This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/knaysJMpLF-nXm4UwqSZrIR-QWs.cer File: knaysJMpLF-nXm4UwqSZrIR-QWs.cer (raw, json) Hash identifier: yrrduSwaaSBRXopaDSBOV7Bm2vD07VMYG3y62NjnOso= Subject key identifier: 92:76:B2:B0:93:29:2C:5F:A7:5E:6E:14:C2:A4:99:AC:84:7E:41:6B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5B66E8BC1233F1A1F3D2F20A972383 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6e/3fa92f-cabd-413b-ae5c-69b733cbc528/1/knaysJMpLF-nXm4UwqSZrIR-QWs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6e/3fa92f-cabd-413b-ae5c-69b733cbc528/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:19:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 25046 IP: 91.90.128.0/20 IP: 194.29.32.0/20 IP: 2001:67c:2840::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:66:e8:bc:12:33:f1:a1:f3:d2:f2:0a:97:23:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9276b2b093292c5fa75e6e14c2a499ac847e416b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e3:32:26:50:33:04:1e:89:3e:53:c9:2e:54: c7:95:8d:86:a9:82:31:25:db:ea:54:5a:8a:f0:92: bd:0b:69:62:93:e8:01:25:5e:0c:6c:b0:47:ef:fc: 7b:f6:15:9b:af:85:73:e6:e8:59:64:6f:68:d5:9c: 1c:67:8e:fc:d8:74:fe:b4:34:13:fd:23:c8:a0:e5: 10:34:b9:d4:26:b3:a5:4e:51:59:28:88:2b:40:5c: b5:a4:b0:24:ae:e5:ee:b9:48:03:c3:88:8e:55:d0: 03:4a:c9:5c:f5:a4:ec:f2:ab:ed:5a:15:d9:d1:f7: b3:dc:e3:f7:ef:38:f1:67:d1:82:56:44:a7:b4:54: 7d:64:da:bc:4f:80:ab:99:77:1f:55:5c:ce:87:5c: ef:6d:b0:16:ad:30:45:8e:3e:0d:f4:10:fb:c2:3a: 8b:e3:18:af:dd:8d:84:d0:60:4e:e5:a8:a3:8a:fd: 3f:ad:ca:24:c8:2d:19:15:d3:d3:62:b0:aa:a6:35: 20:08:78:11:91:10:19:ef:bd:b3:51:c9:1b:bb:5a: df:70:07:ac:e1:99:1e:4c:18:90:22:63:9d:77:01: 6c:04:d8:0d:9c:fd:4e:68:39:3c:52:61:5a:94:1a: 6f:65:a4:05:a5:a5:13:41:bd:ba:de:9c:e7:ad:4e: 80:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:76:B2:B0:93:29:2C:5F:A7:5E:6E:14:C2:A4:99:AC:84:7E:41:6B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3fa92f-cabd-413b-ae5c-69b733cbc528/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3fa92f-cabd-413b-ae5c-69b733cbc528/1/knaysJMpLF-nXm4UwqSZrIR-QWs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.90.128.0/20 194.29.32.0/20 IPv6: 2001:67c:2840::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 25046 Signature Algorithm: sha256WithRSAEncryption 8d:41:fb:80:91:4b:85:38:75:f7:89:d3:ac:28:75:2b:77:e2: cb:ca:55:a1:f3:60:55:50:19:8e:75:c6:2b:c7:ba:b6:cb:02: 0d:dd:f8:4a:6f:99:1a:83:de:fc:0c:8b:ff:04:71:65:f0:c3: 3b:78:9c:45:1d:64:b2:50:b0:ee:32:7c:8e:91:fa:f3:b4:8d: 70:d4:7c:94:e5:50:61:83:50:ee:db:36:d9:62:ae:ec:25:74: 09:0e:dc:60:61:0d:8c:b1:e7:7e:90:31:5b:b6:86:13:94:7e: 6b:79:85:be:46:c4:20:b4:6c:ca:fc:a5:92:99:e9:7d:ba:02: a6:5a:d7:a5:d6:87:a8:05:ce:e6:2d:7a:a9:14:77:44:90:36: 0d:ac:94:1b:8d:65:b6:73:9e:b6:eb:50:fc:ae:5e:b7:fe:57: 7e:6d:c8:5c:b4:00:b1:8d:76:34:53:af:40:24:3f:6b:50:fa: 63:90:ac:20:9d:a0:38:4c:16:80:4c:09:5d:01:4b:51:06:12: ab:fe:75:c1:7c:fd:61:30:6e:b6:8c:3e:2b:9f:12:66:cf:a3: e4:8e:63:10:71:2e:46:d8:d9:7b:a8:8b:e3:2c:f0:e4:a9:72: 73:a4:74:d8:11:32:41:37:d8:61:64:0c:01:72:02:f8:ad:b9: 00:62:c4:2c -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgISAZt6W2bovBIz8aHz0vIKlyODMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Mjc2YjJiMDkzMjkyYzVmYTc1ZTZlMTRjMmE0OTlhYzg0N2U0MTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OMyJlAzBB6JPlPJLlTHlY2GqYIx JdvqVFqK8JK9C2lik+gBJV4MbLBH7/x79hWbr4Vz5uhZZG9o1ZwcZ4782HT+tDQT /SPIoOUQNLnUJrOlTlFZKIgrQFy1pLAkruXuuUgDw4iOVdADSslc9aTs8qvtWhXZ 0fez3OP37zjxZ9GCVkSntFR9ZNq8T4CrmXcfVVzOh1zvbbAWrTBFjj4N9BD7wjqL 4xiv3Y2E0GBO5aijiv0/rcokyC0ZFdPTYrCqpjUgCHgRkRAZ772zUckbu1rfcAes 4ZkeTBiQImOddwFsBNgNnP1OaDk8UmFalBpvZaQFpaUTQb263pznrU6AxwIDAQAB o4ICtjCCArIwHQYDVR0OBBYEFJJ2srCTKSxfp15uFMKkmayEfkFrMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZlLzNmYTky Zi1jYWJkLTQxM2ItYWU1Yy02OWI3MzNjYmM1MjgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmUvM2ZhOTJm LWNhYmQtNDEzYi1hZTVjLTY5YjczM2NiYzUyOC8xL2tuYXlzSk1wTEYtblhtNFV3 cVNacklSLVFXcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF BwEHAQH/BCcwJTASBAIAATAMAwQEW1qAAwQEwh0gMA8EAgACMAkDBwAgAQZ8KEAw GQYIKwYBBQUHAQgBAf8ECjAIoAYwBAICYdYwDQYJKoZIhvcNAQELBQADggEBAI1B +4CRS4U4dfeJ06wodSt34svKVaHzYFVQGY51xivHurbLAg3d+EpvmRqD3vwMi/8E cWXwwzt4nEUdZLJQsO4yfI6R+vO0jXDUfJTlUGGDUO7bNtliruwldAkO3GBhDYyx 536QMVu2hhOUfmt5hb5GxCC0bMr8pZKZ6X26AqZa16XWh6gFzuYteqkUd0SQNg2s lBuNZbZznrbrUPyuXrf+V35tyFy0ALGNdjRTr0AkP2tQ+mOQrCCdoDhMFoBMCV0B S1EGEqv+dcF8/WEwbraMPiufEmbPo+SOYxBxLkbY2Xuoi+Ms8OSpcnOkdNgRMkE3 2GFkDAFyAvituQBixCw= -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:08 2026 by rpki-client