This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eXAA1nyN62Ji4Ampr_QioQOPRIk.cer File: eXAA1nyN62Ji4Ampr_QioQOPRIk.cer (raw, json) Hash identifier: VaMVV1+vyg2nOp3JCZ4+Uyb0qHDLurbmvLLxqKRNc5E= Subject key identifier: 79:70:00:D6:7C:8D:EB:62:62:E0:09:A9:AF:F4:22:A1:03:8F:44:89 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B9D533A1F879C32F6A9BE846DEEF1B359 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/eXAA1nyN62Ji4Ampr_QioQOPRIk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 08 Jan 2026 11:17:15 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204056 IP: 2.57.160.0/22 IP: 2a09:ce40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9d:53:3a:1f:87:9c:32:f6:a9:be:84:6d:ee:f1:b3:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 8 11:17:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=797000d67c8deb6262e009a9aff422a1038f4489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:44:ee:aa:26:f9:32:66:ad:88:a6:f6:46:c4: 4f:3a:93:5c:37:61:ee:99:da:ad:0e:ca:33:63:7f: cc:86:72:e7:39:41:40:f7:8e:fe:eb:40:ef:c3:09: 6c:f8:95:f6:ea:d3:aa:ef:f4:71:1b:6a:7c:b6:e9: fc:57:df:50:e9:9b:92:0e:1d:d4:11:1b:eb:af:d2: 96:3d:37:b9:12:94:96:83:d5:5c:b7:66:db:8a:89: a9:92:17:fc:93:e6:66:47:58:dc:b7:48:69:da:9f: 2c:c5:b2:dc:51:98:7d:08:8c:6c:05:ef:6c:82:b5: e3:58:91:51:88:9b:14:66:d3:cc:9b:7c:3e:02:7c: a5:c0:c0:8a:3f:48:9f:11:a4:ce:14:ed:4c:ba:60: 83:15:b7:ee:b6:6e:d8:50:45:41:d7:10:87:2d:33: 08:6a:84:bc:b7:49:b9:19:36:2c:62:a5:bb:d7:25: b4:1c:5f:c2:aa:27:86:b3:47:11:46:93:7b:73:18: 35:46:ba:95:6a:08:7f:a6:f4:1a:4d:e0:27:bd:fe: 58:c0:02:61:4e:ee:cf:ae:88:a7:7a:10:8f:94:25: 24:1b:d0:33:64:d3:c7:12:93:2a:b3:fd:7f:70:c6: f4:b0:22:69:d3:d6:e3:ef:d7:44:72:fe:55:e7:a8: a1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:70:00:D6:7C:8D:EB:62:62:E0:09:A9:AF:F4:22:A1:03:8F:44:89 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/eXAA1nyN62Ji4Ampr_QioQOPRIk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.160.0/22 IPv6: 2a09:ce40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204056 Signature Algorithm: sha256WithRSAEncryption 14:e1:cd:25:40:79:e4:e7:01:6d:23:c2:34:7c:af:e7:2a:98: 96:3f:8d:f3:34:d6:72:52:e1:41:a9:26:77:26:cb:5f:cf:9f: af:67:14:29:f4:5f:07:d3:83:c9:1e:cb:e2:9d:7c:d2:a4:1c: 63:99:fd:e1:28:db:d4:b8:48:d0:c8:cd:de:d2:f1:e4:da:e7: 38:b8:54:30:c9:7f:89:f6:57:96:04:5e:d4:29:10:7e:3f:50: aa:59:df:b2:92:10:bb:09:e4:3e:e9:22:4b:62:e6:d5:10:87: 52:1f:25:67:27:df:a2:8d:c6:f2:50:34:d3:2b:6f:f6:d0:2d: 88:f4:a6:a6:61:4b:a6:de:58:76:75:13:44:95:a8:b9:e3:bc: 51:40:4c:56:a8:cd:60:66:96:6c:48:1a:6c:88:f4:f2:6e:65: af:eb:f5:c1:c5:98:d4:f1:16:a1:96:63:67:f3:9e:18:ec:ac: 1a:eb:71:fc:8c:69:90:64:8a:a2:0c:3a:97:d5:cd:b1:bc:55: 5b:1a:e7:9c:9c:dd:c4:de:bc:44:91:bc:a1:c1:03:78:88:fa: 52:45:90:88:8c:ef:8d:6e:96:a2:b4:c4:2a:2c:e5:af:4a:69: 1e:11:7e:13:d2:4c:f2:86:19:a9:11:e6:d0:66:eb:86:c4:02: 7b:17:fd:30 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZudUzofh5wy9qm+hG3u8bNZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTA4MTExNzE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTcwMDBkNjdjOGRlYjYyNjJlMDA5YTlhZmY0MjJhMTAzOGY0NDg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUTuqib5MmatiKb2RsRPOpNcN2Hu mdqtDsozY3/MhnLnOUFA947+60Dvwwls+JX26tOq7/RxG2p8tun8V99Q6ZuSDh3U ERvrr9KWPTe5EpSWg9Vct2bbiompkhf8k+ZmR1jct0hp2p8sxbLcUZh9CIxsBe9s grXjWJFRiJsUZtPMm3w+AnylwMCKP0ifEaTOFO1MumCDFbfutm7YUEVB1xCHLTMI aoS8t0m5GTYsYqW71yW0HF/CqieGs0cRRpN7cxg1RrqVagh/pvQaTeAnvf5YwAJh Tu7ProinehCPlCUkG9AzZNPHEpMqs/1/cMb0sCJp09bj79dEcv5V56iheQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFHlwANZ8jetiYuAJqa/0IqEDj0SJMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg2L2UyY2Rh Yy04OTAxLTQwNTItOTU1NC1iYWU5ZDJiMjk2MDEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYvZTJjZGFj LTg5MDEtNDA1Mi05NTU0LWJhZTlkMmIyOTYwMS8xL2VYQUExbnlONjJKaTRBbXBy X1Fpb1FPUFJJay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCAjmgMA0EAgACMAcDBQMqCc5AMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMdGDANBgkqhkiG9w0BAQsFAAOCAQEAFOHNJUB55OcB bSPCNHyv5yqYlj+N8zTWclLhQakmdybLX8+fr2cUKfRfB9ODyR7L4p180qQcY5n9 4Sjb1LhI0MjN3tLx5NrnOLhUMMl/ifZXlgRe1CkQfj9QqlnfspIQuwnkPukiS2Lm 1RCHUh8lZyffoo3G8lA00ytv9tAtiPSmpmFLpt5YdnUTRJWoueO8UUBMVqjNYGaW bEgabIj08m5lr+v1wcWY1PEWoZZjZ/OeGOysGutx/IxpkGSKogw6l9XNsbxVWxrn nJzdxN68RJG8ocEDeIj6UkWQiIzvjW6WorTEKizlr0ppHhF+E9JM8oYZqRHm0Gbr hsQCexf9MA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:31 2026 by rpki-client