This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer File: d5KQMR5unPpeUX-rsNlvqaccPaE.cer (raw, json) Hash identifier: b16jbw8Qiw2eUr2IOAnS/cRjiy/uOH3u8v9Ou7WiYM0= Subject key identifier: 77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB252506021960B356C6A6325769C2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:00 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208071 IP: 45.159.160.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:25:25:06:02:19:60:b3:56:c6:a6:32:57:69:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e3:1f:ad:76:c8:01:23:85:95:4b:fb:f6:92: 99:99:41:af:a3:3a:b5:55:bc:1c:6b:1b:a1:57:29: ed:57:37:28:5c:ed:ec:08:3b:3a:a8:87:be:5a:86: 15:ea:cb:7a:64:34:e1:24:20:cc:f8:62:f0:04:85: 4c:cf:a0:f8:11:bd:21:13:01:7d:2d:81:d9:e5:d5: 3e:3e:0f:37:7e:fd:55:d8:f7:4a:ca:66:50:05:a7: ac:d5:a4:d2:1c:16:11:d4:b2:8f:db:27:0c:d9:c2: cf:f9:ca:e9:54:22:26:6c:59:5b:b1:f0:a2:de:da: e3:b9:1e:03:d4:50:ad:0d:46:75:9d:4e:78:35:a3: 08:b3:d2:d6:08:a2:88:3c:42:96:2e:d9:0b:0c:72: 1e:30:b6:40:41:20:32:f0:eb:cf:89:8c:e0:cf:71: ae:49:bf:1f:fa:e5:21:41:99:68:26:ee:fa:f3:ac: 0b:c3:6d:29:48:ca:97:7e:01:1c:58:78:75:56:76: d6:29:cf:96:e7:0b:ed:a1:f3:97:2e:cb:76:fb:f3: 38:ae:23:ae:a7:7d:68:19:ce:2b:65:0b:c0:51:c1: 8f:8f:c2:9f:25:f2:46:78:e5:44:85:c6:60:02:00: 61:a2:4d:1b:7e:c9:0d:a9:49:d8:62:ed:da:19:b4: 64:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.159.160.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208071 Signature Algorithm: sha256WithRSAEncryption aa:bd:fb:28:85:7c:13:4d:50:4a:ce:b8:97:ab:32:28:af:ab: 6a:c4:52:73:27:1e:80:15:68:70:09:75:b3:59:41:7c:ba:88: 1a:ed:7d:59:49:f6:77:b3:d5:a1:89:de:1a:ae:da:9c:70:cb: 37:65:91:5c:bd:6b:80:5e:f9:db:26:af:fb:3b:e5:47:a0:00: 0d:4c:0a:d7:ed:f6:3d:ca:3f:c9:b3:03:ca:25:55:df:13:3b: 7b:8d:06:08:cf:e3:53:77:5b:9f:19:e5:a2:ef:2c:63:57:dd: 9c:30:f5:2e:dd:f8:ef:f4:60:47:64:06:74:8a:2c:1d:f1:99: cf:c6:02:da:a8:f2:5d:8e:24:4a:f0:c6:f7:e2:39:8d:33:91: fc:17:a4:bc:20:fb:c8:42:39:ab:d2:11:8f:ff:05:d4:1c:8c: 6b:1c:51:6b:b2:ff:56:ce:f9:8e:fa:16:fd:e8:7c:d9:7f:6d: 44:8c:b9:8d:47:c3:8e:dc:98:80:65:41:88:7b:79:ea:2a:e6: f3:87:0f:3e:e4:fd:97:6c:1a:6e:90:82:fe:c4:d1:75:ce:dd: 16:6d:41:da:1c:7f:53:27:66:ec:34:6d:9d:fe:3d:f6:50:62: 37:95:a3:50:7e:e8:d0:ad:39:9a:51:f3:82:7d:e7:2b:d7:0c: 09:77:2c:62 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt26yUlBgIZYLNWxqYyV2nCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzkyOTAzMTFlNmU5Y2ZhNWU1MTdmYWJiMGQ5NmZhOWE3MWMzZGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8OMfrXbIASOFlUv79pKZmUGvozq1 VbwcaxuhVyntVzcoXO3sCDs6qIe+WoYV6st6ZDThJCDM+GLwBIVMz6D4Eb0hEwF9 LYHZ5dU+Pg83fv1V2PdKymZQBaes1aTSHBYR1LKP2ycM2cLP+crpVCImbFlbsfCi 3trjuR4D1FCtDUZ1nU54NaMIs9LWCKKIPEKWLtkLDHIeMLZAQSAy8OvPiYzgz3Gu Sb8f+uUhQZloJu7686wLw20pSMqXfgEcWHh1VnbWKc+W5wvtofOXLst2+/M4riOu p31oGc4rZQvAUcGPj8KfJfJGeOVEhcZgAgBhok0bfskNqUnYYu3aGbRkxQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFHeSkDEebpz6XlF/q7DZb6mnHD2hMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcxL2I4ZTAz ZS1jMzk4LTRlZWUtODkzOS1mOTA5ZDc5YTQ0YWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzEvYjhlMDNl LWMzOTgtNGVlZS04OTM5LWY5MDlkNzlhNDRhZC8xL2Q1S1FNUjV1blBwZVVYLXJz Tmx2cWFjY1BhRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCLZ+gMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMsxzANBgkqhkiG9w0BAQsFAAOCAQEAqr37KIV8E01QSs64l6syKK+rasRScyce gBVocAl1s1lBfLqIGu19WUn2d7PVoYneGq7anHDLN2WRXL1rgF752yav+zvlR6AA DUwK1+32Pco/ybMDyiVV3xM7e40GCM/jU3dbnxnlou8sY1fdnDD1Lt347/RgR2QG dIosHfGZz8YC2qjyXY4kSvDG9+I5jTOR/BekvCD7yEI5q9IRj/8F1ByMaxxRa7L/ Vs75jvoW/eh82X9tRIy5jUfDjtyYgGVBiHt56irm84cPPuT9l2wabpCC/sTRdc7d Fm1B2hx/Uydm7DRtnf499lBiN5WjUH7o0K05mlHzgn3nK9cMCXcsYg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:57 2026 by rpki-client