This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WtDEH96ZZRsTKQb_BgK0e1YHpb4.cer File: WtDEH96ZZRsTKQb_BgK0e1YHpb4.cer (raw, json) Hash identifier: Taa2hx+ts7RnT2ewcXJ4wGNi4lK/HZ0cGaYDMaM7VG4= Subject key identifier: 5A:D0:C4:1F:DE:99:65:1B:13:29:06:FF:06:02:B4:7B:56:07:A5:BE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E384EB8026B9120692709D186A6DB4E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/WtDEH96ZZRsTKQb_BgK0e1YHpb4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:38 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 199919 IP: 45.153.96.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:4e:b8:02:6b:91:20:69:27:09:d1:86:a6:db:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ad0c41fde99651b132906ff0602b47b5607a5be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:da:8b:29:54:c2:4a:ee:ef:04:ab:94:e9:98: ce:b4:5c:36:a7:a9:e4:db:4c:cc:7c:76:90:15:21: b7:ca:69:30:c7:48:db:77:af:16:ec:a9:3b:fe:a4: 1c:7d:6a:e5:8d:04:52:02:ae:48:2b:fa:f1:6b:5f: 79:48:58:d0:7e:21:45:03:cc:a3:b6:23:43:da:24: c7:0f:bb:69:45:ac:7c:aa:11:44:9d:c6:be:be:3a: 5e:e3:08:9b:c4:34:54:6d:81:53:b7:8e:33:c1:7c: 0f:a2:13:e3:79:66:1c:bb:e2:4a:90:a1:05:27:44: 7e:fc:c4:bd:8c:0f:53:0c:a9:a4:d1:92:15:3d:04: 0d:4c:d7:41:8a:aa:5c:fb:56:3f:1c:42:97:1a:58: 0f:23:1d:a3:7a:1f:33:65:fd:f0:50:20:cb:e4:96: e6:d1:69:d0:b6:3c:b0:0d:11:d6:f7:38:4f:9e:ff: 89:0a:10:ac:36:50:8c:4e:2b:91:00:17:d2:c0:ef: 60:c4:ca:5b:56:17:87:f8:08:5e:e2:b8:87:16:d8: 77:d1:7d:de:2c:30:c1:48:d4:b6:ba:a1:b7:35:ff: 4f:5c:c2:35:86:2e:1b:00:24:2d:3a:24:f5:d6:d5: 88:24:78:8a:ae:38:ce:31:af:9d:16:1d:93:74:a7: 3c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D0:C4:1F:DE:99:65:1B:13:29:06:FF:06:02:B4:7B:56:07:A5:BE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/WtDEH96ZZRsTKQb_BgK0e1YHpb4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.153.96.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 199919 Signature Algorithm: sha256WithRSAEncryption a7:a1:a5:bd:a6:22:4d:b8:d1:66:bb:f7:47:1c:77:a5:69:10: d6:a5:2c:11:ca:1d:c5:9d:b0:e8:c6:10:a0:e5:df:43:50:ba: 0b:19:8c:58:5e:ee:93:2c:d3:08:20:f7:d4:9c:f9:0d:ca:cd: c4:11:69:c7:21:f7:0a:33:1a:d1:c9:82:b1:e3:b2:17:6c:26: c5:3f:1a:53:a0:81:8f:38:80:6b:0c:86:d4:fe:da:12:a7:9d: b1:5f:71:73:99:e7:d5:ff:73:ad:81:a0:5f:35:9c:e5:c5:b4: 9c:cc:db:c1:43:e3:92:44:95:af:41:0c:28:98:b1:5b:87:13: 45:85:cd:4f:99:df:ec:f0:81:af:a0:f5:3c:6a:3d:a8:ee:c7: 13:2a:38:3f:81:48:0f:46:b3:0a:ce:96:3a:83:80:17:66:d4: 56:68:52:38:78:c6:02:8e:b5:9e:65:03:a2:06:7f:c8:47:bc: a8:70:69:4d:e9:7a:e9:74:13:88:5a:50:7c:be:04:69:57:fa: a0:17:94:46:54:56:c0:05:b4:2f:e2:e9:e4:5b:1c:aa:f2:16: 60:13:69:73:1b:b2:6c:b0:7f:a0:68:e3:ed:56:c0:b1:54:cc: a2:06:a8:b9:ad:0d:ad:1e:ec:fa:0f:b9:dc:b9:b2:d3:08:48: ef:6d:cf:47 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt+OE64AmuRIGknCdGGpttOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YWQwYzQxZmRlOTk2NTFiMTMyOTA2ZmYwNjAyYjQ3YjU2MDdhNWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9qLKVTCSu7vBKuU6ZjOtFw2p6nk 20zMfHaQFSG3ymkwx0jbd68W7Kk7/qQcfWrljQRSAq5IK/rxa195SFjQfiFFA8yj tiND2iTHD7tpRax8qhFEnca+vjpe4wibxDRUbYFTt44zwXwPohPjeWYcu+JKkKEF J0R+/MS9jA9TDKmk0ZIVPQQNTNdBiqpc+1Y/HEKXGlgPIx2jeh8zZf3wUCDL5Jbm 0WnQtjywDRHW9zhPnv+JChCsNlCMTiuRABfSwO9gxMpbVheH+Ahe4riHFth30X3e LDDBSNS2uqG3Nf9PXMI1hi4bACQtOiT11tWIJHiKrjjOMa+dFh2TdKc8LQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFFrQxB/emWUbEykG/wYCtHtWB6W+MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzlkLzFiYzBj Yi1kZmE0LTQxNTEtYTYxYi0zMzVhN2U0Mzg0YjEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWQvMWJjMGNi LWRmYTQtNDE1MS1hNjFiLTMzNWE3ZTQzODRiMS8xL1d0REVIOTZaWlJzVEtRYl9C Z0swZTFZSHBiNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCLZlgMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMM7zANBgkqhkiG9w0BAQsFAAOCAQEAp6GlvaYiTbjRZrv3Rxx3pWkQ1qUsEcod xZ2w6MYQoOXfQ1C6CxmMWF7ukyzTCCD31Jz5DcrNxBFpxyH3CjMa0cmCseOyF2wm xT8aU6CBjziAawyG1P7aEqedsV9xc5nn1f9zrYGgXzWc5cW0nMzbwUPjkkSVr0EM KJixW4cTRYXNT5nf7PCBr6D1PGo9qO7HEyo4P4FID0azCs6WOoOAF2bUVmhSOHjG Ao61nmUDogZ/yEe8qHBpTel66XQTiFpQfL4EaVf6oBeURlRWwAW0L+Lp5FscqvIW YBNpcxuybLB/oGjj7VbAsVTMogaoua0NrR7s+g+53Lmy0whI723PRw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:20 2026 by rpki-client