This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_tPwXKP9-ef5nGXMagpnJPWTGnA.cer File: _tPwXKP9-ef5nGXMagpnJPWTGnA.cer (raw, json) Hash identifier: Ac6ASrIx18tQGgrWqF/L5JVelIM2ulJaN/092T7B7K8= Subject key identifier: FE:D3:F0:5C:A3:FD:F9:E7:F9:9C:65:CC:6A:0A:67:24:F5:93:1A:70 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C80829CC2AF6DC164B8E83A25A1AB37 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/_tPwXKP9-ef5nGXMagpnJPWTGnA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:19:15 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206299 IP: 185.55.168.0/22 IP: 2a02:4ce0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:82:9c:c2:af:6d:c1:64:b8:e8:3a:25:a1:ab:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fed3f05ca3fdf9e7f99c65cc6a0a6724f5931a70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:04:73:c7:eb:c4:3b:bc:c0:a0:69:ef:ee:c3: 4a:49:e4:4f:08:d0:cb:c8:05:df:d9:b8:9c:3b:af: 34:0f:88:65:d3:e6:23:3f:b2:b4:f0:4c:7c:aa:03: 4c:bf:1f:c3:45:00:26:e8:6e:60:ba:2a:f2:1b:1b: 76:5e:81:8d:0f:0a:4d:73:81:04:14:c2:db:f8:3f: d4:92:fb:bd:94:38:38:02:30:16:5c:00:57:91:0d: 1a:1e:42:57:37:c9:6d:9c:37:ce:d5:54:97:75:13: 12:3a:60:12:8f:30:96:56:f0:44:51:37:8b:fa:53: fd:49:1e:46:d2:23:f5:02:0d:6f:e7:e1:d7:ec:30: 7f:19:4a:d9:07:a9:cf:47:7e:b3:6e:ae:e0:01:6c: 57:23:01:f2:8b:f8:fc:66:39:7d:12:74:e9:d0:46: d8:88:14:41:73:a7:7b:27:9b:a1:74:06:93:22:83: 00:6a:df:a8:c7:d0:0f:e6:0f:88:38:fa:72:e8:f5: 13:e9:8d:e9:2f:42:10:37:48:76:41:12:fb:3b:f1: 3a:c7:5d:0e:5d:e6:5c:55:ee:3b:ca:04:d8:b8:80: 5b:8e:c0:f6:ec:4e:10:19:16:dc:0a:20:51:77:30: 98:ff:28:db:51:a6:44:a4:7f:cb:e8:bf:32:14:a5: 8a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D3:F0:5C:A3:FD:F9:E7:F9:9C:65:CC:6A:0A:67:24:F5:93:1A:70 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/_tPwXKP9-ef5nGXMagpnJPWTGnA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.55.168.0/22 IPv6: 2a02:4ce0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206299 Signature Algorithm: sha256WithRSAEncryption 0d:90:7f:83:d3:65:7a:cb:99:18:a0:da:2a:70:95:61:e8:8c: f9:c5:70:3e:8f:a5:99:0a:12:18:c1:89:30:c1:15:8b:ae:ba: 97:28:0b:fb:dd:c9:50:ca:00:74:f9:53:72:97:d5:f7:04:84: 2f:ab:a5:b3:2f:eb:14:06:29:5e:f1:2b:04:44:67:a7:9d:1c: ea:18:da:99:0f:f7:d2:a1:74:5a:24:67:fe:55:ca:b3:c1:7f: 48:d0:6e:cf:25:7f:fe:33:5f:38:47:4b:ea:f9:7c:8d:2d:7d: ee:4b:21:b0:fa:86:2e:d9:f6:76:fd:0f:d3:31:bd:4f:f5:5b: 2d:91:de:12:1c:4b:fa:b1:51:12:5f:0c:62:78:a8:ff:80:66: 84:3a:73:e4:1d:f4:d2:27:29:ab:b2:ad:6a:bc:6f:6f:46:9b: d9:43:05:3c:dc:ed:f9:e2:b9:1b:00:10:1f:16:ed:d1:39:25: 23:82:22:60:fc:5f:f4:45:3b:e8:c2:68:a3:1a:26:28:8c:c6: 72:12:0f:9a:61:99:cf:95:0d:4c:36:bf:75:f3:e4:1c:30:85: 72:9e:67:49:72:df:e6:00:1c:e4:2d:8f:82:b6:a7:6c:23:81: ba:56:3d:66:7d:e3:94:ea:a9:b3:83:84:b7:a2:7b:77:e5:ce: 49:fd:db:63 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt8gIKcwq9twWS46Doloas3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZWQzZjA1Y2EzZmRmOWU3Zjk5YzY1Y2M2YTBhNjcyNGY1OTMxYTcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzwRzx+vEO7zAoGnv7sNKSeRPCNDL yAXf2bicO680D4hl0+YjP7K08Ex8qgNMvx/DRQAm6G5guiryGxt2XoGNDwpNc4EE FMLb+D/Ukvu9lDg4AjAWXABXkQ0aHkJXN8ltnDfO1VSXdRMSOmASjzCWVvBEUTeL +lP9SR5G0iP1Ag1v5+HX7DB/GUrZB6nPR36zbq7gAWxXIwHyi/j8Zjl9EnTp0EbY iBRBc6d7J5uhdAaTIoMAat+ox9AP5g+IOPpy6PUT6Y3pL0IQN0h2QRL7O/E6x10O XeZcVe47ygTYuIBbjsD27E4QGRbcCiBRdzCY/yjbUaZEpH/L6L8yFKWKKwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFP7T8Fyj/fnn+ZxlzGoKZyT1kxpwMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUwL2M5NTYz OS03MjJhLTQwMjEtYmVlYi1hYzVlZTYyNWJhYmMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTAvYzk1NjM5 LTcyMmEtNDAyMS1iZWViLWFjNWVlNjI1YmFiYy8xL190UHdYS1A5LWVmNW5HWE1h Z3BuSlBXVEduQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuTeoMA0EAgACMAcDBQAqAkzgMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMl2zANBgkqhkiG9w0BAQsFAAOCAQEADZB/g9NlesuZ GKDaKnCVYeiM+cVwPo+lmQoSGMGJMMEVi666lygL+93JUMoAdPlTcpfV9wSEL6ul sy/rFAYpXvErBERnp50c6hjamQ/30qF0WiRn/lXKs8F/SNBuzyV//jNfOEdL6vl8 jS197kshsPqGLtn2dv0P0zG9T/VbLZHeEhxL+rFREl8MYnio/4BmhDpz5B300icp q7Ktarxvb0ab2UMFPNzt+eK5GwAQHxbt0TklI4IiYPxf9EU76MJooxomKIzGchIP mmGZz5UNTDa/dfPkHDCFcp5nSXLf5gAc5C2PgranbCOBulY9Zn3jlOqps4OEt6J7 d+XOSf3bYw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:47 2026 by rpki-client