This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer File: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer (raw, json) Hash identifier: X4u82GBlK99HQwVL6EcjBExQ5DrAHKi/Tp4+AHbyZNw= Subject key identifier: 68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED07EB153C9C1CDB97748EEE7B1376 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198815 AS: 211589 IP: 37.152.64.0/21 IP: 2a00:b3c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:07:eb:15:3c:9c:1c:db:97:74:8e:ee:7b:13:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c8:b9:25:f1:96:ae:ad:60:0d:f0:d2:7f:19: 05:ff:1b:d4:4b:a3:0e:33:1c:e2:f5:c5:82:80:30: 1e:05:db:9b:4d:4b:25:04:8c:34:fe:f0:ac:5b:4f: 42:44:03:14:a4:0a:0d:46:59:bf:7d:66:1b:ef:bb: ab:9e:ad:e1:0e:7b:10:61:65:f8:01:48:80:0d:57: d6:02:0b:df:7c:a5:9c:d7:d3:46:34:50:91:33:a1: e9:3e:ae:bc:83:7a:f5:dc:df:60:5a:50:02:08:be: 3a:47:78:d3:68:04:cf:c6:61:d7:57:37:93:8f:09: 06:c0:bb:eb:d7:5d:68:ba:ff:61:6a:f2:a8:dc:36: 20:90:f0:79:cf:f3:3b:88:dc:6f:f2:56:0a:d8:14: 9f:f0:22:6e:37:d0:c5:76:66:44:30:4b:cd:1d:90: 0c:bf:22:e2:e6:aa:ea:cf:42:62:27:93:6f:26:ca: 2b:b1:5b:d8:95:e0:e4:a0:9e:9f:7c:89:6b:8e:09: da:7a:f3:2b:da:d8:8f:df:1c:f4:8c:24:d8:7c:7e: 51:fd:0d:9c:88:a4:be:db:37:27:85:03:6d:c7:42: 10:ef:39:49:3f:6c:6f:af:a5:61:98:1d:95:54:1e: 6b:87:ac:db:97:63:81:dc:07:01:6f:53:b8:44:97: da:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.152.64.0/21 IPv6: 2a00:b3c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198815 211589 Signature Algorithm: sha256WithRSAEncryption 22:a7:de:30:f5:57:8b:03:38:0a:cb:5f:c5:06:33:d9:ca:de: a4:c3:a3:e4:9e:5f:f3:db:9d:ac:df:04:c1:5e:f6:73:64:5a: 8a:29:75:2e:62:af:df:8b:61:da:cc:32:a2:fe:d8:0c:79:24: a2:19:92:fe:00:66:c5:95:0d:7d:ed:10:f3:74:9d:87:8d:62: d1:7b:f8:b1:9a:19:0d:d4:2c:e1:f5:8d:12:e5:07:4b:25:22: 1c:2b:05:65:5f:73:90:ef:13:0a:d9:7c:b4:5d:11:02:10:d5: 53:7a:72:fe:c3:f9:4b:d0:12:0c:1e:3e:7f:1f:7d:47:0e:e8: e1:f9:0b:af:1b:cb:9f:14:c5:fd:ba:43:1a:b0:9b:5e:47:9d: 12:ee:c6:28:42:06:12:15:d3:f5:d2:73:24:03:90:26:c3:14: 2e:b8:9e:73:ed:55:51:32:7b:28:2b:2a:43:08:37:69:f0:2c: 97:3a:d9:3c:9b:64:39:13:78:56:d4:6f:7f:10:18:0d:1c:d4: 4f:6d:78:23:e3:dc:64:79:bf:e8:3a:79:7f:33:7c:39:9f:bb: 8e:86:07:cf:6f:8a:36:cb:52:4a:a7:5c:e6:85:af:3d:5e:27: 2a:61:5e:64:97:e3:31:e7:97:71:60:22:b6:c8:3f:fa:ed:2a: 73:19:77:ab -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt87QfrFTycHNuXdI7uexN2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OGUxZTZlYTUyN2RjMzg1YTc5YTNlMDg4MjdkYmY2OTBjOTFjNGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkci5JfGWrq1gDfDSfxkF/xvUS6MO Mxzi9cWCgDAeBdubTUslBIw0/vCsW09CRAMUpAoNRlm/fWYb77urnq3hDnsQYWX4 AUiADVfWAgvffKWc19NGNFCRM6HpPq68g3r13N9gWlACCL46R3jTaATPxmHXVzeT jwkGwLvr111ouv9havKo3DYgkPB5z/M7iNxv8lYK2BSf8CJuN9DFdmZEMEvNHZAM vyLi5qrqz0JiJ5NvJsorsVvYleDkoJ6ffIlrjgnaevMr2tiP3xz0jCTYfH5R/Q2c iKS+2zcnhQNtx0IQ7zlJP2xvr6VhmB2VVB5rh6zbl2OB3AcBb1O4RJfaIQIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFGjh5upSfcOFp5o+CIJ9v2kMkcTCMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y1LzkzMzFj OS1lMTY0LTRkMmUtYjgzOS0xN2QwOTdmZjg5YzIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUvOTMzMWM5 LWUxNjQtNGQyZS1iODM5LTE3ZDA5N2ZmODljMi8xL2FPSG02bEo5dzRXbm1qNEln bjJfYVF5UnhNSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQDJZhAMA0EAgACMAcDBQAqALPAMB8GCCsGAQUF BwEIAQH/BBAwDqAMMAoCAwMInwIDAzqFMA0GCSqGSIb3DQEBCwUAA4IBAQAip94w 9VeLAzgKy1/FBjPZyt6kw6Pknl/z252s3wTBXvZzZFqKKXUuYq/fi2HazDKi/tgM eSSiGZL+AGbFlQ197RDzdJ2HjWLRe/ixmhkN1Czh9Y0S5QdLJSIcKwVlX3OQ7xMK 2Xy0XRECENVTenL+w/lL0BIMHj5/H31HDujh+QuvG8ufFMX9ukMasJteR50S7sYo QgYSFdP10nMkA5AmwxQuuJ5z7VVRMnsoKypDCDdp8CyXOtk8m2Q5E3hW1G9/EBgN HNRPbXgj49xkeb/oOnl/M3w5n7uOhgfPb4o2y1JKp1zmha89XicqYV5kl+Mx55dx YCK2yD/67SpzGXer -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:57 2026 by rpki-client