This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WujsvmlVEtpODwK23A572pYNwzo.cer File: WujsvmlVEtpODwK23A572pYNwzo.cer (raw, json) Hash identifier: NbPrxmDijSkea0+mDnPMtgdjDS3TF8frf1YOrVX2SyY= Subject key identifier: 5A:E8:EC:BE:69:55:12:DA:4E:0F:02:B6:DC:0E:7B:DA:96:0D:C3:3A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B353C3F2034D162B8B9B5904FD52289 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/b27a3b-acf8-4668-989f-83cf46689375/1/WujsvmlVEtpODwK23A572pYNwzo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/b27a3b-acf8-4668-989f-83cf46689375/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:17:25 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216250 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:3c:3f:20:34:d1:62:b8:b9:b5:90:4f:d5:22:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ae8ecbe695512da4e0f02b6dc0e7bda960dc33a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:62:db:fb:9a:0b:1a:9b:88:88:b9:b2:41:bc: 62:22:a5:54:a1:f2:26:d3:8b:27:b1:1e:87:96:01: f0:a8:95:44:de:e8:4d:02:83:8c:63:62:a7:64:01: 1a:0d:37:20:b0:52:a6:86:9d:6f:8c:1b:d2:4a:ac: 1e:e2:fe:41:95:fc:70:21:a6:0f:02:dd:a1:94:78: bf:d4:9a:a1:0d:87:0f:bb:65:9c:e0:75:92:55:cb: 9a:47:84:24:fd:90:92:15:3f:49:e2:97:10:8a:32: bd:b7:ef:78:9d:ae:a2:48:05:2e:08:c1:5f:ef:5d: d9:f6:91:56:2e:c3:0e:d6:d2:ff:df:05:e8:de:60: 1f:7b:74:24:b8:a0:90:99:d1:ac:c5:7d:01:f1:5a: c0:0d:76:79:d7:fd:44:35:3e:ba:14:b7:fc:25:4d: 17:59:00:08:5d:99:ed:27:91:1b:f7:e1:ce:76:a3: 98:05:8c:c6:7a:83:27:37:e7:e5:e1:25:d4:26:f2: 2a:71:4e:bc:07:52:ce:bb:ba:bb:5a:50:5b:1f:e9: 02:3d:a8:53:36:9e:c7:b6:a3:3d:c8:da:a4:9c:c1: 8c:1c:ba:47:7a:c5:1d:d3:4f:83:32:1a:0b:96:5c: c7:95:4c:2a:00:d8:d1:75:da:90:56:1e:9f:e3:31: d4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E8:EC:BE:69:55:12:DA:4E:0F:02:B6:DC:0E:7B:DA:96:0D:C3:3A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b27a3b-acf8-4668-989f-83cf46689375/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b27a3b-acf8-4668-989f-83cf46689375/1/WujsvmlVEtpODwK23A572pYNwzo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 216250 Signature Algorithm: sha256WithRSAEncryption 88:7f:52:41:18:b4:c4:bc:95:c4:d1:bc:07:76:7a:ab:d5:6b: 05:c1:da:20:95:6b:6b:0c:8c:bc:d2:f2:a0:53:bb:ec:b0:de: ac:4b:82:37:24:3e:42:b2:3f:d9:cf:86:52:85:39:8f:04:60: 11:95:e2:02:62:05:24:43:93:75:4d:42:82:34:07:84:4a:a8: dc:3c:97:d0:57:f4:e8:06:64:cb:48:f8:cc:07:2a:53:67:18: 48:46:bb:86:08:37:64:18:2a:c8:e3:db:ed:12:f1:44:31:81: 5f:71:89:a9:f3:13:ad:0c:9d:f6:01:45:e4:b7:b5:8c:43:cf: fc:03:fb:8c:5e:49:3d:1d:3d:25:6f:7a:1f:99:6d:57:7d:d2: e3:11:a5:8b:74:c3:59:e5:85:15:ec:bf:4f:03:d3:2b:e3:33: 67:69:79:84:4d:6a:8f:95:4e:dc:d8:39:b5:fb:7f:8c:4d:85: 53:10:8a:f7:3f:b2:af:43:a9:9f:77:07:5a:77:2a:bc:fb:3f: 2b:f5:5e:fe:90:db:7b:10:60:cd:2b:90:7b:57:0c:71:07:3f: f5:04:8b:25:45:f6:8d:33:17:3f:47:9c:78:80:2c:43:0e:8f: 03:8c:23:b7:3e:59:26:72:fc:5c:d6:e4:07:13:b3:ac:98:18: f6:bc:a5:8f -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt7NTw/IDTRYri5tZBP1SKJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YWU4ZWNiZTY5NTUxMmRhNGUwZjAyYjZkYzBlN2JkYTk2MGRjMzNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2Lb+5oLGpuIiLmyQbxiIqVUofIm 04snsR6HlgHwqJVE3uhNAoOMY2KnZAEaDTcgsFKmhp1vjBvSSqwe4v5BlfxwIaYP At2hlHi/1JqhDYcPu2Wc4HWSVcuaR4Qk/ZCSFT9J4pcQijK9t+94na6iSAUuCMFf 713Z9pFWLsMO1tL/3wXo3mAfe3QkuKCQmdGsxX0B8VrADXZ51/1ENT66FLf8JU0X WQAIXZntJ5Eb9+HOdqOYBYzGeoMnN+fl4SXUJvIqcU68B1LOu7q7WlBbH+kCPahT Np7HtqM9yNqknMGMHLpHesUd00+DMhoLllzHlUwqANjRddqQVh6f4zHUWwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFFro7L5pVRLaTg8CttwOe9qWDcM6MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JkL2IyN2Ez Yi1hY2Y4LTQ2NjgtOTg5Zi04M2NmNDY2ODkzNzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQvYjI3YTNi LWFjZjgtNDY2OC05ODlmLTgzY2Y0NjY4OTM3NS8xL1d1anN2bWxWRXRwT0R3SzIz QTU3MnBZTnd6by5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNMujANBgkqhkiG9w0BAQsFAAOCAQEAiH9SQRi0xLyV xNG8B3Z6q9VrBcHaIJVrawyMvNLyoFO77LDerEuCNyQ+QrI/2c+GUoU5jwRgEZXi AmIFJEOTdU1CgjQHhEqo3DyX0Ff06AZky0j4zAcqU2cYSEa7hgg3ZBgqyOPb7RLx RDGBX3GJqfMTrQyd9gFF5Le1jEPP/AP7jF5JPR09JW96H5ltV33S4xGli3TDWeWF Fey/TwPTK+MzZ2l5hE1qj5VO3Ng5tft/jE2FUxCK9z+yr0Opn3cHWncqvPs/K/Ve /pDbexBgzSuQe1cMcQc/9QSLJUX2jTMXP0eceIAsQw6PA4wjtz5ZJnL8XNbkBxOz rJgY9ryljw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:26 2026 by rpki-client