This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer File: _pLvNTIb-Pcic0v_nfpj-9DwaQo.cer (raw, json) Hash identifier: Cw/tF1iHJtQvIksTBegvbw4wn+xNY2jl0cgG6mgztZk= Subject key identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7FD3B49BE6C1C1E0343DDB5E59A960 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212559 IP: 5.1.42.0/24 IP: 91.243.118.0/24 IP: 193.107.15.0/24 IP: 2a10:78c0::/29 IP: 2a10:ef40::/29 IP: 2a11:2900::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:d3:b4:9b:e6:c1:c1:e0:34:3d:db:5e:59:a9:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f7:4a:78:13:1f:b7:f4:2c:53:af:9f:7c:ea: e0:30:5a:95:b5:4c:b2:a2:68:43:14:b0:f1:6f:b8: 0c:e6:5b:6b:8c:9f:7d:3d:a0:d4:76:5a:5b:27:af: f3:00:2a:80:db:5c:10:f9:f1:ac:bd:bf:a5:b5:57: 69:e9:7f:ff:68:29:85:0c:3f:59:d4:2e:f7:27:c0: ce:1e:90:b8:d3:e9:5b:08:de:32:79:67:d5:3e:75: a1:e0:a3:ef:fe:b0:db:69:a7:1f:eb:28:b8:9d:ca: b7:5d:61:12:e4:3f:5e:03:5b:74:ac:08:35:fb:95: f2:f0:1a:36:ed:ac:22:0e:b6:9d:dd:6f:79:41:2f: 46:7b:de:ca:e6:06:04:32:1f:e4:8c:84:68:d2:dd: b3:69:64:b2:a8:d2:34:7f:c5:b9:1c:42:4d:bf:0a: ef:db:54:24:d4:1a:55:4a:d2:30:4d:d7:01:42:59: d4:72:1e:69:0f:75:2e:8c:ed:8e:15:65:fd:7f:9d: c8:65:9d:1c:3b:8b:21:b2:53:c3:06:e6:34:90:60: f7:63:f4:13:af:f0:28:c6:64:71:6c:e2:6e:ce:2a: 07:0d:55:55:b2:b2:43:9d:73:83:d1:ca:e8:a9:f3: 0b:19:e8:6e:22:18:41:fe:fd:09:52:6e:fb:0e:42: 27:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.1.42.0/24 91.243.118.0/24 193.107.15.0/24 IPv6: 2a10:78c0::/29 2a10:ef40::/29 2a11:2900::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212559 Signature Algorithm: sha256WithRSAEncryption ae:b9:53:7f:18:e0:c1:94:99:87:5f:66:ad:94:89:9a:59:a9: c1:cf:ac:9a:ec:24:bb:1c:99:d4:46:09:ea:3f:82:b2:ed:1a: d9:ad:a5:1d:bf:cf:f9:e3:cf:8e:74:b0:08:3b:61:2f:50:88: c1:d3:99:f2:82:8f:0b:17:70:28:8b:2c:d1:05:1d:1e:1e:91: 78:43:2c:a8:4a:6b:e5:75:7a:00:3c:14:a8:c1:d4:03:2c:72: de:41:7a:6c:5f:8f:ce:c5:52:14:ce:36:71:04:02:79:1d:50: bb:6d:10:4b:cc:e2:ea:50:ac:0d:ac:bb:c3:09:31:36:33:08: 8f:bd:73:24:7a:c1:fd:cf:30:d5:0d:34:dd:f4:35:a8:0d:be: 66:e0:45:89:c5:9c:4a:ed:84:24:6a:1a:54:57:c2:3d:1a:32: f2:83:fe:23:e8:65:a2:3c:c3:55:ef:e8:8f:5e:b0:ba:bc:6f: 66:fc:a3:92:f6:af:4a:12:66:00:12:ed:1b:f4:8f:8e:d2:c7: ad:c7:40:79:38:c4:2d:c2:c9:35:d5:04:68:9f:b8:6f:fd:17: 35:2c:c9:3b:09:ea:1c:aa:0d:a4:79:f4:4f:f0:17:55:15:1b: fc:69:eb:a4:0e:03:03:d8:19:64:56:d6:0a:84:eb:96:16:2c: cd:e6:d8:14 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgISAZt8f9O0m+bBweA0PdteWalgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZTkyZWYzNTMyMWJmOGY3MjI3MzRiZmY5ZGZhNjNmYmQwZjA2OTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPdKeBMft/QsU6+ffOrgMFqVtUyy omhDFLDxb7gM5ltrjJ99PaDUdlpbJ6/zACqA21wQ+fGsvb+ltVdp6X//aCmFDD9Z 1C73J8DOHpC40+lbCN4yeWfVPnWh4KPv/rDbaacf6yi4ncq3XWES5D9eA1t0rAg1 +5Xy8Bo27awiDrad3W95QS9Ge97K5gYEMh/kjIRo0t2zaWSyqNI0f8W5HEJNvwrv 21Qk1BpVStIwTdcBQlnUch5pD3UujO2OFWX9f53IZZ0cO4shslPDBuY0kGD3Y/QT r/AoxmRxbOJuzioHDVVVsrJDnXOD0croqfMLGehuIhhB/v0JUm77DkIn3wIDAQAB o4ICyTCCAsUwHQYDVR0OBBYEFP6S7zUyG/j3InNL/536Y/vQ8GkKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEyL2QyNzI1 ZC04MDAxLTQxZjEtODBlNS1hOWVlZjI5NGFjMzQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIvZDI3MjVk LTgwMDEtNDFmMS04MGU1LWE5ZWVmMjk0YWMzNC8xL19wTHZOVEliLVBjaWMwdl9u ZnBqLTlEd2FRby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEgGCCsGAQUF BwEHAQH/BDkwNzAYBAIAATASAwQABQEqAwQAW/N2AwQAwWsPMBsEAgACMBUDBQMq EHjAAwUDKhDvQAMFAyoRKQAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAz5PMA0G CSqGSIb3DQEBCwUAA4IBAQCuuVN/GODBlJmHX2atlImaWanBz6ya7CS7HJnURgnq P4Ky7RrZraUdv8/548+OdLAIO2EvUIjB05nygo8LF3AoiyzRBR0eHpF4QyyoSmvl dXoAPBSowdQDLHLeQXpsX4/OxVIUzjZxBAJ5HVC7bRBLzOLqUKwNrLvDCTE2MwiP vXMkesH9zzDVDTTd9DWoDb5m4EWJxZxK7YQkahpUV8I9GjLyg/4j6GWiPMNV7+iP XrC6vG9m/KOS9q9KEmYAEu0b9I+O0setx0B5OMQtwsk11QRon7hv/Rc1LMk7Ceoc qg2kefRP8BdVFRv8aeukDgMD2BlkVtYKhOuWFizN5tgU -----END CERTIFICATE-----Generated at Mon Feb 9 22:38:16 2026 by rpki-client