This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bWLDbYdChp-XVVt8mDlPn2XI6CY.cer File: bWLDbYdChp-XVVt8mDlPn2XI6CY.cer (raw, json) Hash identifier: LnW4EihVRlDKpUfbggj7w6XHwdxme2eArycQgwKHboE= Subject key identifier: 6D:62:C3:6D:87:42:86:9F:97:55:5B:7C:98:39:4F:9F:65:C8:E8:26 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC8373A9076AE5D831E200BB895D99F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a3/960963-f23d-4983-ba3f-3a585886ae4c/1/bWLDbYdChp-XVVt8mDlPn2XI6CY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a3/960963-f23d-4983-ba3f-3a585886ae4c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:20 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 91.206.214.0/23 IP: 91.208.159.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:37:3a:90:76:ae:5d:83:1e:20:0b:b8:95:d9:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d62c36d8742869f97555b7c98394f9f65c8e826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a0:ba:93:ca:b4:4a:ad:08:54:b9:a6:dc:02: 3f:17:d7:29:48:b3:18:43:bf:e0:b3:c9:17:24:e7: e0:11:6d:ac:98:fa:1c:af:65:28:b2:53:c1:9b:43: 1f:12:5c:0a:72:30:39:77:b8:d0:17:c3:41:8e:3e: b6:28:60:51:5e:10:83:14:06:28:b2:a1:5e:9c:80: 2e:2e:27:f1:0d:e3:73:4a:84:79:92:60:05:47:8c: 95:85:96:ac:01:55:72:dc:2a:5c:8a:94:54:5c:81: 68:68:a3:fe:53:ae:6c:b8:d1:7f:c5:cb:27:8f:64: 9b:51:9b:23:05:d8:e2:61:df:d4:39:aa:c7:55:84: 40:fc:3d:2d:c3:d0:06:4c:48:ea:6e:21:d5:56:91: 65:13:81:b8:6a:62:86:46:11:49:ba:c9:0f:21:a3: 52:2c:fc:9d:2b:f3:b9:d4:a4:b3:90:b1:7c:72:33: dc:f0:3f:8f:b4:e3:62:83:3f:bd:ad:84:4a:27:20: 7d:d3:ab:eb:25:c3:54:f7:11:9d:c9:ef:d5:9a:11: 59:97:b9:26:d6:65:1c:ef:7f:42:d7:ca:92:6f:cc: e6:72:e8:f3:7e:03:f4:af:4e:6c:49:71:41:af:9b: de:21:eb:cc:2c:8d:f6:94:1e:26:18:0e:4b:72:5b: 01:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:62:C3:6D:87:42:86:9F:97:55:5B:7C:98:39:4F:9F:65:C8:E8:26 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/960963-f23d-4983-ba3f-3a585886ae4c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/960963-f23d-4983-ba3f-3a585886ae4c/1/bWLDbYdChp-XVVt8mDlPn2XI6CY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.206.214.0/23 91.208.159.0/24 Signature Algorithm: sha256WithRSAEncryption 48:2a:9a:ee:1c:0a:b1:ea:dc:32:89:0d:48:b1:74:98:65:95: 5c:6b:6b:e3:47:e9:b3:ea:0d:de:47:1c:76:03:48:30:89:bf: 50:22:ca:2a:d5:1b:e7:02:76:08:a6:0e:86:c5:e4:c1:58:56: 0c:25:47:18:88:08:13:9a:6d:df:28:8f:4d:87:bc:28:5d:b9: a4:ab:72:29:fd:38:b3:19:32:60:56:a0:3c:7a:4b:43:52:28: 6c:a8:32:1f:aa:d7:cb:01:7b:37:f3:2f:fb:37:3b:e8:1d:b4: 58:95:fe:8b:b2:11:59:8e:c3:0e:e6:f9:3e:fe:07:f2:7e:f3: 40:51:26:a0:c8:4c:a5:5a:b3:af:30:94:14:51:e9:5b:8a:7f: 4e:8a:b2:8d:08:a0:56:e8:02:9b:7f:db:df:cd:13:85:57:24: 6e:16:1d:16:e7:ab:14:2b:21:2d:88:8f:ea:e9:ec:d3:d2:e0: 7e:a1:35:ba:9b:83:ad:69:02:2f:27:3c:dc:9b:0e:a2:05:c1: aa:ae:ad:73:75:c5:2b:5f:79:43:c6:c9:1d:fc:22:54:04:6d: 53:5a:9b:19:7f:12:8f:57:1d:39:65:fd:9e:51:2d:c1:dc:59: bc:c1:a5:3e:8f:5e:74:9a:4d:1d:03:39:02:47:6e:1a:94:e5: 07:a6:23:c0 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgISAZt6yDc6kHauXYMeIAu4ldmfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDYyYzM2ZDg3NDI4NjlmOTc1NTViN2M5ODM5NGY5ZjY1YzhlODI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6C6k8q0Sq0IVLmm3AI/F9cpSLMY Q7/gs8kXJOfgEW2smPocr2UoslPBm0MfElwKcjA5d7jQF8NBjj62KGBRXhCDFAYo sqFenIAuLifxDeNzSoR5kmAFR4yVhZasAVVy3CpcipRUXIFoaKP+U65suNF/xcsn j2SbUZsjBdjiYd/UOarHVYRA/D0tw9AGTEjqbiHVVpFlE4G4amKGRhFJuskPIaNS LPydK/O51KSzkLF8cjPc8D+PtONigz+9rYRKJyB906vrJcNU9xGdye/VmhFZl7km 1mUc739C18qSb8zmcujzfgP0r05sSXFBr5veIevMLI32lB4mGA5LclsBZwIDAQAB o4ICijCCAoYwHQYDVR0OBBYEFG1iw22HQoafl1VbfJg5T59lyOgmMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EzLzk2MDk2 My1mMjNkLTQ5ODMtYmEzZi0zYTU4NTg4NmFlNGMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTMvOTYwOTYz LWYyM2QtNDk4My1iYTNmLTNhNTg1ODg2YWU0Yy8xL2JXTERiWWRDaHAtWFZWdDht RGxQbjJYSTZDWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQBW87WAwQAW9CfMA0GCSqGSIb3DQEBCwUAA4IB AQBIKpruHAqx6twyiQ1IsXSYZZVca2vjR+mz6g3eRxx2A0gwib9QIsoq1RvnAnYI pg6GxeTBWFYMJUcYiAgTmm3fKI9Nh7woXbmkq3Ip/TizGTJgVqA8ektDUihsqDIf qtfLAXs38y/7NzvoHbRYlf6LshFZjsMO5vk+/gfyfvNAUSagyEylWrOvMJQUUelb in9OirKNCKBW6AKbf9vfzROFVyRuFh0W56sUKyEtiI/q6ezT0uB+oTW6m4OtaQIv Jzzcmw6iBcGqrq1zdcUrX3lDxskd/CJUBG1TWpsZfxKPVx05Zf2eUS3B3Fm8waU+ j150mk0dAzkCR24alOUHpiPA -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:30 2026 by rpki-client