This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer File: iW81xeAyGs0CFn3viAfwu29xwo0.cer (raw, json) Hash identifier: yU0WoqJWRfDgjQrqPpCrrWbHTxWtAUdEsWtnVb63OHI= Subject key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78352F54C990EF0B413DD223B7F78297 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 56439 IP: 91.223.152.0/24 IP: 2001:678:564::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:2f:54:c9:90:ef:0b:41:3d:d2:23:b7:f7:82:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=896f35c5e0321acd02167def8807f0bb6f71c28d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f1:df:15:c0:99:70:31:01:f7:9d:ea:36:7b: 12:8e:8e:ad:db:27:d0:ae:b5:ae:07:9d:a2:24:e3: 68:1b:c2:69:20:84:c9:19:a9:e5:a1:4a:f2:83:f4: 64:bd:c6:ec:5d:0f:69:b3:cd:5e:43:47:bb:b6:d2: 6e:eb:d5:2f:a8:39:3d:bf:56:bb:e6:90:99:4a:05: f9:65:ef:b6:c5:5a:2c:df:f0:9e:3b:25:0c:63:19: 84:74:11:27:bf:75:85:be:c6:c5:cb:4e:38:a3:e6: 6c:01:1c:d7:8f:8d:54:4f:95:1b:9e:dd:04:d0:90: 96:1c:4e:14:cd:bb:16:b2:cc:5f:7e:e6:62:9e:c7: 2c:e3:dd:5b:f8:ca:6c:44:99:ed:35:8e:23:b2:e9: 2b:83:29:13:8a:7e:7d:42:77:d0:cb:da:ec:1a:f4: 5c:11:2b:ec:a6:4b:79:74:45:00:33:cb:b3:da:90: 47:2e:0b:07:b4:48:49:7d:39:c3:74:b9:3c:9a:56: 47:41:1f:5a:20:da:1d:d6:5a:37:4d:e0:4b:32:b4: 55:d5:66:78:15:b5:da:36:9f:32:1c:d5:91:09:dc: d3:ef:e0:08:32:3b:55:88:f2:26:94:d1:14:cc:6b: 2f:cd:eb:3b:35:75:40:b6:0d:9b:eb:b2:c6:a8:c5: b9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.152.0/24 IPv6: 2001:678:564::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 56439 Signature Algorithm: sha256WithRSAEncryption a6:28:99:55:9f:12:47:fd:db:1e:90:44:9b:f5:ef:52:c6:06: f8:9e:89:e1:ce:7c:26:18:4a:69:29:91:0c:3d:b2:ba:66:7f: 2a:bc:13:d0:50:d3:52:3a:05:cb:35:17:63:23:ca:66:1a:f0: 80:2c:77:e8:01:ef:94:45:7d:0d:04:87:50:9a:27:64:54:74: 70:ef:f2:76:0e:f2:aa:a0:4d:9c:60:4e:a6:76:21:9d:09:f2: a4:ca:d9:31:35:11:a0:98:00:2f:03:fc:28:be:90:dd:0e:61: b3:74:e2:e6:0b:6a:a2:49:23:8f:f6:ff:87:84:c2:ae:8d:85: 9f:bb:1d:95:77:88:9c:dd:ce:f1:76:6c:9a:28:1a:55:74:dd: eb:3d:92:e6:dd:01:b3:30:8e:99:a8:26:a3:95:f1:21:cf:c5: 82:4d:f7:68:7e:00:a7:6f:d1:88:35:bb:30:85:6e:11:a5:16: 4b:0b:a9:3e:47:9a:14:44:38:7d:bf:cb:38:1e:40:2f:85:c6: ba:95:f9:37:8b:01:1b:35:ff:59:9a:fd:1f:a6:15:1f:81:4b: 2b:3b:9a:73:27:d1:f9:e9:6c:91:82:3a:b8:6b:16:c2:46:c6: 39:de:e6:8d:e2:e4:5d:bf:4a:14:8a:f7:c3:fe:27:7b:b1:4f: f8:ba:83:fe -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt4NS9UyZDvC0E90iO394KXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTZmMzVjNWUwMzIxYWNkMDIxNjdkZWY4ODA3ZjBiYjZmNzFjMjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvHfFcCZcDEB953qNnsSjo6t2yfQ rrWuB52iJONoG8JpIITJGanloUryg/RkvcbsXQ9ps81eQ0e7ttJu69UvqDk9v1a7 5pCZSgX5Ze+2xVos3/CeOyUMYxmEdBEnv3WFvsbFy044o+ZsARzXj41UT5Ubnt0E 0JCWHE4UzbsWssxffuZinscs491b+MpsRJntNY4jsukrgykTin59QnfQy9rsGvRc ESvspkt5dEUAM8uz2pBHLgsHtEhJfTnDdLk8mlZHQR9aINod1lo3TeBLMrRV1WZ4 FbXaNp8yHNWRCdzT7+AIMjtViPImlNEUzGsvzes7NXVAtg2b67LGqMW5mwIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFIlvNcXgMhrNAhZ974gH8LtvccKNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA0LzgwYzRj MC1jNzI5LTQxOGUtODBhZi0yMjk5YTY3ZTYwMDEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQvODBjNGMw LWM3MjktNDE4ZS04MGFmLTIyOTlhNjdlNjAwMS8xL2lXODF4ZUF5R3MwQ0ZuM3Zp QWZ3dTI5eHdvMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAW9+YMA8EAgACMAkDBwAgAQZ4BWQwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDANx3MA0GCSqGSIb3DQEBCwUAA4IBAQCmKJlVnxJH /dsekESb9e9Sxgb4nonhznwmGEppKZEMPbK6Zn8qvBPQUNNSOgXLNRdjI8pmGvCA LHfoAe+URX0NBIdQmidkVHRw7/J2DvKqoE2cYE6mdiGdCfKkytkxNRGgmAAvA/wo vpDdDmGzdOLmC2qiSSOP9v+HhMKujYWfux2Vd4ic3c7xdmyaKBpVdN3rPZLm3QGz MI6ZqCajlfEhz8WCTfdofgCnb9GINbswhW4RpRZLC6k+R5oURDh9v8s4HkAvhca6 lfk3iwEbNf9Zmv0fphUfgUsrO5pzJ9H56WyRgjq4axbCRsY53uaN4uRdv0oUivfD /id7sU/4uoP+ -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:23 2026 by rpki-client