This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer File: ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer (raw, json) Hash identifier: JcEi4quRrpRIb1iMFqQrtWBVun6g7b3s6cfIJcxmU4g= Subject key identifier: 6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7758A0D51C6C923E96B280BA52C244F8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:17:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 57293 IP: 5.197.0.0/16 IP: 149.255.144.0/20 IP: 185.146.112.0/22 IP: 2a0b:f9c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:a0:d5:1c:6c:92:3e:96:b2:80:ba:52:c2:44:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:39:42:e4:e1:5e:dd:cb:09:bd:80:ae:2a:35: 37:35:85:87:5c:cc:e9:3c:22:5a:c3:46:9e:9f:70: 00:1c:1d:b2:99:05:d7:24:71:76:8b:a6:c9:05:39: 15:2b:e6:0f:a1:d3:e1:57:cf:9e:b1:9a:f3:b1:87: d3:23:84:3c:02:5c:c6:c6:98:f0:1e:84:64:ee:34: 77:97:f6:8b:9b:02:b3:db:83:08:11:09:ea:01:16: a7:5f:0b:4b:95:5d:80:9e:0b:ea:fd:b7:90:21:1b: 2a:11:8c:94:eb:39:50:d7:26:e9:71:6e:a1:28:e7: 40:6c:b0:5b:fa:10:94:da:4c:a1:20:ac:53:22:18: ec:88:cd:26:33:75:5d:63:71:a0:30:40:3a:33:98: b1:e2:bb:6a:30:cb:90:30:32:41:97:1b:0c:dd:be: 90:8e:2c:98:60:3c:c3:99:61:ce:b3:51:bc:0f:d2: 50:1d:9f:db:81:47:61:1b:87:a0:83:55:14:1f:0d: 0c:fc:14:1d:1d:49:c5:71:0c:c9:be:5a:2f:db:3e: e9:35:a0:0c:84:17:b0:a9:c3:37:cf:89:6a:fb:44: 58:7f:fa:c1:56:57:b2:da:91:82:c7:88:6d:c7:25: f3:b5:cc:45:05:91:77:7d:aa:51:6f:d9:29:ee:4c: d7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.197.0.0/16 149.255.144.0/20 185.146.112.0/22 IPv6: 2a0b:f9c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 57293 Signature Algorithm: sha256WithRSAEncryption 93:90:b7:2e:04:1c:fe:7b:29:53:f7:0a:b3:24:5b:d1:cf:53: 64:fd:d9:c8:1f:d1:3c:43:7b:4c:94:2f:27:25:82:ee:5b:66: ea:74:2d:81:66:4a:64:ae:f8:e5:88:5a:cc:ee:93:c9:c3:e1: 6f:c9:bc:03:31:60:4f:3f:82:6b:ed:40:76:01:84:4b:0b:ba: ca:2c:92:83:87:e5:95:88:82:64:2f:fb:a4:43:1e:86:f3:5d: ed:d1:e5:da:a7:38:42:ef:44:79:e2:dc:f5:91:6d:45:86:87: 1c:90:09:4a:ff:a8:e6:8b:f5:0f:2f:0d:62:67:f2:53:2a:a9: 2d:65:0c:87:b5:6f:ca:69:d0:b0:2e:de:b5:3e:9b:a3:c1:1d: 42:b7:b7:ed:f8:e8:5b:0a:d4:2b:eb:7d:b4:b6:35:00:21:68: 58:0e:c4:1e:9e:33:f4:4e:5d:aa:d1:c2:80:28:d5:7f:5c:38: be:8c:69:5f:16:85:04:e2:20:66:aa:e5:67:fb:c9:4d:bb:11: 49:3a:e7:0a:7a:8a:41:58:4a:22:05:41:10:2f:69:59:bc:e8: 42:36:1a:19:e7:11:2a:b0:b3:d3:01:d9:9c:a4:5c:80:57:3f: 27:86:52:91:2b:be:19:91:4d:9a:bb:9b:d3:29:37:9d:97:b1: f0:8c:de:5e -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt3WKDVHGySPpaygLpSwkT4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YjIwODE4YjE4NmIwYjljYjA5YWY1NDIwZDFlNWFlMzM0ZmUzOTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jlC5OFe3csJvYCuKjU3NYWHXMzp PCJaw0aen3AAHB2ymQXXJHF2i6bJBTkVK+YPodPhV8+esZrzsYfTI4Q8AlzGxpjw HoRk7jR3l/aLmwKz24MIEQnqARanXwtLlV2Angvq/beQIRsqEYyU6zlQ1ybpcW6h KOdAbLBb+hCU2kyhIKxTIhjsiM0mM3VdY3GgMEA6M5ix4rtqMMuQMDJBlxsM3b6Q jiyYYDzDmWHOs1G8D9JQHZ/bgUdhG4egg1UUHw0M/BQdHUnFcQzJvlov2z7pNaAM hBewqcM3z4lq+0RYf/rBVley2pGCx4htxyXztcxFBZF3fapRb9kp7kzX+QIDAQAB o4ICujCCArYwHQYDVR0OBBYEFGsggYsYawucsJr1Qg0eWuM0/jl0MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzlhLzAyZjk1 ZS01ZmU1LTRjOWEtODRkNy1lNWM5YzJlOGU5YmYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWEvMDJmOTVl LTVmZTUtNGM5YS04NGQ3LWU1YzljMmU4ZTliZi8xL2F5Q0JpeGhyQzV5d212VkNE UjVhNHpULU9YUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUF BwEHAQH/BCowKDAXBAIAATARAwMABcUDBASV/5ADBAK5knAwDQQCAAIwBwMFAyoL +cAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAN/NMA0GCSqGSIb3DQEBCwUAA4IB AQCTkLcuBBz+eylT9wqzJFvRz1Nk/dnIH9E8Q3tMlC8nJYLuW2bqdC2BZkpkrvjl iFrM7pPJw+FvybwDMWBPP4Jr7UB2AYRLC7rKLJKDh+WViIJkL/ukQx6G813t0eXa pzhC70R54tz1kW1FhocckAlK/6jmi/UPLw1iZ/JTKqktZQyHtW/KadCwLt61Ppuj wR1Ct7ft+OhbCtQr6320tjUAIWhYDsQenjP0Tl2q0cKAKNV/XDi+jGlfFoUE4iBm quVn+8lNuxFJOucKeopBWEoiBUEQL2lZvOhCNhoZ5xEqsLPTAdmcpFyAVz8nhlKR K74ZkU2au5vTKTedl7HwjN5e -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:40 2026 by rpki-client