This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer (raw, json) Hash identifier: Terrcb+495AJa1mK3IfiKbgqzPWBXH/zk3rqS0hiTjU= Subject key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED39C791AA568CABFCD1E9F9032EF2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:19:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197680 IP: 91.213.226.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:39:c7:91:aa:56:8c:ab:fc:d1:e9:f9:03:2e:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:63:bb:e7:f7:91:a5:d9:77:29:d1:9e:89:51: e1:8d:25:76:8d:00:6a:e2:0a:ea:09:9d:ac:1c:ca: c5:5b:45:ec:2b:ec:1e:f0:d7:1a:fc:2f:8e:9e:b4: 0b:08:b9:95:13:27:7a:0f:9e:e1:94:79:d3:45:44: 97:33:9a:ac:70:a7:49:f9:32:11:d5:29:3f:7b:a8: ef:ed:99:e7:4e:7f:7b:63:4a:8c:35:ae:d8:cb:1c: e6:cc:1a:5f:16:7f:e5:8b:d6:36:b0:d7:eb:a2:c1: 93:60:24:fa:1a:48:ea:be:5a:6d:3d:16:ad:64:74: 56:e1:5e:6b:16:73:7c:c9:e3:f2:f3:74:5e:b1:4a: fc:c9:25:cb:fd:45:76:69:36:0e:8d:a7:8d:57:11: e1:27:85:02:a2:34:a9:c0:01:72:3a:ff:f5:6d:50: 52:0d:d9:f2:92:fc:b5:44:75:b3:21:fd:30:a5:ea: 3d:93:38:3c:c6:b0:23:51:63:07:bb:b0:7b:80:06: 8f:55:5a:6d:09:37:06:8d:7a:2e:23:a6:8e:67:be: 9b:21:a0:34:40:e0:22:1c:9b:6f:dc:58:ce:bb:32: 64:26:db:ed:eb:83:8d:12:95:15:d5:e4:ad:14:37: 11:7d:b7:64:6c:58:28:b8:2f:ae:33:b5:55:ff:6f: 00:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.213.226.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 197680 Signature Algorithm: sha256WithRSAEncryption 80:30:d8:e5:48:dd:52:73:ba:3a:00:20:69:35:ca:5f:92:24: 0c:68:a1:20:00:19:8c:f1:df:fd:d7:4d:ec:4b:d0:79:0b:5c: f9:f1:5d:44:dc:26:83:4e:7a:70:79:0e:58:d0:dc:99:47:86: 3d:9f:02:50:e4:ad:23:d8:af:89:57:da:e3:39:59:db:e4:bf: ba:ad:64:18:79:9d:2e:6e:96:fd:c5:e0:2f:49:42:57:70:ea: c6:5d:d6:4f:cd:90:c0:ce:01:23:d5:5d:e2:77:71:fc:e0:1e: 5b:b4:7e:cb:6d:fa:7d:ba:1c:2c:ad:28:eb:58:b1:4d:27:50: 36:eb:48:f6:1e:b4:2c:ff:0c:4f:0c:13:48:41:25:5c:a0:67: c5:1d:1b:d0:1f:45:c2:48:16:91:e3:2d:95:94:fc:a2:08:ca: 7e:c1:2d:e5:8d:cc:72:4e:e4:29:a7:71:1a:96:26:ae:51:ac: 98:c6:8c:76:a7:b6:fe:c1:54:64:9a:df:f0:8a:aa:ff:b8:5c: 12:4f:15:c2:46:dd:b9:f4:2d:d7:11:3b:9f:af:d4:a1:2b:df: ff:b0:07:25:79:c4:02:18:b0:b5:12:e1:eb:e7:93:66:33:df: cc:ab:72:02:2d:35:9b:de:87:e0:68:9a:5a:e4:f3:9d:fe:71: 00:14:39:c9 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt57TnHkapWjKv80en5Ay7yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OGY3YjBkZDlmZmNhMmY4NTczNGM1MzdjYmVmNWNjZDExOTllNWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWO75/eRpdl3KdGeiVHhjSV2jQBq 4grqCZ2sHMrFW0XsK+we8Nca/C+OnrQLCLmVEyd6D57hlHnTRUSXM5qscKdJ+TIR 1Sk/e6jv7ZnnTn97Y0qMNa7YyxzmzBpfFn/li9Y2sNfrosGTYCT6GkjqvlptPRat ZHRW4V5rFnN8yePy83ResUr8ySXL/UV2aTYOjaeNVxHhJ4UCojSpwAFyOv/1bVBS Ddnykvy1RHWzIf0wpeo9kzg8xrAjUWMHu7B7gAaPVVptCTcGjXouI6aOZ76bIaA0 QOAiHJtv3FjOuzJkJtvt64ONEpUV1eStFDcRfbdkbFgouC+uM7VV/28A5QIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFIj3sN2f/KL4VzTFN8vvXM0RmeW8MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ0L2RjOGMw Mi00ZjZkLTQ5ZjYtODgyYy0xMzY5MDVlMmM3YzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQvZGM4YzAy LTRmNmQtNDlmNi04ODJjLTEzNjkwNWUyYzdjNS8xL2lQZXczWl84b3ZoWE5NVTN5 LTljelJHWjVidy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9XiMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMEMDANBgkqhkiG9w0BAQsFAAOCAQEAgDDY5UjdUnO6OgAgaTXKX5IkDGihIAAZ jPHf/ddN7EvQeQtc+fFdRNwmg056cHkOWNDcmUeGPZ8CUOStI9iviVfa4zlZ2+S/ uq1kGHmdLm6W/cXgL0lCV3Dqxl3WT82QwM4BI9Vd4ndx/OAeW7R+y236fbocLK0o 61ixTSdQNutI9h60LP8MTwwTSEElXKBnxR0b0B9FwkgWkeMtlZT8ogjKfsEt5Y3M ck7kKadxGpYmrlGsmMaMdqe2/sFUZJrf8Iqq/7hcEk8VwkbdufQt1xE7n6/UoSvf /7AHJXnEAhiwtRLh6+eTZjPfzKtyAi01m96H4GiaWuTznf5xABQ5yQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:11 2026 by rpki-client