This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Wg5Ii7CdKHPWYuKEaiKIpCXe2UY.cer File: Wg5Ii7CdKHPWYuKEaiKIpCXe2UY.cer (raw, json) Hash identifier: HkubwEOybRajI6zMYvmY7GxlZA11YU8j3hLijMs6Osg= Subject key identifier: 5A:0E:48:8B:B0:9D:28:73:D6:62:E2:84:6A:22:88:A4:25:DE:D9:46 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEDC64B18AC8327645B2CE6F370527F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/21/11cc2a-ad66-4d2a-9e30-1f59bc7287cd/1/Wg5Ii7CdKHPWYuKEaiKIpCXe2UY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/21/11cc2a-ad66-4d2a-9e30-1f59bc7287cd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 6812 AS: 200946 IP: 2a00:60e0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:c6:4b:18:ac:83:27:64:5b:2c:e6:f3:70:52:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5a0e488bb09d2873d662e2846a2288a425ded946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5e:d1:5e:0d:4b:1d:38:12:e9:82:f4:9f:3c: 58:9b:3c:85:9d:cd:1d:fe:55:0d:7c:ff:83:5f:9c: 23:8f:b6:dd:8c:93:af:b7:4c:d9:b4:4f:de:65:80: 02:07:8d:1d:0f:80:05:55:76:90:73:7d:ec:8e:11: 1f:b9:75:e0:49:78:46:a0:8f:70:0b:2b:2f:a8:8d: 1e:fe:5f:41:99:4a:74:00:e8:fa:5e:e8:1c:07:27: f5:dc:98:19:4e:2b:03:80:a0:5f:05:83:c4:30:2b: a2:43:09:e4:c8:bd:26:e0:4b:49:ec:1c:dc:7e:60: 9a:57:47:c5:b2:04:3b:ac:a7:10:6a:b9:46:56:7f: 20:1d:c1:27:b8:da:4d:f9:79:f9:73:c0:3e:2e:da: 13:2f:b6:f0:74:de:f7:31:91:0a:04:4c:a1:cb:5e: 76:55:a3:f9:b9:d2:32:1c:b6:fc:97:3a:0a:38:64: 4a:d0:77:4f:3d:c2:fd:b9:5d:fa:45:e0:2c:ec:c8: a8:31:d6:95:0d:28:bf:f5:c7:cc:26:42:69:1e:eb: 72:e0:2e:c5:8b:5a:ab:e7:70:02:e0:22:be:69:0a: 50:77:35:f4:b0:6c:6a:69:cf:b5:20:cc:50:7f:97: 37:8e:d9:7d:8a:04:7b:39:6c:17:3a:54:0a:96:e4: d7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0E:48:8B:B0:9D:28:73:D6:62:E2:84:6A:22:88:A4:25:DE:D9:46 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/11cc2a-ad66-4d2a-9e30-1f59bc7287cd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/11cc2a-ad66-4d2a-9e30-1f59bc7287cd/1/Wg5Ii7CdKHPWYuKEaiKIpCXe2UY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:60e0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 6812 200946 Signature Algorithm: sha256WithRSAEncryption 44:d9:bf:06:44:44:f2:47:b2:4d:52:b6:7c:26:49:79:a7:49: 4f:6a:ca:10:66:54:db:ef:2b:d5:2d:3c:56:78:d3:8d:db:ea: 14:c7:49:e5:bb:a6:ee:d9:fc:88:23:af:cb:cb:7c:37:7d:77: 65:c7:28:bf:1a:47:be:ca:8e:4a:71:0a:3e:da:86:54:6d:62: 75:a1:ae:bb:83:f0:ff:bd:cf:55:9f:dc:1a:72:d0:cb:f4:32: 79:e7:08:8a:a2:60:75:ee:d3:ba:10:4e:da:ae:69:69:07:a8: 2f:1f:d0:58:de:fb:4c:4a:d5:02:90:95:ad:f3:11:7c:df:85: b2:6e:b0:62:20:93:0d:3e:27:52:f5:ff:78:cd:b3:16:f0:24: 0d:29:9a:24:45:06:dc:58:68:42:00:22:17:99:fb:7e:88:27: 23:ea:fc:ce:fd:40:ec:af:7b:b5:3c:cf:01:52:23:de:cc:68: fa:d5:a6:af:5d:89:d3:69:d0:6c:b3:a7:71:85:53:3d:cb:69: 14:67:46:c1:e0:82:2f:f2:42:1c:47:51:51:78:0b:d5:b3:d8: 21:f3:66:46:a9:e4:51:c5:0e:0a:57:6b:9b:cf:98:d7:31:af: c8:6e:17:d5:38:b5:a7:9f:c9:be:db:88:5d:20:c9:85:41:bb: f9:d2:7c:c6 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgISAZt87cZLGKyDJ2RbLObzcFJ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YTBlNDg4YmIwOWQyODczZDY2MmUyODQ2YTIyODhhNDI1ZGVkOTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuV7RXg1LHTgS6YL0nzxYmzyFnc0d /lUNfP+DX5wjj7bdjJOvt0zZtE/eZYACB40dD4AFVXaQc33sjhEfuXXgSXhGoI9w CysvqI0e/l9BmUp0AOj6XugcByf13JgZTisDgKBfBYPEMCuiQwnkyL0m4EtJ7Bzc fmCaV0fFsgQ7rKcQarlGVn8gHcEnuNpN+Xn5c8A+LtoTL7bwdN73MZEKBEyhy152 VaP5udIyHLb8lzoKOGRK0HdPPcL9uV36ReAs7MioMdaVDSi/9cfMJkJpHuty4C7F i1qr53AC4CK+aQpQdzX0sGxqac+1IMxQf5c3jtl9igR7OWwXOlQKluTX0wIDAQAB o4ICpTCCAqEwHQYDVR0OBBYEFFoOSIuwnShz1mLihGoiiKQl3tlGMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIxLzExY2My YS1hZDY2LTRkMmEtOWUzMC0xZjU5YmM3Mjg3Y2QvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjEvMTFjYzJh LWFkNjYtNGQyYS05ZTMwLTFmNTliYzcyODdjZC8xL1dnNUlpN0NkS0hQV1l1S0Vh aUtJcENYZTJVWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF BwEHAQH/BBEwDzANBAIAAjAHAwUAKgBg4DAeBggrBgEFBQcBCAEB/wQPMA2gCzAJ AgIanAIDAxDyMA0GCSqGSIb3DQEBCwUAA4IBAQBE2b8GRETyR7JNUrZ8Jkl5p0lP asoQZlTb7yvVLTxWeNON2+oUx0nlu6bu2fyII6/Ly3w3fXdlxyi/Gke+yo5KcQo+ 2oZUbWJ1oa67g/D/vc9Vn9wactDL9DJ55wiKomB17tO6EE7armlpB6gvH9BY3vtM StUCkJWt8xF834WybrBiIJMNPidS9f94zbMW8CQNKZokRQbcWGhCACIXmft+iCcj 6vzO/UDsr3u1PM8BUiPezGj61aavXYnTadBss6dxhVM9y2kUZ0bB4IIv8kIcR1FR eAvVs9gh82ZGqeRRxQ4KV2ubz5jXMa/IbhfVOLWnn8m+24hdIMmFQbv50nzG -----END CERTIFICATE-----Generated at Mon Feb 9 19:46:48 2026 by rpki-client