This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer File: kVVkGgex5FW3iSuS2A1gkSORsg0.cer (raw, json) Hash identifier: XNtz1uBqV4TGX4HXJYaIMSvL7dXfedSxzMzBG0EwOGA= Subject key identifier: 91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15D6EAF19591640992A706F45F1ED4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51146 IP: 91.203.156.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:d6:ea:f1:95:91:64:09:92:a7:06:f4:5f:1e:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9155641a07b1e455b7892b92d80d60912391b20d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1b:17:f0:7f:c1:9d:d0:6c:7b:30:0b:ff:98: 80:c2:60:82:29:e7:a7:c3:4d:37:3f:53:06:54:e4: 66:ec:02:b1:de:e1:ff:eb:e7:f0:b7:d0:a1:07:83: 39:0b:28:f6:71:20:a0:9c:8e:aa:95:ef:9b:85:97: 7b:f0:e5:9d:d8:cf:8c:dd:8d:56:18:07:b6:07:6f: 0b:b4:04:ab:b1:20:24:88:50:2b:60:94:7a:d6:ac: 2b:1e:c8:b7:b6:e8:d9:2d:ed:5b:e7:d9:df:62:2d: 81:54:60:08:d2:ee:a7:1d:4e:6f:b2:1d:2f:13:70: 62:ef:8b:e4:c1:54:1d:17:9f:d5:30:53:5b:0d:06: c1:3a:58:8f:77:14:63:c8:61:69:8e:cf:46:45:64: a5:06:47:14:0c:ea:e4:e8:d5:8d:ce:fa:c6:5d:d4: e8:34:59:43:67:2f:5d:85:6b:7a:5b:d0:35:53:4f: fc:64:e8:b1:3c:29:1f:65:98:16:2a:b7:84:0e:69: 23:e0:33:9b:c2:5c:98:ea:b1:d7:4f:de:f5:83:67: ec:fa:42:ae:9d:38:5c:bb:7a:c7:8e:de:dd:e2:ea: 3e:78:fe:a9:d0:47:45:93:dc:e5:b6:a3:68:ad:9c: 04:82:9f:ce:2e:57:ec:4e:fa:26:4e:cb:45:0b:36: 4c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.203.156.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51146 Signature Algorithm: sha256WithRSAEncryption 4d:c8:21:a3:63:ea:dc:cd:92:e9:5b:00:56:27:f7:68:ca:fa: 3f:54:49:6b:3b:9c:18:16:83:7f:2e:cf:57:1b:ff:01:40:5b: a8:5e:99:a0:e5:60:ba:2f:51:d3:94:6e:99:4d:78:d2:ff:7c: 07:a9:c7:de:83:96:83:f4:63:bd:fb:ca:47:99:11:d5:e3:8a: ca:ea:d6:e3:fc:7b:11:c1:0a:54:b6:aa:18:62:8d:79:d6:aa: 62:1c:2a:73:5e:10:38:7a:a3:61:bd:d5:82:e2:a9:10:df:82: 56:a2:f0:c5:27:75:4f:4f:74:d8:c5:d4:be:03:e8:90:20:6a: a0:18:c9:f8:9c:70:88:0f:c0:23:f2:03:8b:3b:4e:1d:34:51: 24:27:0b:d3:3d:62:ed:7b:03:de:98:1d:c2:b8:a7:40:52:8c: 6e:af:e7:2f:06:3e:6c:41:9d:13:26:b6:a9:a8:b0:fd:66:71: 7b:8c:2b:43:6c:79:6d:d5:55:0c:00:8b:d4:20:4f:51:47:44: 41:7d:33:f2:7d:35:f7:af:3a:28:ae:37:b0:9f:4f:f0:79:22: ea:c4:21:01:c4:b7:0a:b7:9d:ad:50:bd:49:be:83:34:77:5d: af:b2:a8:d4:70:18:28:13:2f:4c:f6:29:b2:55:d5:df:22:10: e8:bf:ea:9c -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt/Fdbq8ZWRZAmSpwb0Xx7UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTU1NjQxYTA3YjFlNDU1Yjc4OTJiOTJkODBkNjA5MTIzOTFiMjBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hsX8H/BndBsezAL/5iAwmCCKeen w003P1MGVORm7AKx3uH/6+fwt9ChB4M5Cyj2cSCgnI6qle+bhZd78OWd2M+M3Y1W GAe2B28LtASrsSAkiFArYJR61qwrHsi3tujZLe1b59nfYi2BVGAI0u6nHU5vsh0v E3Bi74vkwVQdF5/VMFNbDQbBOliPdxRjyGFpjs9GRWSlBkcUDOrk6NWNzvrGXdTo NFlDZy9dhWt6W9A1U0/8ZOixPCkfZZgWKreEDmkj4DObwlyY6rHXT971g2fs+kKu nThcu3rHjt7d4uo+eP6p0EdFk9zltqNorZwEgp/OLlfsTvomTstFCzZM+wIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFJFVZBoHseRVt4krktgNYJEjkbINMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ2L2FhNWQ4 Yi0zZWM5LTQxNzYtODNlMS1iY2JmYjIxN2JjOGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYvYWE1ZDhi LTNlYzktNDE3Ni04M2UxLWJjYmZiMjE3YmM4Zi8xL2tWVmtHZ2V4NUZXM2lTdVMy QTFna1NPUnNnMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCW8ucMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDHyjANBgkqhkiG9w0BAQsFAAOCAQEATcgho2Pq3M2S6VsAVif3aMr6P1RJazuc GBaDfy7PVxv/AUBbqF6ZoOVgui9R05RumU140v98B6nH3oOWg/RjvfvKR5kR1eOK yurW4/x7EcEKVLaqGGKNedaqYhwqc14QOHqjYb3VguKpEN+CVqLwxSd1T0902MXU vgPokCBqoBjJ+JxwiA/AI/IDiztOHTRRJCcL0z1i7XsD3pgdwrinQFKMbq/nLwY+ bEGdEya2qaiw/WZxe4wrQ2x5bdVVDACL1CBPUUdEQX0z8n019686KK43sJ9P8Hki 6sQhAcS3CredrVC9Sb6DNHddr7Ko1HAYKBMvTPYpslXV3yIQ6L/qnA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:01 2026 by rpki-client