This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hUkvKmkQQzxbzYJpxEDowceADWs.cer File: hUkvKmkQQzxbzYJpxEDowceADWs.cer (raw, json) Hash identifier: 7x2u2XqRlJp+yG5d9UiihNbsNL+81dqHhGSN9dCCcCI= Subject key identifier: 85:49:2F:2A:69:10:43:3C:5B:CD:82:69:C4:40:E8:C1:C7:80:0D:6B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5B06B928F36C0EDDBF5EA284AB5B25 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4f/b38228-0875-491c-9d4f-d6a9a28284cf/1/hUkvKmkQQzxbzYJpxEDowceADWs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4f/b38228-0875-491c-9d4f-d6a9a28284cf/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:19:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198435 IP: 85.208.248.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:06:b9:28:f3:6c:0e:dd:bf:5e:a2:84:ab:5b:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85492f2a6910433c5bcd8269c440e8c1c7800d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c3:b9:7d:e2:71:8f:45:c2:ea:05:7d:46:ca: 49:6c:60:46:f6:08:0e:7a:a4:d4:f0:99:78:8c:90: 1e:4e:20:3e:69:03:6d:86:03:5b:bc:df:ca:e3:d8: 3e:68:9d:b0:02:5d:1a:65:e9:3e:0b:cf:e5:54:e6: fe:fe:4d:b2:ca:1a:de:dd:b3:3d:7f:21:7d:32:d3: bf:bc:c5:cb:61:83:01:a4:7f:e8:50:0c:16:6b:26: 46:a3:b5:78:e6:65:cd:c3:f6:c0:7f:41:0e:f9:4c: 5f:76:e9:3a:c0:e8:72:6d:33:0a:f2:b7:32:42:a2: e6:cd:81:e7:65:09:10:26:ec:00:55:1b:20:fd:22: 29:bd:70:a4:92:63:e9:96:93:39:8d:47:ff:29:7a: bc:43:cf:e8:e6:75:1b:9c:d8:99:37:19:0a:55:d9: 00:d2:d8:b9:8a:5a:44:9c:5a:f2:45:d7:28:8c:5b: 19:12:4a:b9:df:ee:6c:14:11:f2:12:36:f1:bf:22: 10:01:7f:df:b8:9f:a3:77:ed:3a:56:ac:c8:21:9c: 4f:d4:89:54:5b:95:38:69:c6:f6:9b:a0:8b:27:bb: 05:d4:44:d4:21:2b:2d:c0:cd:22:7d:b8:0a:9f:7d: ec:05:f7:cb:7d:ed:02:ab:de:bd:68:09:51:10:f8: 00:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:49:2F:2A:69:10:43:3C:5B:CD:82:69:C4:40:E8:C1:C7:80:0D:6B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b38228-0875-491c-9d4f-d6a9a28284cf/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b38228-0875-491c-9d4f-d6a9a28284cf/1/hUkvKmkQQzxbzYJpxEDowceADWs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.208.248.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198435 Signature Algorithm: sha256WithRSAEncryption 6f:2f:eb:e2:1f:ae:26:cc:7b:50:32:ef:fc:d0:b3:29:db:49: d5:02:36:ee:2d:e0:9c:0d:ab:36:56:66:7b:fd:c5:2c:33:37: 49:86:00:35:fc:da:13:cc:c8:f6:63:27:2b:1d:76:15:45:ba: ce:5a:8f:e9:17:b1:6a:66:41:73:1e:ba:62:68:af:33:d9:0b: 76:aa:96:de:30:5d:18:cf:fd:b0:fa:e2:fa:5c:b6:0f:3f:be: af:2d:29:2e:2d:68:3f:97:5c:a1:c1:aa:29:c0:ff:70:2b:08: bd:c4:34:13:a2:0b:17:f5:cc:38:b9:30:eb:16:5e:e0:bb:3a: b0:6c:b9:3e:f8:77:f3:ea:6c:51:c8:e5:fc:d9:c2:42:cc:32: 16:b1:e8:8e:51:e1:ea:6e:4d:36:68:c7:17:44:da:60:a5:3b: 5d:e7:e1:a7:ec:e2:8f:e2:b7:16:19:98:c7:95:7e:db:40:70: 48:fc:20:a3:e9:7c:59:70:f7:aa:7e:64:d6:92:4d:85:8f:4c: 8d:7c:18:e6:9f:17:54:56:63:de:66:8b:7e:be:40:57:a7:df: 13:e9:22:63:65:ea:89:72:98:6e:d2:77:1f:bc:56:df:47:56: f8:81:a0:4c:47:d4:09:cb:62:3a:01:c1:6e:d6:6c:8f:fd:16: e9:52:51:a1 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt6Wwa5KPNsDt2/XqKEq1slMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTQ5MmYyYTY5MTA0MzNjNWJjZDgyNjljNDQwZThjMWM3ODAwZDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMO5feJxj0XC6gV9RspJbGBG9ggO eqTU8Jl4jJAeTiA+aQNthgNbvN/K49g+aJ2wAl0aZek+C8/lVOb+/k2yyhre3bM9 fyF9MtO/vMXLYYMBpH/oUAwWayZGo7V45mXNw/bAf0EO+Uxfduk6wOhybTMK8rcy QqLmzYHnZQkQJuwAVRsg/SIpvXCkkmPplpM5jUf/KXq8Q8/o5nUbnNiZNxkKVdkA 0ti5ilpEnFryRdcojFsZEkq53+5sFBHyEjbxvyIQAX/fuJ+jd+06VqzIIZxP1IlU W5U4acb2m6CLJ7sF1ETUISstwM0ifbgKn33sBffLfe0Cq969aAlREPgAbwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFIVJLyppEEM8W82CacRA6MHHgA1rMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRmL2IzODIy OC0wODc1LTQ5MWMtOWQ0Zi1kNmE5YTI4Mjg0Y2YvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYvYjM4MjI4 LTA4NzUtNDkxYy05ZDRmLWQ2YTlhMjgyODRjZi8xL2hVa3ZLbWtRUXp4YnpZSnB4 RURvd2NlQURXcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCVdD4MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMHIzANBgkqhkiG9w0BAQsFAAOCAQEAby/r4h+uJsx7UDLv/NCzKdtJ1QI27i3g nA2rNlZme/3FLDM3SYYANfzaE8zI9mMnKx12FUW6zlqP6RexamZBcx66YmivM9kL dqqW3jBdGM/9sPri+ly2Dz++ry0pLi1oP5dcocGqKcD/cCsIvcQ0E6ILF/XMOLkw 6xZe4Ls6sGy5Pvh38+psUcjl/NnCQswyFrHojlHh6m5NNmjHF0TaYKU7Xefhp+zi j+K3FhmYx5V+20BwSPwgo+l8WXD3qn5k1pJNhY9MjXwY5p8XVFZj3maLfr5AV6ff E+kiY2XqiXKYbtJ3H7xW30dW+IGgTEfUCctiOgHBbtZsj/0W6VJRoQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:50:58 2026 by rpki-client