This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer File: chprP17V-3TQNRIhZRPEyB7-Hlw.cer (raw, json) Hash identifier: uH6aGmKbMJNj5xPbmks4VTuaXwoMP/m86NvjsT9ru9M= Subject key identifier: 72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA4D645A1738BC72FFA6B33771E3C6F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:18 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 21087 IP: 91.210.160.0/22 IP: 178.217.64.0/21 IP: 194.176.114.0/24 IP: 195.93.128.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:d6:45:a1:73:8b:c7:2f:fa:6b:33:77:1e:3c:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d9:af:ff:ab:47:27:7a:aa:80:51:61:3c:71: 48:1d:97:65:12:23:8c:23:7d:eb:b1:f0:f5:2b:a8: 56:d2:9b:f6:35:ab:03:f9:45:6d:bd:9b:08:c4:ab: 9b:d0:23:fb:6a:3e:cd:62:a6:96:03:eb:36:b4:e5: db:7f:f3:a3:dd:5a:74:71:c1:bb:f2:7b:8a:24:04: 8f:ec:46:0d:c8:cc:b9:4a:75:3f:81:16:05:d2:b9: 16:70:c6:3a:32:a0:8f:e2:66:3c:11:2a:fe:96:da: 71:d8:db:0a:2e:63:c0:42:8d:24:db:5e:38:66:4c: 98:4f:47:17:f7:71:2a:25:a3:84:7a:2b:34:98:95: b0:4d:b6:c9:6b:3e:35:48:43:75:e7:55:43:f8:62: 80:77:60:a8:f4:80:7e:a1:6c:9e:aa:5a:e0:d8:4c: e8:cf:a1:6b:ee:93:2a:ae:a0:02:27:ec:fd:7a:86: d9:f5:36:64:a9:69:57:68:7c:d3:15:54:dd:a1:5b: 05:6b:61:3d:a1:d6:34:94:fd:de:71:31:7b:21:08: 8c:c9:a7:ba:c7:b5:fb:3c:07:81:ca:55:82:e2:3c: 58:a6:96:6e:ac:cb:5b:f9:19:c2:3e:d9:09:e0:d1: e7:40:54:72:7d:ca:f7:ac:b3:fb:b6:02:7d:4b:43: 3d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.210.160.0/22 178.217.64.0/21 194.176.114.0/24 195.93.128.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 21087 Signature Algorithm: sha256WithRSAEncryption 40:78:b5:f7:fd:34:9b:28:dc:ee:89:38:ca:29:d5:d9:05:be: 0e:64:14:d8:42:f9:bf:ef:69:51:9d:b8:fd:1a:9f:0f:f2:f2: 53:76:e8:d1:f8:40:ee:ec:19:5c:70:63:b3:c5:d2:f5:5f:59: 02:45:51:52:cb:db:f3:c9:ec:4c:40:ff:46:1d:96:8b:f6:ec: b3:6d:29:c9:5b:1b:d3:0a:ec:5f:03:ed:ea:26:d5:35:69:b4: 64:45:ef:65:eb:2b:4b:20:a8:59:1d:a5:69:e6:7a:7e:11:ca: 90:8a:0a:71:70:ec:dd:7d:cf:35:51:a3:9a:6d:28:0b:5b:34: 57:9d:58:98:0c:d4:43:d3:10:43:61:92:f8:2d:ce:3a:78:74: 33:34:4a:23:4d:25:c4:bf:61:a4:90:e4:f9:44:71:27:40:84: 3d:fa:97:8c:2a:7e:36:96:3d:a1:ea:bb:e0:51:cb:b1:30:75: 48:3f:ab:4f:a2:10:1d:29:d7:41:e6:57:f1:dc:f9:ec:2c:97: 7c:37:9d:0b:14:7c:fd:dd:23:7c:32:b0:15:8f:01:ea:43:86: 2e:11:16:d0:cc:37:91:4a:14:75:92:63:c8:da:56:94:26:f2: ce:ce:01:58:67:6a:0d:f9:ca:05:cb:c3:43:be:42:90:36:db: 7d:f5:fc:d0 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt7pNZFoXOLxy/6azN3HjxvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjFhNmIzZjVlZDVmYjc0ZDAzNTEyMjE2NTEzYzRjODFlZmUxZTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9mv/6tHJ3qqgFFhPHFIHZdlEiOM I33rsfD1K6hW0pv2NasD+UVtvZsIxKub0CP7aj7NYqaWA+s2tOXbf/Oj3Vp0ccG7 8nuKJASP7EYNyMy5SnU/gRYF0rkWcMY6MqCP4mY8ESr+ltpx2NsKLmPAQo0k2144 ZkyYT0cX93EqJaOEeis0mJWwTbbJaz41SEN151VD+GKAd2Co9IB+oWyeqlrg2Ezo z6Fr7pMqrqACJ+z9eobZ9TZkqWlXaHzTFVTdoVsFa2E9odY0lP3ecTF7IQiMyae6 x7X7PAeBylWC4jxYppZurMtb+RnCPtkJ4NHnQFRyfcr3rLP7tgJ9S0M98wIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFHIaaz9e1ft00DUSIWUTxMge/h5cMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IwL2FmMzEw Yy0yYmQ4LTRlZmQtODhlNC04MGMzMWRiMjBhYzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAvYWYzMTBj LTJiZDgtNGVmZC04OGU0LTgwYzMxZGIyMGFjNS8xL2NocHJQMTdWLTNUUU5SSWha UlBFeUI3LUhsdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAATAYAwQCW9KgAwQDstlAAwQAwrByAwQBw12AMBkGCCsG AQUFBwEIAQH/BAowCKAGMAQCAlJfMA0GCSqGSIb3DQEBCwUAA4IBAQBAeLX3/TSb KNzuiTjKKdXZBb4OZBTYQvm/72lRnbj9Gp8P8vJTdujR+EDu7BlccGOzxdL1X1kC RVFSy9vzyexMQP9GHZaL9uyzbSnJWxvTCuxfA+3qJtU1abRkRe9l6ytLIKhZHaVp 5np+EcqQigpxcOzdfc81UaOabSgLWzRXnViYDNRD0xBDYZL4Lc46eHQzNEojTSXE v2GkkOT5RHEnQIQ9+peMKn42lj2h6rvgUcuxMHVIP6tPohAdKddB5lfx3PnsLJd8 N50LFHz93SN8MrAVjwHqQ4YuERbQzDeRShR1kmPI2laUJvLOzgFYZ2oN+coFy8ND vkKQNtt99fzQ -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:13 2026 by rpki-client