This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WsswiUYeH1-JhLd0LIm7aPG4jBI.cer File: WsswiUYeH1-JhLd0LIm7aPG4jBI.cer (raw, json) Hash identifier: g38KAFkH6/QFs3CnfOfDKKSofld9dW3Ly4gI9Bc5Eds= Subject key identifier: 5A:CB:30:89:46:1E:1F:5F:89:84:B7:74:2C:89:BB:68:F1:B8:8C:12 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C71755175CF579141670471934D9B8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/2053c4-bc4a-416a-8970-ac536b2ab4f8/1/WsswiUYeH1-JhLd0LIm7aPG4jBI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/2053c4-bc4a-416a-8970-ac536b2ab4f8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:14 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41585 IP: 91.136.128.0/17 IP: 91.194.254.0/23 IP: 91.195.50.0/23 IP: 194.9.124.0 -- 194.9.126.255 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:17:55:17:5c:f5:79:14:16:70:47:19:34:d9:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5acb3089461e1f5f8984b7742c89bb68f1b88c12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fd:54:77:44:e3:ff:73:9c:76:b4:89:67:2a: de:da:8a:29:c3:45:4f:af:38:73:c9:ca:17:1a:08: 0c:01:e8:b2:5b:cf:0e:59:b6:36:72:d4:4a:c4:08: 8e:3f:cd:00:36:e6:eb:30:af:6c:00:2a:9b:f9:6e: e0:55:19:96:ad:2a:d9:88:8e:c3:e1:82:73:35:b2: 44:85:10:98:00:0f:97:83:a4:22:90:8b:7f:b1:1d: 6b:4f:24:85:f0:57:a8:bc:88:33:74:70:af:29:1e: c9:6d:3f:a0:48:61:d9:2c:db:84:39:35:d3:8e:72: d0:ae:25:2c:bc:c0:43:dd:0a:4b:9e:e5:e6:8f:f1: 51:d6:b3:c7:ed:de:08:b0:f0:ab:ad:2f:83:4c:fe: 4e:d3:93:e5:3d:4e:ea:cb:0d:3e:d1:d4:8d:1d:56: 09:34:66:84:bb:60:9b:c1:da:50:f0:8f:4f:9f:57: 85:61:ce:cc:95:de:0b:af:20:1d:0f:30:3f:09:8c: 19:73:3d:4d:55:ef:db:1b:84:1f:02:11:b3:5b:08: 70:36:e6:10:4e:03:e1:e8:6c:ff:77:54:cc:90:fe: 07:09:61:ac:f1:22:d9:a6:da:fd:8c:94:dc:04:a3: 5e:17:bb:c0:3b:d5:cd:de:51:de:f3:6e:b5:bb:b1: 27:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CB:30:89:46:1E:1F:5F:89:84:B7:74:2C:89:BB:68:F1:B8:8C:12 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2053c4-bc4a-416a-8970-ac536b2ab4f8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2053c4-bc4a-416a-8970-ac536b2ab4f8/1/WsswiUYeH1-JhLd0LIm7aPG4jBI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.136.128.0/17 91.194.254.0/23 91.195.50.0/23 194.9.124.0-194.9.126.255 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41585 Signature Algorithm: sha256WithRSAEncryption 1d:4b:a4:7e:67:4b:0c:71:6b:36:cb:99:be:63:bb:ba:3e:14: 7e:89:8f:8d:6c:e7:29:b2:da:ec:1f:b9:70:b4:13:44:88:b0: bb:41:be:16:80:1a:81:b9:32:51:4b:59:04:4e:e8:2a:df:1b: 3f:ee:0e:bd:90:c9:ae:d5:c7:81:7a:53:50:f1:5a:df:48:85: 26:5b:be:0f:d6:8c:7d:be:eb:ba:c4:e0:02:55:38:2b:d1:e1: 27:2f:90:ab:6f:6b:e2:df:9f:22:76:93:1d:4a:68:76:5c:66: c4:cd:47:5a:74:53:73:69:dd:56:ff:4c:4e:02:53:6e:e3:a5: 62:75:2b:0a:83:69:35:9c:3c:05:68:cd:64:1e:f2:76:69:5e: fb:b5:71:3f:5a:e6:f9:e7:b7:76:72:ad:4b:c0:41:96:37:48: d4:6c:87:3f:7a:0e:d1:cb:1d:6c:ab:9a:53:9e:b4:57:4d:7d: 38:1f:24:fe:6b:ad:77:f4:ad:6d:39:d6:d5:9a:46:a5:05:4c: 52:13:e0:c6:01:e5:58:c1:af:48:32:78:01:ea:e7:e4:ad:7f: 4c:92:0a:27:b5:31:ae:92:97:b2:22:3a:b1:8f:43:8e:20:14: 1d:3b:ff:cd:89:8a:65:b8:10:3a:af:f3:5c:47:84:4f:85:84: 35:56:9a:b5 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt3xxdVF1z1eRQWcEcZNNm4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YWNiMzA4OTQ2MWUxZjVmODk4NGI3NzQyYzg5YmI2OGYxYjg4YzEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/1Ud0Tj/3OcdrSJZyre2oopw0VP rzhzycoXGggMAeiyW88OWbY2ctRKxAiOP80ANubrMK9sACqb+W7gVRmWrSrZiI7D 4YJzNbJEhRCYAA+Xg6QikIt/sR1rTySF8FeovIgzdHCvKR7JbT+gSGHZLNuEOTXT jnLQriUsvMBD3QpLnuXmj/FR1rPH7d4IsPCrrS+DTP5O05PlPU7qyw0+0dSNHVYJ NGaEu2CbwdpQ8I9Pn1eFYc7Mld4LryAdDzA/CYwZcz1NVe/bG4QfAhGzWwhwNuYQ TgPh6Gz/d1TMkP4HCWGs8SLZptr9jJTcBKNeF7vAO9XN3lHe8261u7EnOQIDAQAB o4ICujCCArYwHQYDVR0OBBYEFFrLMIlGHh9fiYS3dCyJu2jxuIwSMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAzLzIwNTNj NC1iYzRhLTQxNmEtODk3MC1hYzUzNmIyYWI0ZjgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMvMjA1M2M0 LWJjNGEtNDE2YS04OTcwLWFjNTM2YjJhYjRmOC8xL1dzc3dpVVllSDEtSmhMZDBM SW03YVBHNGpCSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUF BwEHAQH/BCowKDAmBAIAATAgAwQHW4iAAwQBW8L+AwQBW8MyMAwDBALCCXwDBADC CX4wGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAKJxMA0GCSqGSIb3DQEBCwUAA4IB AQAdS6R+Z0sMcWs2y5m+Y7u6PhR+iY+NbOcpstrsH7lwtBNEiLC7Qb4WgBqBuTJR S1kETugq3xs/7g69kMmu1ceBelNQ8VrfSIUmW74P1ox9vuu6xOACVTgr0eEnL5Cr b2vi358idpMdSmh2XGbEzUdadFNzad1W/0xOAlNu46VidSsKg2k1nDwFaM1kHvJ2 aV77tXE/Wub557d2cq1LwEGWN0jUbIc/eg7Ryx1sq5pTnrRXTX04HyT+a6139K1t OdbVmkalBUxSE+DGAeVYwa9IMngB6ufkrX9MkgontTGukpeyIjqxj0OOIBQdO//N iYpluBA6r/NcR4RPhYQ1Vpq1 -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:44 2026 by rpki-client