This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_SxsGlV_WItkfheRGmMA40LGYes.cer File: _SxsGlV_WItkfheRGmMA40LGYes.cer (raw, json) Hash identifier: SJZG35CN9J0X8XZb6riMWaYOk6vXiFUz+FHD/hgtPYg= Subject key identifier: FD:2C:6C:1A:55:7F:58:8B:64:7E:17:91:1A:63:00:E3:42:C6:61:EB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C73C9193A398949879BC26E91F4D8F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3e/6a3f6e-2d43-4ec6-a7ec-e13deb4ac7b7/1/_SxsGlV_WItkfheRGmMA40LGYes.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3e/6a3f6e-2d43-4ec6-a7ec-e13deb4ac7b7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:24 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49791 IP: 45.144.48.0/22 IP: 2a05:fc0::/31 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:3c:91:93:a3:98:94:98:79:bc:26:e9:1f:4d:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd2c6c1a557f588b647e17911a6300e342c661eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:df:7a:cf:42:1f:0e:e8:de:0e:9f:50:be: d5:54:49:82:d2:dd:03:40:7a:05:73:57:3e:7e:c4: ab:94:ab:58:10:6e:12:d0:c8:1c:8e:df:dd:5b:6b: 22:ad:73:77:03:5c:77:ce:4c:11:d8:90:84:e7:7e: 45:9d:53:40:ed:20:fa:6f:97:7d:3b:3d:ef:60:08: 20:4f:68:05:d0:62:b6:35:99:5e:d3:58:13:44:ea: 77:08:e6:46:ab:c7:b7:d7:5c:e1:4f:85:df:86:b0: f7:4b:08:73:0c:ce:48:74:57:9e:c2:8e:60:82:39: e4:3d:10:25:c8:c4:e6:7e:91:44:cd:eb:4d:35:d4: 56:bf:48:74:2b:2e:ce:40:cc:fe:8d:3d:03:26:ac: b9:c6:98:af:e5:c5:72:d9:1b:25:9e:c7:3e:5f:b1: 30:7f:b3:a9:7e:57:d0:19:d3:42:94:7e:07:9c:08: b6:b4:24:3a:f6:d6:eb:cf:21:b8:d4:aa:ac:81:a0: 56:fd:93:ed:f9:d5:ac:a8:00:fb:5d:92:07:ee:fe: 7a:2e:9a:ad:d8:15:7a:42:af:8b:75:b7:56:3a:6b: 9c:77:e0:8b:da:eb:1f:80:dc:20:62:3e:bd:94:a0: ac:52:69:07:c1:77:5e:1f:fa:63:56:d1:7d:db:52: 95:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2C:6C:1A:55:7F:58:8B:64:7E:17:91:1A:63:00:E3:42:C6:61:EB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/6a3f6e-2d43-4ec6-a7ec-e13deb4ac7b7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/6a3f6e-2d43-4ec6-a7ec-e13deb4ac7b7/1/_SxsGlV_WItkfheRGmMA40LGYes.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.144.48.0/22 IPv6: 2a05:fc0::/31 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49791 Signature Algorithm: sha256WithRSAEncryption 6a:75:2b:b3:ad:a7:e2:84:04:bd:e9:2f:98:52:d2:c1:59:ab: de:8f:d0:5b:c5:d9:19:39:ac:1a:c8:c8:c1:a6:30:c1:ae:09: 6d:a4:5a:d1:af:e7:c1:85:b2:1f:c7:54:91:ea:d6:8a:54:bd: b3:a9:21:90:b2:84:4e:ea:90:f2:06:0f:d2:83:75:a7:70:ce: 15:86:41:62:9e:78:c8:ba:56:76:b1:84:3e:f5:4b:ba:79:f0: 84:58:a2:4d:f2:6e:d7:be:fc:68:fb:ec:4f:69:0e:87:e3:02: f7:5e:25:85:f1:9e:73:5d:ff:ec:c0:e3:5e:0f:0f:2b:d7:ac: a2:ba:81:77:3a:b7:65:68:3f:22:68:b4:d7:8b:ab:cd:63:04: e7:b7:6d:02:66:48:14:b1:a5:d7:32:02:d1:58:7c:b0:5c:93: 98:99:ed:a6:d2:be:55:81:f2:8e:3e:9e:ee:ef:9b:a0:61:a6: 8a:59:35:25:2b:d1:05:22:cb:50:5a:3f:9a:cb:1a:77:0a:80: 13:e7:51:c9:1b:e3:05:1b:52:d9:da:27:37:0b:d8:90:ab:be: a2:c4:21:b2:eb:39:60:3b:04:02:01:ea:05:f4:33:bb:ee:d8: db:06:69:49:28:cd:6e:f6:16:c8:c3:fe:20:3f:fb:70:9e:70: b5:d4:00:06 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3xzyRk6OYlJh5vCbpH02PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDJjNmMxYTU1N2Y1ODhiNjQ3ZTE3OTExYTYzMDBlMzQyYzY2MWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvU3fes9CHw7o3g6fUL7VVEmC0t0D QHoFc1c+fsSrlKtYEG4S0Mgcjt/dW2sirXN3A1x3zkwR2JCE535FnVNA7SD6b5d9 Oz3vYAggT2gF0GK2NZle01gTROp3COZGq8e311zhT4XfhrD3SwhzDM5IdFeewo5g gjnkPRAlyMTmfpFEzetNNdRWv0h0Ky7OQMz+jT0DJqy5xpiv5cVy2Rslnsc+X7Ew f7OpflfQGdNClH4HnAi2tCQ69tbrzyG41KqsgaBW/ZPt+dWsqAD7XZIH7v56Lpqt 2BV6Qq+LdbdWOmucd+CL2usfgNwgYj69lKCsUmkHwXdeH/pjVtF921KVNQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFP0sbBpVf1iLZH4XkRpjAONCxmHrMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNlLzZhM2Y2 ZS0yZDQzLTRlYzYtYTdlYy1lMTNkZWI0YWM3YjcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2UvNmEzZjZl LTJkNDMtNGVjNi1hN2VjLWUxM2RlYjRhYzdiNy8xL19TeHNHbFZfV0l0a2ZoZVJH bU1BNDBMR1llcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCLZAwMA0EAgACMAcDBQEqBQ/AMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDCfzANBgkqhkiG9w0BAQsFAAOCAQEAanUrs62n4oQE vekvmFLSwVmr3o/QW8XZGTmsGsjIwaYwwa4JbaRa0a/nwYWyH8dUkerWilS9s6kh kLKETuqQ8gYP0oN1p3DOFYZBYp54yLpWdrGEPvVLunnwhFiiTfJu1778aPvsT2kO h+MC914lhfGec13/7MDjXg8PK9esorqBdzq3ZWg/Imi014urzWME57dtAmZIFLGl 1zIC0Vh8sFyTmJntptK+VYHyjj6e7u+boGGmilk1JSvRBSLLUFo/mssadwqAE+dR yRvjBRtS2donNwvYkKu+osQhsus5YDsEAgHqBfQzu+7Y2wZpSSjNbvYWyMP+ID/7 cJ5wtdQABg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:37 2026 by rpki-client