This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eSttblvaBSZfwM6XGaYzvgSm6Xk.cer File: eSttblvaBSZfwM6XGaYzvgSm6Xk.cer (raw, json) Hash identifier: sMxOwtH0E/CJ1NfTZgDEOMsI8zR+Rv1iNRHnjtK0zT0= Subject key identifier: 79:2B:6D:6E:5B:DA:05:26:5F:C0:CE:97:19:A6:33:BE:04:A6:E9:79 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCB51A4B770CA1D9D68CE3E66C5130B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/69/dac1e5-1fd9-43d4-8926-213dc399be6f/1/eSttblvaBSZfwM6XGaYzvgSm6Xk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/69/dac1e5-1fd9-43d4-8926-213dc399be6f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:20:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41890 AS: 203308 IP: 91.102.144.0/21 IP: 185.142.104.0/22 IP: 2a07:740::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:51:a4:b7:70:ca:1d:9d:68:ce:3e:66:c5:13:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=792b6d6e5bda05265fc0ce9719a633be04a6e979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f0:a3:7f:19:5f:c9:ca:3c:27:4a:5e:f2:08: a4:8a:9e:ff:93:28:6b:4e:ba:33:b0:48:d9:25:f2: 59:b7:55:78:96:28:a1:af:9d:82:0e:41:51:b7:be: 5e:15:5b:ee:c2:53:4b:72:1d:4f:93:53:5c:e5:d9: 16:e9:e6:21:42:b3:e7:7f:37:1c:42:4c:4c:6d:15: e5:85:96:9e:95:32:26:27:ff:ca:2e:84:cb:a3:de: 40:c6:66:5c:54:1d:8a:ae:e2:d8:57:79:d1:fe:3e: 43:c0:58:31:4b:9b:24:85:79:81:58:25:a3:9d:7e: f9:59:33:4e:43:8c:e2:64:99:75:dc:b7:c2:b5:9d: 5d:b3:23:32:2f:9b:f6:2a:fe:a3:3b:ba:10:0c:89: 9e:9e:b6:29:5b:1c:ef:bd:a1:4b:45:f8:55:1c:cb: e0:a7:bf:28:db:8c:f6:59:85:55:de:a9:e3:ce:6f: 01:4d:18:82:61:84:0f:34:df:e7:4d:d5:a6:de:c3: 68:5b:8a:71:31:3c:7f:9b:1d:d9:e3:35:a9:24:4e: 2b:f6:80:83:6c:7e:da:d9:1a:60:9b:d5:67:e2:04: 3e:74:b4:9b:54:9a:b0:49:4b:f3:c9:19:1c:69:fe: 5a:c7:00:87:26:6a:41:29:ad:7f:7f:95:d4:cc:57: 02:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:2B:6D:6E:5B:DA:05:26:5F:C0:CE:97:19:A6:33:BE:04:A6:E9:79 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/dac1e5-1fd9-43d4-8926-213dc399be6f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/dac1e5-1fd9-43d4-8926-213dc399be6f/1/eSttblvaBSZfwM6XGaYzvgSm6Xk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.102.144.0/21 185.142.104.0/22 IPv6: 2a07:740::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41890 203308 Signature Algorithm: sha256WithRSAEncryption 97:84:38:b5:cf:c6:3c:4c:b5:42:89:a6:df:57:ea:67:12:c4: 17:cf:9f:6a:80:74:1b:de:46:ee:f0:d7:b3:31:aa:c4:8a:08: 6d:eb:22:87:02:3e:f0:fc:99:6f:83:d3:37:58:ca:9d:be:2d: 28:ca:40:31:94:c6:84:b0:e5:9d:88:f6:da:db:65:5e:f3:66: 38:79:e6:31:a5:65:ab:2c:0b:f7:9f:c9:09:3d:db:fe:fe:43: 55:bb:71:91:f1:a7:04:18:2c:bd:3f:68:f9:be:e6:0f:c9:29: a5:e7:63:69:1f:fc:fc:97:c4:9e:54:b5:2e:99:e9:21:55:b9: d8:a4:a5:54:3b:ef:57:b4:c2:91:7d:7e:9e:9a:2a:eb:41:78: a6:48:72:04:14:2a:6e:37:0c:77:c3:cf:98:e9:bf:5d:a4:2c: 8d:e4:de:2b:7b:d4:3f:e3:09:77:af:3b:10:d3:d6:d4:60:5b: 27:e4:64:5f:19:8f:00:b8:c4:a1:6e:61:a0:d5:d3:59:5b:86: 49:6b:1e:b1:77:3f:88:79:11:92:4a:bf:4d:3f:4d:4d:77:2f: d2:0c:61:a1:b3:26:1d:01:8b:a3:b9:b9:12:1c:25:97:e0:eb: 6a:e4:fb:43:09:32:06:2f:01:81:a0:ae:e8:86:00:eb:de:cc: 6f:1d:d4:60 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt9y1Gkt3DKHZ1ozj5mxRMLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTJiNmQ2ZTViZGEwNTI2NWZjMGNlOTcxOWE2MzNiZTA0YTZlOTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4fCjfxlfyco8J0pe8gikip7/kyhr TrozsEjZJfJZt1V4liihr52CDkFRt75eFVvuwlNLch1Pk1Nc5dkW6eYhQrPnfzcc QkxMbRXlhZaelTImJ//KLoTLo95AxmZcVB2KruLYV3nR/j5DwFgxS5skhXmBWCWj nX75WTNOQ4ziZJl13LfCtZ1dsyMyL5v2Kv6jO7oQDImenrYpWxzvvaFLRfhVHMvg p78o24z2WYVV3qnjzm8BTRiCYYQPNN/nTdWm3sNoW4pxMTx/mx3Z4zWpJE4r9oCD bH7a2Rpgm9Vn4gQ+dLSbVJqwSUvzyRkcaf5axwCHJmpBKa1/f5XUzFcChQIDAQAB o4ICujCCArYwHQYDVR0OBBYEFHkrbW5b2gUmX8DOlxmmM74Epul5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY5L2RhYzFl NS0xZmQ5LTQzZDQtODkyNi0yMTNkYzM5OWJlNmYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkvZGFjMWU1 LTFmZDktNDNkNC04OTI2LTIxM2RjMzk5YmU2Zi8xL2VTdHRibHZhQlNaZndNNlhH YVl6dmdTbTZYay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDW2aQAwQCuY5oMA0EAgACMAcDBQMqBwdAMB8G CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwCjogIDAxosMA0GCSqGSIb3DQEBCwUAA4IB AQCXhDi1z8Y8TLVCiabfV+pnEsQXz59qgHQb3kbu8NezMarEight6yKHAj7w/Jlv g9M3WMqdvi0oykAxlMaEsOWdiPba22Ve82Y4eeYxpWWrLAv3n8kJPdv+/kNVu3GR 8acEGCy9P2j5vuYPySml52NpH/z8l8SeVLUumekhVbnYpKVUO+9XtMKRfX6emirr QXimSHIEFCpuNwx3w8+Y6b9dpCyN5N4re9Q/4wl3rzsQ09bUYFsn5GRfGY8AuMSh bmGg1dNZW4ZJax6xdz+IeRGSSr9NP01Ndy/SDGGhsyYdAYujubkSHCWX4Otq5PtD CTIGLwGBoK7ohgDr3sxvHdRg -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:47 2026 by rpki-client