This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a15HDpDV693Mqpz2uyLoneDZ8gc.cer File: a15HDpDV693Mqpz2uyLoneDZ8gc.cer (raw, json) Hash identifier: ILW4ooVn5iYiSTTD3Hl2M9Phvd8N4pMOM3wtdLa1/sw= Subject key identifier: 6B:5E:47:0E:90:D5:EB:DD:CC:AA:9C:F6:BB:22:E8:9D:E0:D9:F2:07 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C800AE7A9DA3EF4FC1844921B09991F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1c/a82c10-5218-47a7-a7c4-eeb6daa75ec5/1/a15HDpDV693Mqpz2uyLoneDZ8gc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1c/a82c10-5218-47a7-a7c4-eeb6daa75ec5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:44 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198467 IP: 195.254.176.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:0a:e7:a9:da:3e:f4:fc:18:44:92:1b:09:99:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b5e470e90d5ebddccaa9cf6bb22e89de0d9f207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7a:89:95:b1:58:47:b0:ad:0f:f3:89:51:ad: 7c:58:e0:1d:9f:13:25:8f:9c:7a:be:ff:d2:53:39: 3c:96:c1:96:d7:76:bb:a0:97:e6:ac:25:fd:44:ed: d6:f4:6c:84:a5:66:e0:2e:e4:2d:eb:19:ff:9c:72: af:47:bb:92:c4:cd:7c:be:44:7e:fd:f1:b4:e7:0e: 2b:04:6b:11:05:31:e0:b8:1c:b9:6d:e3:80:d4:ee: d9:4b:1a:16:93:17:9b:18:58:ff:16:f1:f9:8f:f5: 43:3b:43:62:0a:77:07:d7:5c:d9:3d:4b:97:87:ec: 78:b6:30:20:cb:35:bf:e4:ea:3b:0c:57:3d:7c:4c: e8:aa:3e:fd:b4:88:ea:26:3d:7f:73:08:95:16:cc: ec:05:21:91:83:38:f1:39:6b:67:04:30:1a:88:78: 59:5d:98:ac:e8:9e:30:fd:c8:2f:7f:af:e8:53:5c: d6:29:3a:d5:74:2e:a0:60:5b:44:ff:1d:e6:fe:3b: 5e:cb:9a:28:d7:ea:e7:53:71:71:11:2c:11:ca:32: 90:f2:e8:06:f9:00:fb:94:3f:5a:27:34:92:96:72: df:b8:b7:61:84:79:0d:e4:f7:0c:e7:b8:b5:cb:ca: 69:c9:f4:d2:df:d5:6a:fc:be:3b:e8:32:f5:77:68: 4f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:5E:47:0E:90:D5:EB:DD:CC:AA:9C:F6:BB:22:E8:9D:E0:D9:F2:07 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a82c10-5218-47a7-a7c4-eeb6daa75ec5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a82c10-5218-47a7-a7c4-eeb6daa75ec5/1/a15HDpDV693Mqpz2uyLoneDZ8gc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.254.176.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198467 Signature Algorithm: sha256WithRSAEncryption a9:18:e8:bb:86:a7:5f:fe:6c:bc:68:0e:80:7b:ea:b4:59:e9: 6e:bf:dd:a3:c7:6c:dc:58:07:4a:cb:ab:ff:cd:bc:48:b7:07: c8:71:2d:91:9c:bd:0a:dd:d1:e5:03:fe:8f:65:50:b0:d8:6f: e7:08:1f:c0:00:07:33:84:14:55:f5:ec:a0:62:3a:4d:09:5f: 0b:8f:b2:b2:ce:e4:36:e1:fb:fe:af:0b:34:8a:52:e6:31:91: dd:ce:07:a7:60:65:79:17:ff:70:2b:cd:3c:82:b1:51:4b:0d: df:a6:c6:2e:0d:1d:b7:03:3d:64:93:6e:dd:3a:6d:53:ad:5c: 5f:3d:0d:d5:53:63:93:25:87:a7:15:18:da:40:7c:9d:2c:71: 45:78:e0:84:06:60:30:f7:63:ce:36:b8:e2:56:f3:d2:10:8a: 75:93:8b:4f:59:f2:29:88:ef:1a:eb:be:c0:e4:dc:7d:47:50: 70:9b:38:97:e3:78:38:93:13:54:c8:bb:67:d5:97:47:e9:b0: 5d:21:3e:2d:61:74:f1:6e:76:cd:b5:bf:35:31:6e:eb:32:61: d1:22:1d:77:9d:8d:78:de:4a:21:50:57:43:a4:f0:cb:d3:c8: 00:03:ce:9f:c0:54:f2:fc:3d:fd:36:a9:70:81:3f:41:84:af: 3f:4a:c9:75 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt8gArnqdo+9PwYRJIbCZkfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YjVlNDcwZTkwZDVlYmRkY2NhYTljZjZiYjIyZTg5ZGUwZDlmMjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3qJlbFYR7CtD/OJUa18WOAdnxMl j5x6vv/SUzk8lsGW13a7oJfmrCX9RO3W9GyEpWbgLuQt6xn/nHKvR7uSxM18vkR+ /fG05w4rBGsRBTHguBy5beOA1O7ZSxoWkxebGFj/FvH5j/VDO0NiCncH11zZPUuX h+x4tjAgyzW/5Oo7DFc9fEzoqj79tIjqJj1/cwiVFszsBSGRgzjxOWtnBDAaiHhZ XZis6J4w/cgvf6/oU1zWKTrVdC6gYFtE/x3m/jtey5oo1+rnU3FxESwRyjKQ8ugG +QD7lD9aJzSSlnLfuLdhhHkN5PcM57i1y8ppyfTS39Vq/L476DL1d2hP1QIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFGteRw6Q1evdzKqc9rsi6J3g2fIHMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjL2E4MmMx MC01MjE4LTQ3YTctYTdjNC1lZWI2ZGFhNzVlYzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMvYTgyYzEw LTUyMTgtNDdhNy1hN2M0LWVlYjZkYWE3NWVjNS8xL2ExNUhEcERWNjkzTXFwejJ1 eUxvbmVEWjhnYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBw/6wMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMHQzANBgkqhkiG9w0BAQsFAAOCAQEAqRjou4anX/5svGgOgHvqtFnpbr/do8ds 3FgHSsur/828SLcHyHEtkZy9Ct3R5QP+j2VQsNhv5wgfwAAHM4QUVfXsoGI6TQlf C4+yss7kNuH7/q8LNIpS5jGR3c4Hp2BleRf/cCvNPIKxUUsN36bGLg0dtwM9ZJNu 3TptU61cXz0N1VNjkyWHpxUY2kB8nSxxRXjghAZgMPdjzja44lbz0hCKdZOLT1ny KYjvGuu+wOTcfUdQcJs4l+N4OJMTVMi7Z9WXR+mwXSE+LWF08W52zbW/NTFu6zJh 0SIdd52NeN5KIVBXQ6Twy9PIAAPOn8BU8vw9/TapcIE/QYSvP0rJdQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:38 2026 by rpki-client