This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jWTkPHW9xRHVJPDIXQCcunaVYUQ.cer File: jWTkPHW9xRHVJPDIXQCcunaVYUQ.cer (raw, json) Hash identifier: uBmk66bFmUOXrowiq08MBi+VH4QekEmvU2vQRzsOJq8= Subject key identifier: 8D:64:E4:3C:75:BD:C5:11:D5:24:F0:C8:5D:00:9C:BA:76:95:61:44 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79106886855289F0FB5CAA2A612AEAAD Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/jWTkPHW9xRHVJPDIXQCcunaVYUQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:17:57 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 61349 IP: 45.153.0.0/22 IP: 91.199.236.0/24 IP: 91.205.212.0/22 IP: 185.29.200.0/22 IP: 185.173.12.0/22 IP: 193.178.196.0/22 IP: 2a04:4340::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:68:86:85:52:89:f0:fb:5c:aa:2a:61:2a:ea:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d64e43c75bdc511d524f0c85d009cba76956144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:78:ca:08:cc:13:3c:d7:37:cb:21:dc:db:60: 8d:b3:ee:05:c3:42:8b:2a:26:38:d9:b9:10:3c:68: 99:24:48:73:28:7e:23:df:e2:94:73:51:4f:d2:c2: 25:bd:a2:eb:88:79:e8:24:56:65:7d:82:85:4c:ca: ae:79:ce:2e:10:3c:cd:5b:ba:04:b0:bd:71:cd:18: f6:6a:e2:81:4f:7c:da:a6:0b:ba:ba:1d:82:e0:54: 14:99:0e:fc:26:f8:a6:04:15:ba:7c:18:e8:6a:e7: 85:a1:6d:ef:d7:1e:57:c6:d8:c8:c9:19:f0:49:f8: 2a:5a:8d:b3:97:17:19:42:f0:a5:02:bf:09:35:0f: 41:2c:19:84:f0:72:b2:be:95:1c:c5:ec:d2:85:16: 78:08:23:7f:d1:35:ec:a5:56:04:b9:0d:84:7a:2e: 83:8a:33:3a:c2:ef:e3:27:df:1f:92:f8:7b:a9:13: b2:18:1e:8d:21:df:ce:6c:20:ee:6e:3f:47:0a:34: fa:61:ed:28:c3:3a:16:7d:d1:14:c7:aa:f7:49:b5: 60:e2:3e:2b:0f:f3:ea:1f:77:95:f1:6d:c5:2e:a0: ef:a7:c8:c4:f4:7b:0f:f2:3f:08:8b:c5:08:19:bc: e5:f0:d9:c6:fb:6c:31:90:73:3d:b8:ee:d3:c1:94: 4a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:64:E4:3C:75:BD:C5:11:D5:24:F0:C8:5D:00:9C:BA:76:95:61:44 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/jWTkPHW9xRHVJPDIXQCcunaVYUQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.153.0.0/22 91.199.236.0/24 91.205.212.0/22 185.29.200.0/22 185.173.12.0/22 193.178.196.0/22 IPv6: 2a04:4340::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 61349 Signature Algorithm: sha256WithRSAEncryption 6c:61:67:fe:76:2c:ae:1b:3f:5e:01:ed:93:bb:d8:67:b3:7a: c2:e9:0d:5d:19:9f:8d:65:c0:c4:70:ea:d5:03:22:de:d9:9a: a1:71:75:c9:7e:7a:26:11:f5:56:e6:ed:17:90:ab:43:ef:ee: 80:c8:99:37:88:99:d4:85:cb:93:4c:56:bc:18:36:bd:cc:2c: 30:26:87:69:2a:c5:28:8d:9d:03:ca:66:10:77:fb:67:58:7e: 3b:62:bf:63:5c:c7:5a:7d:e7:39:df:ff:3e:27:8c:f6:8e:14: a9:45:0d:89:a8:a3:e6:ea:c2:58:d1:e0:e8:e9:51:27:46:73: 72:1f:bc:12:ba:8d:12:07:8a:05:74:7b:17:ac:5b:a3:1d:d9: d0:d5:77:3f:a6:8f:e4:9a:97:8b:28:8a:b3:4f:d4:03:d6:d3: 66:03:2a:bb:f5:ae:69:35:a0:9d:8c:e9:bc:a8:f2:5b:ee:e2: 03:5c:64:43:00:05:cc:d8:80:6c:8f:3d:e2:88:8a:d8:5c:76: f8:f4:65:95:16:2b:e8:62:36:27:83:60:f7:95:b0:47:8f:8b: 02:02:0a:46:6a:c7:70:5a:da:94:2f:8f:71:69:59:6e:a1:0f: 3a:3d:31:70:c3:82:71:f6:2d:2a:0a:19:f1:a7:30:7b:b8:0d: 60:b6:be:f8 -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgISAZt5EGiGhVKJ8PtcqiphKuqtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDY0ZTQzYzc1YmRjNTExZDUyNGYwYzg1ZDAwOWNiYTc2OTU2MTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+HjKCMwTPNc3yyHc22CNs+4Fw0KL KiY42bkQPGiZJEhzKH4j3+KUc1FP0sIlvaLriHnoJFZlfYKFTMquec4uEDzNW7oE sL1xzRj2auKBT3zapgu6uh2C4FQUmQ78JvimBBW6fBjoaueFoW3v1x5XxtjIyRnw SfgqWo2zlxcZQvClAr8JNQ9BLBmE8HKyvpUcxezShRZ4CCN/0TXspVYEuQ2Eei6D ijM6wu/jJ98fkvh7qROyGB6NId/ObCDubj9HCjT6Ye0owzoWfdEUx6r3SbVg4j4r D/PqH3eV8W3FLqDvp8jE9HsP8j8Ii8UIGbzl8NnG+2wxkHM9uO7TwZRK0wIDAQAB o4ICzTCCAskwHQYDVR0OBBYEFI1k5Dx1vcUR1STwyF0AnLp2lWFEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU5LzZmOWIw OS1hNTllLTRmOTAtODdjNy03MjQ0ODM1MmI4MDcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkvNmY5YjA5 LWE1OWUtNGY5MC04N2M3LTcyNDQ4MzUyYjgwNy8xL2pXVGtQSFc5eFJIVkpQRElY UUNjdW5hVllVUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEwGCCsGAQUF BwEHAQH/BD0wOzAqBAIAATAkAwQCLZkAAwQAW8fsAwQCW83UAwQCuR3IAwQCua0M AwQCwbLEMA0EAgACMAcDBQMqBENAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDv pTANBgkqhkiG9w0BAQsFAAOCAQEAbGFn/nYsrhs/XgHtk7vYZ7N6wukNXRmfjWXA xHDq1QMi3tmaoXF1yX56JhH1VubtF5CrQ+/ugMiZN4iZ1IXLk0xWvBg2vcwsMCaH aSrFKI2dA8pmEHf7Z1h+O2K/Y1zHWn3nOd//PieM9o4UqUUNiaij5urCWNHg6OlR J0Zzch+8ErqNEgeKBXR7F6xbox3Z0NV3P6aP5JqXiyiKs0/UA9bTZgMqu/WuaTWg nYzpvKjyW+7iA1xkQwAFzNiAbI894oiK2Fx2+PRllRYr6GI2J4Ng95WwR4+LAgIK RmrHcFralC+PcWlZbqEPOj0xcMOCcfYtKgoZ8acwe7gNYLa++A== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:09 2026 by rpki-client