This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XE_B5N78Rxyf23_a25iVVj2vmZw.cer File: XE_B5N78Rxyf23_a25iVVj2vmZw.cer (raw, json) Hash identifier: S89ryJoUeWMslmErPO4QJ2HEnn1kUJiGyxibwRl+TQA= Subject key identifier: 5C:4F:C1:E4:DE:FC:47:1C:9F:DB:7F:DA:DB:98:95:56:3D:AF:99:9C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F850A4875B9D1250B8E8B9278E11553 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/XE_B5N78Rxyf23_a25iVVj2vmZw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:23:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 44132 AS: 44352 IP: 91.199.35.0/24 IP: 91.199.93.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:0a:48:75:b9:d1:25:0b:8e:8b:92:78:e1:15:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:23:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c4fc1e4defc471c9fdb7fdadb9895563daf999c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:22:90:6a:4e:f6:d4:18:df:f9:48:a0:89:ef: db:5a:60:e5:8a:6f:f6:15:13:37:04:d4:00:29:20: 15:44:ab:ca:ea:22:4e:01:dd:7e:bd:7d:ed:43:52: af:98:ac:2a:60:49:01:00:f9:f3:2e:2a:4d:93:20: 65:6e:9d:be:58:de:13:95:15:53:c4:24:c0:d4:94: b7:12:f5:91:02:7e:24:62:aa:ca:50:49:1b:c4:10: bd:8f:5c:6e:e9:b0:34:f6:f4:90:f2:7e:c1:1a:69: ee:c7:da:d9:28:77:6f:11:33:be:27:04:c7:c1:af: 10:c5:1c:c7:82:bb:5f:17:06:02:f1:4b:60:0c:c9: cd:8f:2a:3b:94:72:a7:18:de:7b:83:2e:c9:03:2a: 93:bb:cb:c0:34:0c:f0:a1:bf:e8:46:7c:b0:32:d5: 78:83:33:a2:4d:af:db:a8:bf:d0:99:89:f2:c7:2b: 4d:49:23:68:c2:13:7f:d0:06:69:28:d0:b9:23:97: 80:ce:7b:8a:74:d5:9f:10:15:43:a8:24:53:9c:0a: ec:7e:a5:a8:56:78:ed:5f:be:5d:58:a9:77:00:d8: 69:98:46:16:62:ef:1b:31:32:79:59:bf:c2:4e:52: db:d3:75:4e:b8:2d:d5:e9:10:cc:16:1e:83:0c:8d: 43:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4F:C1:E4:DE:FC:47:1C:9F:DB:7F:DA:DB:98:95:56:3D:AF:99:9C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/XE_B5N78Rxyf23_a25iVVj2vmZw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.35.0/24 91.199.93.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 44132 44352 Signature Algorithm: sha256WithRSAEncryption 5f:83:7f:f7:83:10:82:b8:43:2a:6e:06:9e:5a:35:aa:17:86: cb:c8:df:26:ba:5d:0b:cf:7a:d5:cd:d6:a6:f1:4b:f1:b0:2c: 89:8c:8d:b5:eb:10:d6:24:16:bf:2c:4d:22:12:4f:de:28:5d: e4:00:8a:65:da:53:45:4e:93:37:6e:83:43:19:be:c4:46:83: f4:69:cc:57:1e:31:63:15:93:3d:b2:cd:5e:90:8a:f7:b3:c8: 76:ca:d9:61:a4:35:8f:85:af:8a:4c:9c:2b:ad:5e:af:aa:e7: b8:01:24:aa:dc:8d:cc:c7:57:c7:14:d0:59:f0:d0:ba:d8:74: 3b:d8:f4:0e:7f:04:a5:8d:d6:98:6e:91:2e:b4:c6:a6:48:04: ed:b3:51:99:c9:11:18:e4:fd:7d:80:50:9a:32:4c:72:d5:e0: d2:f9:3f:6d:ee:e4:34:8a:78:19:87:40:db:6b:83:0c:4a:8d: 4c:99:93:56:7f:38:ad:b4:18:02:e0:ad:bc:b8:d3:4b:9f:d1: 9c:c5:39:9a:f6:a3:7d:c4:1a:b1:f6:c9:e6:d7:7a:56:f2:ba: 27:30:98:4b:18:c0:a0:48:68:d0:12:2d:b8:40:2d:0a:3e:fb: 82:de:44:a7:28:51:12:8a:d6:a8:ff:59:92:89:b2:85:be:a0: 19:ea:1a:be -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgISAZt/hQpIdbnRJQuOi5J44RVTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMzAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzRmYzFlNGRlZmM0NzFjOWZkYjdmZGFkYjk4OTU1NjNkYWY5OTljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyKQak721Bjf+Uigie/bWmDlim/2 FRM3BNQAKSAVRKvK6iJOAd1+vX3tQ1KvmKwqYEkBAPnzLipNkyBlbp2+WN4TlRVT xCTA1JS3EvWRAn4kYqrKUEkbxBC9j1xu6bA09vSQ8n7BGmnux9rZKHdvETO+JwTH wa8QxRzHgrtfFwYC8UtgDMnNjyo7lHKnGN57gy7JAyqTu8vANAzwob/oRnywMtV4 gzOiTa/bqL/QmYnyxytNSSNowhN/0AZpKNC5I5eAznuKdNWfEBVDqCRTnArsfqWo VnjtX75dWKl3ANhpmEYWYu8bMTJ5Wb/CTlLb03VOuC3V6RDMFh6DDI1DGwIDAQAB o4ICqzCCAqcwHQYDVR0OBBYEFFxPweTe/Eccn9t/2tuYlVY9r5mcMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE3LzljZmE1 Zi01ZDJkLTRiZTQtYTgwZC03ZDBlZTJlOTkwZjUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcvOWNmYTVm LTVkMmQtNGJlNC1hODBkLTdkMGVlMmU5OTBmNS8xL1hFX0I1Tjc4Unh5ZjIzX2Ey NWlWVmoydm1ady5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAW8cjAwQAW8ddMB8GCCsGAQUFBwEIAQH/BBAw DqAMMAoCAwCsZAIDAK1AMA0GCSqGSIb3DQEBCwUAA4IBAQBfg3/3gxCCuEMqbgae WjWqF4bLyN8mul0Lz3rVzdam8UvxsCyJjI216xDWJBa/LE0iEk/eKF3kAIpl2lNF TpM3boNDGb7ERoP0acxXHjFjFZM9ss1ekIr3s8h2ytlhpDWPha+KTJwrrV6vque4 ASSq3I3Mx1fHFNBZ8NC62HQ72PQOfwSljdaYbpEutMamSATts1GZyREY5P19gFCa Mkxy1eDS+T9t7uQ0ingZh0Dba4MMSo1MmZNWfzittBgC4K28uNNLn9GcxTma9qN9 xBqx9snm13pW8ronMJhLGMCgSGjQEi24QC0KPvuC3kSnKFESitao/1mSibKFvqAZ 6hq+ -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:54 2026 by rpki-client