This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer File: isfq5knZVHsK0KsAerTopI3tTV0.cer (raw, json) Hash identifier: x+gBkzHvMVImMd7VEmJGP3Bqf3kIKLLouIiNEJLtgiM= Subject key identifier: 8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7EF30BB75B86220237C243F8452EBF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:17:33 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207054 IP: 45.10.12.0/22 IP: 45.15.92.0/22 IP: 66.81.144.0/21 IP: 185.167.112.0/22 IP: 185.231.192.0/22 IP: 194.58.24.0/22 IP: 2a0b:1a00::/29 IP: 2a0e:2680::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7e:f3:0b:b7:5b:86:22:02:37:c2:43:f8:45:2e:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d0:11:9b:91:6c:08:63:e8:29:bb:72:22:d4: d3:50:fc:84:ef:2e:82:db:32:ac:ea:f2:b4:67:69: e7:9a:4e:43:03:e4:4e:fc:8e:e6:23:40:90:b7:58: c1:61:fa:64:54:a8:37:83:28:8a:d6:dd:c2:50:a6: e9:4a:8d:88:db:4f:b3:11:e7:a0:8b:91:0e:7c:af: 83:3e:06:85:fe:81:e2:96:91:02:f7:ef:7e:32:1f: 8f:8d:bc:bf:20:ce:09:2f:6c:75:74:b4:c3:9b:b4: 50:0a:bd:c5:b6:33:7c:89:cf:66:46:62:c2:89:19: 08:56:1e:92:31:0e:04:34:97:00:cf:8f:a5:df:9a: fe:b6:b6:74:48:66:d1:72:ad:3d:7e:00:8d:6e:2d: 64:58:44:e1:4d:5c:61:3e:38:61:7c:ad:bb:70:86: 67:c6:20:d3:ef:56:fb:67:4f:08:c4:3b:e7:52:8b: 62:6c:3a:fa:b3:9d:e3:73:1a:de:13:3a:ab:0b:a9: 17:b7:a6:4b:1b:8c:45:39:c4:ac:16:fa:7a:7f:15: c8:7d:21:cc:ff:95:e3:28:2e:79:18:80:9a:66:4b: f3:3f:5a:66:37:11:cb:27:34:c1:cd:ec:41:b1:af: 07:24:7c:1a:ed:64:05:92:16:e4:2b:c7:b0:74:73: 5f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.10.12.0/22 45.15.92.0/22 66.81.144.0/21 185.167.112.0/22 185.231.192.0/22 194.58.24.0/22 IPv6: 2a0b:1a00::/29 2a0e:2680::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207054 Signature Algorithm: sha256WithRSAEncryption 8d:75:a1:e9:e6:18:e6:c2:a9:2a:61:fb:85:1d:a1:21:36:aa: 36:4f:8b:2b:25:ac:7a:24:68:08:d9:3a:87:2a:00:ba:6f:7e: 8d:95:0a:ae:94:5a:67:fd:97:c3:04:93:f7:46:9c:22:8d:35: 36:8b:a3:23:8e:99:38:3d:12:dd:51:49:9f:fc:c9:3d:3d:f0: 3e:77:e0:e6:b8:b1:09:1e:e7:49:bd:0b:8b:d6:31:6d:a9:7e: c3:5c:98:0c:31:94:6c:65:d5:93:7d:ba:a9:6d:96:42:2b:9c: 9c:ec:10:d1:bf:11:6d:fb:85:9e:d1:ed:a4:14:76:08:ca:f8: 87:ea:a4:00:ba:9c:71:ae:df:16:09:8e:f6:cb:8e:df:c6:19: 32:aa:03:60:2a:95:cf:65:2f:33:6f:a4:76:d8:62:8b:09:0d: 36:66:fe:b0:50:9a:b2:57:fd:86:49:24:ca:32:96:b5:db:74: d6:86:1f:d0:50:69:31:14:47:fd:54:e4:5c:60:83:e5:99:1a: 75:99:38:65:8e:ff:fa:c5:35:ce:73:bb:b5:6c:f2:ce:8c:3f: 9c:28:d3:c5:09:93:d5:ba:f5:1a:80:b1:c6:73:3f:f1:21:6e: 5f:f4:00:cc:0a:40:eb:03:8d:9e:ff:66:f0:b6:76:e4:ec:25: 26:b8:9a:91 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgISAZt8fvMLt1uGIgI3wkP4RS6/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWM3ZWFlNjQ5ZDk1NDdiMGFkMGFiMDA3YWI0ZThhNDhkZWQ0ZDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstARm5FsCGPoKbtyItTTUPyE7y6C 2zKs6vK0Z2nnmk5DA+RO/I7mI0CQt1jBYfpkVKg3gyiK1t3CUKbpSo2I20+zEeeg i5EOfK+DPgaF/oHilpEC9+9+Mh+Pjby/IM4JL2x1dLTDm7RQCr3FtjN8ic9mRmLC iRkIVh6SMQ4ENJcAz4+l35r+trZ0SGbRcq09fgCNbi1kWEThTVxhPjhhfK27cIZn xiDT71b7Z08IxDvnUotibDr6s53jcxreEzqrC6kXt6ZLG4xFOcSsFvp6fxXIfSHM /5XjKC55GICaZkvzP1pmNxHLJzTBzexBsa8HJHwa7WQFkhbkK8ewdHNfSwIDAQAB o4IC1DCCAtAwHQYDVR0OBBYEFIrH6uZJ2VR7CtCrAHq06KSN7U1dMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFkLzY3ZGIw Yi0xZDEwLTRjOTctOWFmNi1hYzAxZjBjNTY2MmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWQvNjdkYjBi LTFkMTAtNGM5Ny05YWY2LWFjMDFmMGM1NjYyYi8xL2lzZnE1a25aVkhzSzBLc0Fl clRvcEkzdFRWMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFMGCCsGAQUF BwEHAQH/BEQwQjAqBAIAATAkAwQCLQoMAwQCLQ9cAwQDQlGQAwQCuadwAwQCuefA AwQCwjoYMBQEAgACMA4DBQMqCxoAAwUDKg4mgDAaBggrBgEFBQcBCAEB/wQLMAmg BzAFAgMDKM4wDQYJKoZIhvcNAQELBQADggEBAI11oenmGObCqSph+4UdoSE2qjZP iyslrHokaAjZOocqALpvfo2VCq6UWmf9l8MEk/dGnCKNNTaLoyOOmTg9Et1RSZ/8 yT098D534Oa4sQke50m9C4vWMW2pfsNcmAwxlGxl1ZN9uqltlkIrnJzsENG/EW37 hZ7R7aQUdgjK+IfqpAC6nHGu3xYJjvbLjt/GGTKqA2Aqlc9lLzNvpHbYYosJDTZm /rBQmrJX/YZJJMoylrXbdNaGH9BQaTEUR/1U5Fxgg+WZGnWZOGWO//rFNc5zu7Vs 8s6MP5wo08UJk9W69RqAscZzP/Ehbl/0AMwKQOsDjZ7/ZvC2duTsJSa4mpE= -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:32 2026 by rpki-client