This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer File: aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer (raw, json) Hash identifier: o7LDG5bF+nqadalVEOaeVJjlpK4HIXsXM+cxwV3Y7DA= Subject key identifier: 69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ECBFC7DF6E41D4EA32F247E55B0A77 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203908 IP: 185.150.240.0/22 IP: 2a03:ad60::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:bf:c7:df:6e:41:d4:ea:32:f2:47:e5:5b:0a:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:53:a9:b1:e2:20:a0:8a:f0:8d:98:a7:c6:c2: 7e:3c:b2:dc:69:4c:71:ff:76:3a:0d:75:28:e9:2e: 79:1e:a1:88:45:9a:8f:c6:4c:d4:b1:01:ca:8b:17: 04:79:77:c8:95:59:62:08:ee:9c:55:6d:2c:c1:70: f2:37:76:fb:06:ed:fd:08:0d:6f:d2:4f:b9:bc:94: 95:0f:c5:e2:66:1b:9a:e4:6c:4c:eb:01:0f:15:aa: 11:d4:97:4f:39:01:e9:86:d5:6b:13:a1:34:a3:e5: 70:87:20:26:7d:4d:fc:85:d4:3d:a5:bb:fb:58:d4: 37:9b:ed:e0:9f:3f:59:81:bc:1a:32:f4:ba:2a:5e: 90:42:6e:5d:1c:45:72:c2:1e:5b:87:cd:38:2a:63: 06:d0:31:d6:bd:7f:eb:c3:49:f2:d5:3d:63:7f:d3: bf:c7:6a:e2:cb:ae:e3:e6:70:cd:74:11:d9:10:55: 1f:e0:47:25:cc:74:79:07:54:31:f4:45:bd:9b:ba: 70:60:ce:cb:f2:f9:bb:a6:4c:22:1c:b0:15:a1:04: cb:4c:f7:1d:fc:10:7f:9c:e6:ae:1b:e5:92:5f:f4: bf:27:ba:e2:1e:ed:13:bd:57:c2:2b:5f:9f:08:da: 54:15:68:81:a4:94:b7:36:03:2c:8f:e7:31:0e:21: 2a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.150.240.0/22 IPv6: 2a03:ad60::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203908 Signature Algorithm: sha256WithRSAEncryption 5a:f9:36:2e:24:4b:69:4b:0f:e1:18:8a:a2:01:fd:61:c0:03: 86:20:af:62:af:41:08:e0:a2:2a:69:76:75:ad:4d:38:1b:e1: 20:72:42:77:15:cd:ac:9d:3f:06:82:5d:fe:8b:eb:24:9c:85: 26:58:0f:73:94:b4:11:0b:f0:e7:a5:52:15:c3:a2:10:4b:f6: 8c:69:1b:46:ee:d7:ab:c8:55:aa:a1:3c:98:b8:69:b5:a4:83: 69:c9:ff:54:84:58:54:dc:87:5e:5a:51:d2:57:c4:e2:63:69: eb:13:00:e4:e4:7e:88:ba:3e:db:60:10:cd:b2:db:ed:76:60: dc:81:22:ad:79:ba:a1:69:5e:a5:6c:b2:44:02:63:c6:c5:56: 16:f8:fd:61:41:33:92:7a:11:1e:5a:6a:c4:0c:72:9a:4c:7b: 32:e4:10:37:5c:e6:b7:4b:d7:5e:b7:e0:cc:68:21:98:48:7c: 9e:aa:68:d6:53:3a:4f:37:7c:3e:d7:84:39:9f:e2:0c:4b:ff: 76:19:f7:ae:c7:25:79:6b:f0:e7:70:82:fe:d9:b2:20:dd:39: 40:c4:d8:14:9c:5e:15:7a:74:83:52:77:3a:ff:d1:4d:29:14: 46:d7:fb:f9:34:e9:d6:99:15:e8:78:f1:0d:de:8c:be:42:71: a3:f2:4d:5d -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt57L/H325B1Ooy8kflWwp3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTcyMGE5MTAzZTFhZTAwY2M3ODhjNWRlY2ZlMDk0OGM4NGJjZDFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4lOpseIgoIrwjZinxsJ+PLLcaUxx /3Y6DXUo6S55HqGIRZqPxkzUsQHKixcEeXfIlVliCO6cVW0swXDyN3b7Bu39CA1v 0k+5vJSVD8XiZhua5GxM6wEPFaoR1JdPOQHphtVrE6E0o+VwhyAmfU38hdQ9pbv7 WNQ3m+3gnz9ZgbwaMvS6Kl6QQm5dHEVywh5bh804KmMG0DHWvX/rw0ny1T1jf9O/ x2riy67j5nDNdBHZEFUf4EclzHR5B1Qx9EW9m7pwYM7L8vm7pkwiHLAVoQTLTPcd /BB/nOauG+WSX/S/J7riHu0TvVfCK1+fCNpUFWiBpJS3NgMsj+cxDiEqRwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFGlyCpED4a4AzHiMXez+CUjIS80bMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZkL2Q1MTZh My04OTc0LTQ1ZGItODIyNi04MTc0ZGRhZTMxZDMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQvZDUxNmEz LTg5NzQtNDVkYi04MjI2LTgxNzRkZGFlMzFkMy8xL2FYSUtrUVBocmdETWVJeGQ3 UDRKU01oTHpScy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuZbwMA0EAgACMAcDBQAqA61gMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMchDANBgkqhkiG9w0BAQsFAAOCAQEAWvk2LiRLaUsP 4RiKogH9YcADhiCvYq9BCOCiKml2da1NOBvhIHJCdxXNrJ0/BoJd/ovrJJyFJlgP c5S0EQvw56VSFcOiEEv2jGkbRu7Xq8hVqqE8mLhptaSDacn/VIRYVNyHXlpR0lfE 4mNp6xMA5OR+iLo+22AQzbLb7XZg3IEirXm6oWlepWyyRAJjxsVWFvj9YUEzknoR HlpqxAxymkx7MuQQN1zmt0vXXrfgzGghmEh8nqpo1lM6Tzd8PteEOZ/iDEv/dhn3 rscleWvw53CC/tmyIN05QMTYFJxeFXp0g1J3Ov/RTSkURtf7+TTp1pkV6HjxDd6M vkJxo/JNXQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:11 2026 by rpki-client