This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5LD_GkVSsfVFbysnaoH54vCKcw.cer File: d5LD_GkVSsfVFbysnaoH54vCKcw.cer (raw, json) Hash identifier: 88Iu0rtladg4sDmX/XQWyGk2K8FHj3pgzVu2c0YerRk= Subject key identifier: 77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC91EBA8205044A89F554737E8817EB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/d5LD_GkVSsfVFbysnaoH54vCKcw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:19:19 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.99.56.0/22 IP: 2a06:10c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:1e:ba:82:05:04:4a:89:f5:54:73:7e:88:17:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7792c3fc69154ac7d515bcac9daa07e78bc229cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f6:cd:ff:70:3a:2d:15:09:48:2c:57:e0:fa: f9:3f:56:74:c1:74:a9:4a:9a:0e:be:f0:48:5b:33: d7:e2:05:e1:f3:27:50:c0:83:48:1f:76:2d:a5:fb: 2b:0c:fc:33:07:9e:20:57:73:91:64:3d:b8:4f:fa: 0c:f0:08:85:fa:61:3d:a8:53:d3:21:c0:8d:0a:57: 3a:9d:da:98:cb:79:72:63:b6:37:2c:c4:25:2c:cc: 87:4e:57:6e:10:f5:9b:80:1c:92:2b:bb:57:f7:05: 2c:66:3a:39:4c:11:fd:e8:2e:8a:51:0d:48:b7:76: bb:1a:2c:d7:0b:fa:c0:40:1d:29:c4:5b:db:d0:b0: a8:41:4f:95:b3:d3:de:b5:94:f3:3c:c0:8e:8c:85: 63:79:94:2e:0f:a2:c9:22:c6:2b:9b:57:ea:21:a0: 0e:08:d0:21:fd:cc:42:b0:1c:9b:c6:b6:60:76:a8: 8c:4e:9e:bb:2e:11:83:e3:77:94:02:94:57:c9:e2: a9:3d:c8:f4:81:5f:1d:64:3e:39:1c:e5:ca:41:f4: 73:36:dd:62:19:43:30:c0:28:6e:83:74:f5:23:65: 56:ab:e6:39:96:bf:da:b1:72:7c:1e:12:34:5d:89: 1e:5f:15:b7:e2:56:04:bc:98:32:34:0f:a1:1b:2d: 52:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/d5LD_GkVSsfVFbysnaoH54vCKcw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.99.56.0/22 IPv6: 2a06:10c0::/29 Signature Algorithm: sha256WithRSAEncryption 11:2a:43:0a:85:4b:78:bf:9f:1b:9d:8f:47:a3:e5:c4:c9:01: 0c:6e:0b:d9:4f:82:a9:8a:c9:c9:49:b1:d2:fa:4e:d3:9e:3e: a7:f2:ec:4e:4e:1f:9f:2c:67:93:a1:0f:48:2b:a6:40:61:53: e2:71:35:5e:c8:3f:94:ef:4b:f4:12:3c:19:7e:74:3e:a1:d2: be:85:cd:00:94:59:21:43:44:1d:ec:8f:24:ba:52:b7:0c:05: 4c:d0:04:40:41:ba:98:35:1c:8e:91:57:90:a2:c4:96:85:cc: b8:b3:ee:a3:03:33:35:73:9a:c3:c5:e6:48:90:e2:20:bb:28: e4:f1:2b:bc:04:5a:f5:17:0b:e6:b1:c3:8d:b4:8e:fa:9e:b7: 31:45:50:e9:74:36:bd:0f:0f:de:a5:66:86:b0:f3:9f:a2:01: 46:c4:b6:2e:2d:5c:df:0e:ef:a1:63:e5:23:1a:43:0c:51:1e: 7a:f8:4f:3b:76:92:9e:60:b6:16:2a:2e:db:e6:e2:9d:d6:89: 9a:b2:a0:14:0d:9e:95:8a:dd:25:ee:6b:c7:e7:b0:36:b1:5a: d4:2b:3a:ed:57:5a:da:2d:d3:f8:d2:d3:2f:73:66:c3:ea:b8: 0a:9d:05:cd:e1:25:b6:c6:71:6c:6b:b1:9c:5f:68:48:ff:6e: ec:7d:b8:a7 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt6yR66ggUESon1VHN+iBfrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzkyYzNmYzY5MTU0YWM3ZDUxNWJjYWM5ZGFhMDdlNzhiYzIyOWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvbN/3A6LRUJSCxX4Pr5P1Z0wXSp SpoOvvBIWzPX4gXh8ydQwINIH3YtpfsrDPwzB54gV3ORZD24T/oM8AiF+mE9qFPT IcCNClc6ndqYy3lyY7Y3LMQlLMyHTlduEPWbgBySK7tX9wUsZjo5TBH96C6KUQ1I t3a7GizXC/rAQB0pxFvb0LCoQU+Vs9PetZTzPMCOjIVjeZQuD6LJIsYrm1fqIaAO CNAh/cxCsBybxrZgdqiMTp67LhGD43eUApRXyeKpPcj0gV8dZD45HOXKQfRzNt1i GUMwwChug3T1I2VWq+Y5lr/asXJ8HhI0XYkeXxW34lYEvJgyNA+hGy1SyQIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFHeSw/xpFUrH1RW8rJ2qB+eLwinMMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VkLzUyYjQ4 ZC0yOGE4LTQ4ZjUtYTRkZi00ZGI0MGEzNjU2M2UvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQvNTJiNDhk LTI4YTgtNDhmNS1hNGRmLTRkYjQwYTM2NTYzZS8xL2Q1TERfR2tWU3NmVkZieXNu YW9INTR2Q0tjdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuWM4MA0EAgACMAcDBQMqBhDAMA0GCSqGSIb3 DQEBCwUAA4IBAQARKkMKhUt4v58bnY9Ho+XEyQEMbgvZT4KpisnJSbHS+k7Tnj6n 8uxOTh+fLGeToQ9IK6ZAYVPicTVeyD+U70v0EjwZfnQ+odK+hc0AlFkhQ0Qd7I8k ulK3DAVM0ARAQbqYNRyOkVeQosSWhcy4s+6jAzM1c5rDxeZIkOIguyjk8Su8BFr1 FwvmscONtI76nrcxRVDpdDa9Dw/epWaGsPOfogFGxLYuLVzfDu+hY+UjGkMMUR56 +E87dpKeYLYWKi7b5uKd1omasqAUDZ6Vit0l7mvH57A2sVrUKzrtV1raLdP40tMv c2bD6rgKnQXN4SW2xnFsa7GcX2hI/27sfbin -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:45 2026 by rpki-client