This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer File: X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer (raw, json) Hash identifier: pCHkwCZrD5nmSfUVER3gzK/sfyoJ7p+YU3vhcb9x6zw= Subject key identifier: 5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A21441567152CF9480E9F6CA23C713 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:17:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205295 IP: 91.196.208.0/22 IP: 185.219.24.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:14:41:56:71:52:cf:94:80:e9:f6:ca:23:c7:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:61:96:20:3d:5b:ad:0a:ce:7a:73:6c:09:41: e6:93:78:29:a3:38:24:9f:a2:53:6f:7a:59:d8:0a: 01:44:9d:90:8b:86:1f:ba:0a:a0:20:ff:00:fc:36: ce:b5:34:70:8d:34:bf:96:73:1c:d7:fb:a2:9d:6c: 54:f7:99:fa:98:6a:d4:21:3c:bd:a1:93:5b:7b:18: 23:10:63:7b:9d:56:ea:8e:00:52:b9:f6:6b:75:d6: 87:8d:14:c8:4f:fd:76:13:6f:cd:5a:96:0a:95:53: 61:41:31:64:84:2b:88:9e:88:ad:79:3b:f6:2b:60: f6:2a:b1:5f:90:d5:b1:21:e0:80:be:c3:77:c0:18: b6:3b:e4:48:f9:87:9b:0b:fc:d1:21:13:04:8a:91: e0:ba:fe:79:69:3a:80:ea:42:3b:d9:4b:ed:20:d6: 6c:d4:7e:49:fe:82:c2:c4:06:cd:78:a7:b8:60:cb: 9d:54:46:0c:fa:7b:fa:77:0a:5c:0f:b8:e9:f0:65: c9:c0:9c:a8:90:89:90:39:b9:73:e9:dd:cc:5d:00: d4:c0:64:20:35:88:f2:83:60:fb:11:db:6c:b8:d1: 4d:fa:6b:4e:4c:9c:6b:16:91:02:2a:e5:71:bd:79: f7:40:e9:8a:a2:f3:bd:f2:17:ee:86:96:9d:c8:15: 00:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.196.208.0/22 185.219.24.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205295 Signature Algorithm: sha256WithRSAEncryption 37:dc:55:d3:78:37:37:6b:ca:6d:96:56:7f:ea:08:f5:b9:f1: b8:9a:df:b2:c2:aa:ac:47:5d:9c:1c:b2:c5:0b:d3:d8:ea:9b: 92:a4:5b:68:65:6c:3e:85:62:1a:0d:1b:ac:c6:17:2d:85:5a: 9a:d6:c5:d8:52:34:40:2b:91:ca:0d:6a:4a:91:1d:8a:b5:2c: 33:88:57:6c:86:c0:2e:13:41:c8:99:82:44:5b:73:9e:1d:39: a8:96:48:89:7c:91:27:7c:da:3d:8a:46:2a:58:54:e4:af:64: b2:7b:a8:08:79:9d:5d:c4:28:1f:74:0a:1c:27:64:3e:ab:27: 9a:27:39:1d:ba:d2:97:c5:dc:d9:48:9c:5c:29:55:7c:8d:36: 96:73:b5:cf:5f:38:c2:16:d8:f6:bd:28:a4:e4:34:25:4f:9e: e6:df:15:b5:28:95:dc:04:0d:f3:9e:d2:90:f7:88:c9:3d:1c: ce:6c:a3:68:87:1a:25:be:ad:ce:5f:fb:d5:af:d0:a2:12:70: e7:76:0a:f7:01:a4:b1:ce:39:f6:34:c8:c8:09:ab:ab:f6:7c: f8:fd:44:1b:3f:0d:fb:85:5a:f5:ac:3d:cd:a9:9a:52:36:91: 6a:0c:d0:af:17:7e:0a:73:8e:83:15:99:43:d2:ad:07:d4:d3: 27:fb:d0:8a -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt4ohRBVnFSz5SA6fbKI8cTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZmRkMWU4YzIzOTRkMThlODc2YzJkNTcwMTZlN2VkODk4MDVhNjY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5GGWID1brQrOenNsCUHmk3gpozgk n6JTb3pZ2AoBRJ2Qi4YfugqgIP8A/DbOtTRwjTS/lnMc1/uinWxU95n6mGrUITy9 oZNbexgjEGN7nVbqjgBSufZrddaHjRTIT/12E2/NWpYKlVNhQTFkhCuInoiteTv2 K2D2KrFfkNWxIeCAvsN3wBi2O+RI+YebC/zRIRMEipHguv55aTqA6kI72UvtINZs 1H5J/oLCxAbNeKe4YMudVEYM+nv6dwpcD7jp8GXJwJyokImQOblz6d3MXQDUwGQg NYjyg2D7EdtsuNFN+mtOTJxrFpECKuVxvXn3QOmKovO98hfuhpadyBUA5QIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFF/dHowjlNGOh2wtVwFuftiYBaZnMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EwL2E2ZDQy Yy1jZmQ3LTRlZDUtOWY4My01YWU5M2VjOGZiMTEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAvYTZkNDJj LWNmZDctNGVkNS05ZjgzLTVhZTkzZWM4ZmIxMS8xL1g5MGVqQ09VMFk2SGJDMVhB VzUtMkpnRnBtYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQCW8TQAwQCudsYMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwMh7zANBgkqhkiG9w0BAQsFAAOCAQEAN9xV03g3N2vKbZZWf+oI9bnx uJrfssKqrEddnByyxQvT2OqbkqRbaGVsPoViGg0brMYXLYVamtbF2FI0QCuRyg1q SpEdirUsM4hXbIbALhNByJmCRFtznh05qJZIiXyRJ3zaPYpGKlhU5K9ksnuoCHmd XcQoH3QKHCdkPqsnmic5HbrSl8Xc2UicXClVfI02lnO1z184whbY9r0opOQ0JU+e 5t8VtSiV3AQN857SkPeIyT0czmyjaIcaJb6tzl/71a/QohJw53YK9wGksc459jTI yAmrq/Z8+P1EGz8N+4Va9aw9zamaUjaRagzQrxd+CnOOgxWZQ9KtB9TTJ/vQig== -----END CERTIFICATE-----Generated at Mon Feb 9 15:02:58 2026 by rpki-client