This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XsBEtLlvIfqahGRb1eOp4ZcjCC0.cer File: XsBEtLlvIfqahGRb1eOp4ZcjCC0.cer (raw, json) Hash identifier: ZbEE/IGjeKEhbr8/UJvoopUAl9fSla8TIPlqFHrEMHw= Subject key identifier: 5E:C0:44:B4:B9:6F:21:FA:9A:84:64:5B:D5:E3:A9:E1:97:23:08:2D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7FF1D12BA6FD52691DC0CBB77BAAD989 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2d/77b86f-7a94-4847-903b-61e4ebf671ab/1/XsBEtLlvIfqahGRb1eOp4ZcjCC0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2d/77b86f-7a94-4847-903b-61e4ebf671ab/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 18:21:52 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212748 IP: 83.242.104.0/23 IP: 2001:678:6d0::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:d1:2b:a6:fd:52:69:1d:c0:cb:b7:7b:aa:d9:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 18:21:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ec044b4b96f21fa9a84645bd5e3a9e19723082d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ad:92:09:b1:dc:76:5e:f8:75:ec:8e:3f:50: 48:be:15:8f:78:5b:29:89:b5:b5:84:22:58:68:b4: d9:13:79:c8:af:68:28:e2:58:de:23:3f:30:80:9a: ed:6d:d8:a8:8a:78:af:2a:37:21:1f:81:2c:0e:2f: f9:5a:f5:54:47:24:40:d8:12:ce:da:f4:dd:f4:f9: 99:e4:25:99:63:ce:e4:09:a0:22:6a:1a:76:72:98: 21:f5:f3:88:41:44:03:6c:b6:56:fe:be:c2:e7:a6: 5c:4a:54:08:dd:44:33:e5:7d:aa:1c:9f:76:af:ba: 6a:f3:06:22:f4:e6:b5:e8:50:db:fe:99:22:47:6f: 7f:54:15:29:bb:19:6b:52:36:9f:cb:87:f6:08:a7: 97:31:e8:ce:5e:ce:c8:a9:cb:ce:69:08:86:1b:2e: b8:65:4b:54:34:83:1a:f4:de:bd:f9:59:01:59:7a: e2:a5:ce:ee:93:ca:f8:32:b8:63:61:cf:cf:fa:56: bc:99:b1:2d:fc:e9:63:06:34:87:be:25:88:de:79: 51:56:27:27:90:d2:29:b7:7c:14:a5:8a:7c:dc:a5: be:a2:8b:a9:92:e1:eb:9b:c0:c3:1f:25:d6:d8:5e: c0:ec:28:eb:70:da:ef:d1:06:e0:d4:34:ad:62:e9: e7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C0:44:B4:B9:6F:21:FA:9A:84:64:5B:D5:E3:A9:E1:97:23:08:2D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/77b86f-7a94-4847-903b-61e4ebf671ab/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/77b86f-7a94-4847-903b-61e4ebf671ab/1/XsBEtLlvIfqahGRb1eOp4ZcjCC0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.242.104.0/23 IPv6: 2001:678:6d0::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212748 Signature Algorithm: sha256WithRSAEncryption 8b:42:bc:46:3b:9a:22:fe:12:ed:8c:ce:9e:fb:5c:54:28:05: f8:db:49:84:28:58:ce:3d:69:32:14:5d:53:0d:ad:8a:09:9c: b6:29:aa:ec:ee:b2:a8:0f:94:e0:f7:0c:1d:4f:36:c9:f2:1c: bf:32:ee:f0:00:05:c5:16:ab:5e:c8:06:56:6a:32:75:89:d2: 5b:a5:77:8c:33:12:0f:9b:69:c5:3f:17:df:6b:6a:26:0a:31: 04:0e:ec:74:f0:ea:f5:c4:57:5e:0e:73:8c:4d:5e:86:e2:b8: 75:5c:2b:2c:54:4d:e0:47:07:19:ce:c1:9f:12:ba:23:64:30: c9:23:a6:e6:1a:32:48:94:ae:70:14:f5:df:c2:be:5c:70:77: b2:12:31:bf:a0:22:2e:0f:14:0a:77:fe:f0:8d:e3:b3:2a:6a: 65:e0:aa:71:ee:ea:10:45:10:da:4f:4c:ec:51:65:52:74:26: 30:78:8e:69:50:4c:13:9f:46:e6:5f:f5:44:6d:b7:94:9c:b2: c9:82:8f:94:42:49:6a:6b:a1:45:44:97:97:ba:4b:fb:cb:2b: c1:a0:cd:c7:3f:a9:7f:ec:95:62:73:a3:ad:1e:0f:36:39:be: 24:87:3a:ed:e2:ad:70:35:8d:2c:30:ab:74:f4:b2:77:ed:39: 51:27:ea:42 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt/8dErpv1SaR3Ay7d7qtmJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTgyMTUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWMwNDRiNGI5NmYyMWZhOWE4NDY0NWJkNWUzYTllMTk3MjMwODJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu62SCbHcdl74deyOP1BIvhWPeFsp ibW1hCJYaLTZE3nIr2go4ljeIz8wgJrtbdioinivKjchH4EsDi/5WvVURyRA2BLO 2vTd9PmZ5CWZY87kCaAiahp2cpgh9fOIQUQDbLZW/r7C56ZcSlQI3UQz5X2qHJ92 r7pq8wYi9Oa16FDb/pkiR29/VBUpuxlrUjafy4f2CKeXMejOXs7IqcvOaQiGGy64 ZUtUNIMa9N69+VkBWXripc7uk8r4MrhjYc/P+la8mbEt/OljBjSHviWI3nlRVicn kNIpt3wUpYp83KW+ooupkuHrm8DDHyXW2F7A7CjrcNrv0Qbg1DStYunnjQIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFF7ARLS5byH6moRkW9XjqeGXIwgtMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJkLzc3Yjg2 Zi03YTk0LTQ4NDctOTAzYi02MWU0ZWJmNjcxYWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQvNzdiODZm LTdhOTQtNDg0Ny05MDNiLTYxZTRlYmY2NzFhYi8xL1hzQkV0TGx2SWZxYWhHUmIx ZU9wNFpjakNDMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQBU/JoMA8EAgACMAkDBwAgAQZ4BtAwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAz8MMA0GCSqGSIb3DQEBCwUAA4IBAQCLQrxGO5oi /hLtjM6e+1xUKAX420mEKFjOPWkyFF1TDa2KCZy2Kars7rKoD5Tg9wwdTzbJ8hy/ Mu7wAAXFFqteyAZWajJ1idJbpXeMMxIPm2nFPxffa2omCjEEDux08Or1xFdeDnOM TV6G4rh1XCssVE3gRwcZzsGfErojZDDJI6bmGjJIlK5wFPXfwr5ccHeyEjG/oCIu DxQKd/7wjeOzKmpl4Kpx7uoQRRDaT0zsUWVSdCYweI5pUEwTn0bmX/VEbbeUnLLJ go+UQklqa6FFRJeXukv7yyvBoM3HP6l/7JVic6OtHg82Ob4khzrt4q1wNY0sMKt0 9LJ37TlRJ+pC -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:56 2026 by rpki-client