This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WpTEvE0lY-JS6_zA-8KsGZzOYIo.cer File: WpTEvE0lY-JS6_zA-8KsGZzOYIo.cer (raw, json) Hash identifier: Y+dYBvOqzRqCGTYY+mGjxz6rUxw+2R5iulqkr7+C2Lc= Subject key identifier: 5A:94:C4:BC:4D:25:63:E2:52:EB:FC:C0:FB:C2:AC:19:9C:CE:60:8A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5AF11A18F50C83E44362B002A7FBFA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/WpTEvE0lY-JS6_zA-8KsGZzOYIo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:17:50 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43242 AS: 204918 IP: 78.135.0.0/18 IP: 185.171.92.0/22 IP: 2a0a:1900::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:f1:1a:18:f5:0c:83:e4:43:62:b0:02:a7:fb:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5a94c4bc4d2563e252ebfcc0fbc2ac199cce608a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f8:a6:c1:38:3e:a7:91:9e:6d:67:a7:34:8e: 2b:ed:ad:ee:ed:f5:34:a1:f6:1e:b9:1b:97:60:b3: f4:74:fe:df:e9:48:b6:03:23:cb:0d:ec:7a:ad:b2: ad:8f:05:75:5d:d3:bf:6b:d8:b4:62:99:5f:d1:c5: 90:98:e7:f5:0a:29:06:ed:fa:d2:70:1d:02:33:23: f5:15:16:c8:a2:c7:01:f4:54:46:92:c1:52:96:30: 76:97:24:3a:bf:cd:7a:9d:11:5a:af:1f:df:20:9e: 82:c4:06:7d:ff:74:33:3e:a2:59:c0:32:03:01:19: 4b:23:bb:e3:59:37:ab:e0:d3:85:27:93:47:5d:a2: 06:2f:8d:ef:3b:16:d2:bc:6b:7a:cf:c9:89:74:e5: 82:0a:af:e0:1c:31:6b:e4:3a:bc:4d:64:0b:e4:ea: 1f:1f:f1:28:57:e5:08:f6:b9:11:00:4b:df:51:97: 36:cf:63:92:92:46:68:ca:58:7e:4a:8a:bb:63:cc: 03:9e:1f:1f:90:89:04:39:ef:6c:0a:7f:0d:26:f1: d6:c2:a6:0c:f7:63:77:20:1a:db:ab:7d:5d:bf:d8: db:b7:0c:7a:ed:8b:de:25:44:ec:42:cd:f3:87:93: c5:6f:b3:78:b8:82:a6:96:eb:89:05:e9:88:41:aa: 7e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:94:C4:BC:4D:25:63:E2:52:EB:FC:C0:FB:C2:AC:19:9C:CE:60:8A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/WpTEvE0lY-JS6_zA-8KsGZzOYIo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.135.0.0/18 185.171.92.0/22 IPv6: 2a0a:1900::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43242 204918 Signature Algorithm: sha256WithRSAEncryption 87:6f:5a:00:79:e8:f5:79:7a:6d:5c:80:60:90:7a:e7:43:f8: f6:3b:85:1d:82:d4:fe:ff:f8:f6:7a:4b:6e:3a:ff:31:89:2e: fd:5a:2d:66:1d:ca:37:8a:e0:64:e4:a3:2e:66:ff:1a:bf:50: e8:71:e5:db:e3:b7:53:82:46:0b:86:ee:10:e0:6c:e8:ea:ca: 26:58:63:15:ad:9c:6e:49:ec:e6:36:20:f4:cc:a4:54:15:19: 04:35:78:71:c6:3d:f9:e9:eb:fb:da:39:64:1d:a0:51:0c:f5: 67:60:45:96:05:60:47:7c:86:39:46:16:a8:6a:63:fd:8c:4a: 3b:f6:3f:28:1d:5a:2c:a7:d1:63:6c:2e:6a:53:78:91:78:2e: 0d:73:90:e3:84:1f:1a:ed:92:6a:1d:94:d4:7a:ab:b4:79:4e: 58:d6:25:e1:fd:31:e1:aa:1e:92:43:1b:24:cb:ff:07:c9:80: 97:05:66:cb:ef:98:3e:7c:a4:1f:6a:d3:f3:32:94:91:bf:56: b1:dc:e3:3b:e2:70:e0:7b:6d:87:72:05:cf:32:4f:41:97:f0: c8:66:7b:d0:a0:44:57:3f:65:70:71:0c:d4:8a:71:27:fa:5f: 76:d6:4d:d3:aa:e5:2f:2a:13:03:b4:0b:13:56:22:1f:c2:b0: 7c:4e:60:92 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt9WvEaGPUMg+RDYrACp/v6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YTk0YzRiYzRkMjU2M2UyNTJlYmZjYzBmYmMyYWMxOTljY2U2MDhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPimwTg+p5GebWenNI4r7a3u7fU0 ofYeuRuXYLP0dP7f6Ui2AyPLDex6rbKtjwV1XdO/a9i0Yplf0cWQmOf1CikG7frS cB0CMyP1FRbIoscB9FRGksFSljB2lyQ6v816nRFarx/fIJ6CxAZ9/3QzPqJZwDID ARlLI7vjWTer4NOFJ5NHXaIGL43vOxbSvGt6z8mJdOWCCq/gHDFr5Dq8TWQL5Oof H/EoV+UI9rkRAEvfUZc2z2OSkkZoylh+Soq7Y8wDnh8fkIkEOe9sCn8NJvHWwqYM 92N3IBrbq31dv9jbtwx67YveJUTsQs3zh5PFb7N4uIKmluuJBemIQap+OwIDAQAB o4ICujCCArYwHQYDVR0OBBYEFFqUxLxNJWPiUuv8wPvCrBmczmCKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA0L2M0Y2Nj My02NWQ2LTQ4NWQtOWJlMC1hN2E1ZjQ3OGRkNzIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQvYzRjY2Mz LTY1ZDYtNDg1ZC05YmUwLWE3YTVmNDc4ZGQ3Mi8xL1dwVEV2RTBsWS1KUzZfekEt OEtzR1p6T1lJby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQGTocAAwQCuatcMA0EAgACMAcDBQMqChkAMB8G CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwCo6gIDAyB2MA0GCSqGSIb3DQEBCwUAA4IB AQCHb1oAeej1eXptXIBgkHrnQ/j2O4UdgtT+//j2ektuOv8xiS79Wi1mHco3iuBk 5KMuZv8av1DoceXb47dTgkYLhu4Q4Gzo6somWGMVrZxuSezmNiD0zKRUFRkENXhx xj356ev72jlkHaBRDPVnYEWWBWBHfIY5RhaoamP9jEo79j8oHVosp9FjbC5qU3iR eC4Nc5DjhB8a7ZJqHZTUequ0eU5Y1iXh/THhqh6SQxsky/8HyYCXBWbL75g+fKQf atPzMpSRv1ax3OM74nDge22HcgXPMk9Bl/DIZnvQoERXP2VwcQzUinEn+l921k3T quUvKhMDtAsTViIfwrB8TmCS -----END CERTIFICATE-----Generated at Mon Feb 9 19:50:58 2026 by rpki-client