49C8B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 8356 AS: 8676 AS: 47578 AS: 56739 AS: 209035 IP: 31.7.8.0/21 IP: 185.109.124.0/22 IP: 185.109.136.0/22 IP: 217.65.160.0/20 IP: 217.198.56.0/21 IP: 2001:768::/32 IP: 2001:1420::/29 IP: 2a03:9f00::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:e5:24:6a:3e:22:a7:52:d6:ca:6d:36:f4:9c:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b9:aa:e3:51:73:91:ff:dc:f4:6e:23:0a:7f: 6b:9b:cc:b7:3d:2c:81:6d:f0:f0:37:48:ca:eb:11: b4:9a:57:94:ee:73:1c:9f:7e:24:4c:f2:b9:22:d3: 2f:04:1d:47:02:f5:88:7d:ee:29:d2:2c:25:e7:56: 95:55:a2:64:40:2f:1d:fb:a9:77:11:20:9f:4f:b2: dc:6d:f0:b7:fe:3e:8e:93:c8:36:2f:8a:ef:e0:25: 53:81:45:96:89:99:3f:5c:62:ea:a5:57:2a:06:51: 31:02:99:e0:66:0b:b9:ad:8d:fc:29:97:f5:74:0f: b2:9d:85:48:4d:0c:c1:bb:83:89:1d:67:b8:e0:05: 48:c5:60:e2:e8:ea:d8:8d:ba:29:c4:12:9b:09:54: 4a:e4:75:70:1a:83:3e:e2:0d:a8:62:be:90:61:f5: 25:68:5e:3d:a2:b4:06:6c:42:69:2c:e6:af:71:6e: 4d:3f:10:d5:6f:ab:35:8a:ef:42:4a:c1:be:51:96: f0:57:2a:3c:1b:51:35:79:76:5a:b4:21:70:66:a1: 15:8b:4c:8d:b7:01:3d:23:d3:01:c6:7a:59:99:4b: c5:bf:79:ef:44:03:2d:73:cd:b5:03:ce:79:54:12: 7d:8f:dc:ee:aa:2b:e1:c0:c5:65:f4:e8:58:e3:1a: 23:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.7.8.0/21 185.109.124.0/22 185.109.136.0/22 217.65.160.0/20 217.198.56.0/21 IPv6: 2001:768::/32 2001:1420::/29 2a03:9f00::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 8356 8676 47578 56739 209035 Signature Algorithm: sha256WithRSAEncryption 8a:3b:18:25:8f:c8:0d:30:b0:60:83:f4:ca:79:a2:43:7a:a2: 27:c1:a4:df:04:2f:1a:a5:b6:cd:e1:14:fb:b9:66:b6:0e:18: 0a:89:d1:c4:f5:a5:91:ed:27:01:c8:1d:3b:75:f4:c7:12:43: f3:9e:a8:b6:df:aa:b0:f3:be:a3:fa:f3:eb:d3:a7:0a:c3:c1: a6:54:06:81:19:03:88:53:1e:64:5a:82:50:0d:c6:2a:bd:c3: 00:3f:38:2c:e9:2d:ba:00:81:b1:6e:e4:c9:ad:84:8a:3a:95: 31:c7:d7:06:b9:6d:67:c8:a8:af:26:6d:db:f5:c0:97:1b:cf: 1d:2b:17:66:31:d4:f5:5f:ee:c8:8c:e9:cc:e1:5b:f5:40:97: 0f:b3:7a:c1:31:07:3d:44:6c:01:54:c1:1b:02:2e:1e:6a:88: 25:fb:bd:31:53:4d:b0:bc:df:83:8a:e8:45:ff:a6:3c:fc:1f: 20:d8:b0:01:d5:c0:98:f3:2e:00:d8:23:fc:fb:88:a6:e9:89: cb:cf:4d:de:52:1a:d5:3a:7e:8c:83:e5:48:09:cb:a4:87:47: 96:8e:4a:ba:e3:49:48:1c:46:1f:a2:7d:86:2d:bf:31:ab:1f: 5b:29:0b:38:e0:25:8c:73:bc:c3:0c:83:c3:7e:ae:a5:ea:7c: 66:0d:eb:54 -----BEGIN CERTIFICATE----- MIIF2zCCBMOgAwIBAgISAZt7NeUkaj4ip1LWym029JyLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGJiOGVlM2E3NDdlZDhiNTc4NjU3Y2RkNDczNzU4NmY1ZmRiOTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbmq41Fzkf/c9G4jCn9rm8y3PSyB bfDwN0jK6xG0mleU7nMcn34kTPK5ItMvBB1HAvWIfe4p0iwl51aVVaJkQC8d+6l3 ESCfT7LcbfC3/j6Ok8g2L4rv4CVTgUWWiZk/XGLqpVcqBlExApngZgu5rY38KZf1 dA+ynYVITQzBu4OJHWe44AVIxWDi6OrYjbopxBKbCVRK5HVwGoM+4g2oYr6QYfUl aF49orQGbEJpLOavcW5NPxDVb6s1iu9CSsG+UZbwVyo8G1E1eXZatCFwZqEVi0yN twE9I9MBxnpZmUvFv3nvRAMtc821A855VBJ9j9zuqivhwMVl9OhY4xojvQIDAQAB o4IC5zCCAuMwHQYDVR0OBBYEFFi7juOnR+2LV4ZXzdRzdYb1/bkxMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YyLzAzYTcw Yi0zYmM2LTQzMzktOWU0OS1hODNmOTE0MDM1YjMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIvMDNhNzBi LTNiYzYtNDMzOS05ZTQ5LWE4M2Y5MTQwMzViMy8xL1dMdU80NmRIN1l0WGhsZk4x SE4xaHZYOXVURS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFQGCCsGAQUF BwEHAQH/BEUwQzAkBAIAATAeAwQDHwcIAwQCuW18AwQCuW2IAwQE2UGgAwQD2cY4 MBsEAgACMBUDBQAgAQdoAwUDIAEUIAMFACoDnwAwLAYIKwYBBQUHAQgBAf8EHTAb oBkwFwICIKQCAiHkAgMAudoCAwDdowIDAzCLMA0GCSqGSIb3DQEBCwUAA4IBAQCK Oxglj8gNMLBgg/TKeaJDeqInwaTfBC8apbbN4RT7uWa2DhgKidHE9aWR7ScByB07 dfTHEkPznqi236qw876j+vPr06cKw8GmVAaBGQOIUx5kWoJQDcYqvcMAPzgs6S26 AIGxbuTJrYSKOpUxx9cGuW1nyKivJm3b9cCXG88dKxdmMdT1X+7IjOnM4Vv1QJcP s3rBMQc9RGwBVMEbAi4eaogl+70xU02wvN+DiuhF/6Y8/B8g2LAB1cCY8y4A2CP8 +4im6YnLz03eUhrVOn6Mg+VICcukh0eWjkq640lIHEYfon2GLb8xqx9bKQs44CWM c7zDDIPDfq6l6nxmDetU -----END CERTIFICATE-----Generated at Mon Feb 2 15:57:57 2026 by rpki-client