This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/clLH1e2MWivCrQMGXUHD5LOsFXU.cer File: clLH1e2MWivCrQMGXUHD5LOsFXU.cer (raw, json) Hash identifier: w28Hr+oUSzQszHmY1qlx8agA0DmCqBwnK/PpK6Bj950= Subject key identifier: 72:52:C7:D5:ED:8C:5A:2B:C2:AD:03:06:5D:41:C3:E4:B3:AC:15:75 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B3618E9C094EA6CFEC4CB086AB163D9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/clLH1e2MWivCrQMGXUHD5LOsFXU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:21 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 47919 AS: 210613 IP: 91.208.198.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:18:e9:c0:94:ea:6c:fe:c4:cb:08:6a:b1:63:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7252c7d5ed8c5a2bc2ad03065d41c3e4b3ac1575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:35:61:7a:62:71:34:37:da:b8:32:41:3e:6b: dc:28:ca:12:55:91:a9:06:08:a5:ed:c4:c4:b6:e9: 21:4a:a2:5d:0c:b3:79:9a:f9:dd:a5:ab:52:1e:bd: a6:21:12:b5:a4:97:02:19:83:98:d6:4d:28:5d:b3: 8b:7f:f0:f4:93:a8:1d:8d:8e:2d:ce:62:24:ae:16: f6:8a:df:27:29:33:d2:af:fc:60:6c:a5:b0:e2:d4: e9:8d:a7:05:46:67:df:34:d3:04:49:32:01:b5:a7: 43:3e:99:55:ce:13:ba:cd:f0:a8:7d:4b:23:e8:ba: 5f:f4:9a:72:58:a3:b5:88:13:43:28:0a:41:d8:94: 05:06:4b:7a:fb:fb:87:96:db:fd:cb:58:c4:7f:3c: ff:0a:20:2b:bb:03:48:04:02:a6:39:41:b9:ac:f3: 1a:b2:dc:b6:df:71:22:2e:80:25:9c:1d:83:e0:d7: 04:46:4d:5c:2e:7e:af:6a:a9:bb:34:ef:f0:04:07: e9:49:30:f8:3c:cd:5d:a2:07:be:18:51:d1:f8:9b: 3f:7f:b8:03:a1:62:f6:f9:0a:ea:e3:31:12:7b:bd: 8e:77:bb:8f:31:ef:0a:26:b2:be:80:c3:89:82:d6: 12:6d:ca:fe:d3:41:6f:ce:dc:42:b7:64:47:d3:e4: 3f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:52:C7:D5:ED:8C:5A:2B:C2:AD:03:06:5D:41:C3:E4:B3:AC:15:75 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/clLH1e2MWivCrQMGXUHD5LOsFXU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.208.198.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 47919 210613 Signature Algorithm: sha256WithRSAEncryption 71:a2:b7:58:ff:6c:c5:cd:fa:55:35:94:d4:3f:f4:48:84:f6: f9:2f:fa:be:81:5f:f1:d3:4d:94:4b:41:3a:39:d0:41:46:31: b8:c8:66:6b:5a:ea:ea:29:dd:f6:25:47:8a:1c:a0:35:75:99: b6:a5:dd:90:17:b2:8a:c1:32:87:34:4a:e0:a9:df:fc:f7:36: 48:3a:54:2f:63:ff:28:42:e7:8f:23:05:2f:a8:66:4a:75:16: 4e:b9:08:db:55:6b:b8:cc:fd:de:b9:f1:68:b2:a2:26:54:d0: 60:10:54:2b:1d:21:08:31:ef:fe:1a:69:39:dc:8c:80:af:67: f2:d4:fb:25:5e:1d:60:6d:d4:08:8d:14:b9:8e:e2:41:56:27: fa:d6:82:de:70:df:91:3b:2f:0f:97:62:60:f0:dd:c8:15:9e: 1f:dd:78:0a:12:d1:d3:14:87:7f:4d:e7:15:56:49:eb:3c:c3: 0a:b4:37:ea:27:e4:47:a2:f0:ec:59:da:22:e6:4a:03:a6:2a: ad:7d:0e:ba:ec:ef:23:b9:a7:0b:7d:b2:ee:8f:60:03:7f:1c: fa:13:74:26:fe:61:17:a3:63:a1:ec:76:9b:79:f4:de:f8:61: 4e:29:e1:b5:50:e9:e7:bd:40:a9:b3:6b:6f:ec:51:72:65:8c: 71:f7:54:0e -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgISAZt7NhjpwJTqbP7EywhqsWPZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjUyYzdkNWVkOGM1YTJiYzJhZDAzMDY1ZDQxYzNlNGIzYWMxNTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTVhemJxNDfauDJBPmvcKMoSVZGp Bgil7cTEtukhSqJdDLN5mvndpatSHr2mIRK1pJcCGYOY1k0oXbOLf/D0k6gdjY4t zmIkrhb2it8nKTPSr/xgbKWw4tTpjacFRmffNNMESTIBtadDPplVzhO6zfCofUsj 6Lpf9JpyWKO1iBNDKApB2JQFBkt6+/uHltv9y1jEfzz/CiAruwNIBAKmOUG5rPMa sty233EiLoAlnB2D4NcERk1cLn6vaqm7NO/wBAfpSTD4PM1doge+GFHR+Js/f7gD oWL2+Qrq4zESe72Od7uPMe8KJrK+gMOJgtYSbcr+00FvztxCt2RH0+Q/mQIDAQAB o4ICpTCCAqEwHQYDVR0OBBYEFHJSx9XtjForwq0DBl1Bw+SzrBV1MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg2LzJiOWQ4 OS1lZDgyLTQ0MDEtODFkOS02N2QxYjJhNjFiYjAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYvMmI5ZDg5 LWVkODItNDQwMS04MWQ5LTY3ZDFiMmE2MWJiMC8xL2NsTEgxZTJNV2l2Q3JRTUdY VUhENUxPc0ZYVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9DGMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoC AwC7LwIDAza1MA0GCSqGSIb3DQEBCwUAA4IBAQBxordY/2zFzfpVNZTUP/RIhPb5 L/q+gV/x002US0E6OdBBRjG4yGZrWurqKd32JUeKHKA1dZm2pd2QF7KKwTKHNErg qd/89zZIOlQvY/8oQuePIwUvqGZKdRZOuQjbVWu4zP3eufFosqImVNBgEFQrHSEI Me/+Gmk53IyAr2fy1PslXh1gbdQIjRS5juJBVif61oLecN+ROy8Pl2Jg8N3IFZ4f 3XgKEtHTFId/TecVVknrPMMKtDfqJ+RHovDsWdoi5koDpiqtfQ667O8juacLfbLu j2ADfxz6E3Qm/mEXo2Oh7HabefTe+GFOKeG1UOnnvUCps2tv7FFyZYxx91QO -----END CERTIFICATE-----Generated at Mon Feb 9 19:50:32 2026 by rpki-client