This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/l49B4pAoVHPCoeK-f2b2NFLtRkQ.cer File: l49B4pAoVHPCoeK-f2b2NFLtRkQ.cer (raw, json) Hash identifier: o2jH3AqwZqmNvuh8jcW9gL26as2fKzUAbX6wNWeZRwY= Subject key identifier: 97:8F:41:E2:90:28:54:73:C2:A1:E2:BE:7F:66:F6:34:52:ED:46:44 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F8377AF461D87B5901AA262FDDDB11E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/79/f1480f-76e9-4c8e-ac32-3577b1efdc78/1/l49B4pAoVHPCoeK-f2b2NFLtRkQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/79/f1480f-76e9-4c8e-ac32-3577b1efdc78/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:21:20 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 39452 IP: 89.150.0.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:77:af:46:1d:87:b5:90:1a:a2:62:fd:dd:b1:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:21:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=978f41e290285473c2a1e2be7f66f63452ed4644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:91:fc:5b:14:65:cb:d2:73:65:e5:ca:e0:6b: e8:e1:a4:32:5c:d0:54:c1:27:cf:5e:1e:11:98:10: a0:99:6d:9e:84:ec:92:20:d1:c9:7a:d8:eb:b7:90: db:73:50:b1:4d:3b:29:4e:6a:48:fc:3a:96:5f:7f: 85:8d:0d:8f:ca:67:02:c0:df:44:ec:37:bf:bd:3e: 61:8c:1f:80:e4:2b:ac:3f:83:a4:64:ee:c2:08:c7: 4d:cf:00:45:68:20:2e:0e:68:87:89:d3:0c:66:47: d8:a1:ab:76:56:6e:bb:e3:3a:3b:65:cc:3e:a4:f8: ac:64:6d:81:a4:01:97:82:ed:54:f7:81:1f:6e:8c: 87:cd:e7:2f:07:66:6c:91:a8:5b:7d:d1:c7:70:88: e5:74:1d:db:aa:ce:c3:bf:35:17:f1:58:a4:1d:5e: 77:00:be:d2:5d:e8:04:9a:8b:c8:50:82:a3:17:f0: 0c:36:ab:96:78:bc:0d:f1:6d:82:f0:1b:44:20:f1: 30:54:e9:06:bc:22:ff:51:10:96:8a:8d:6c:2e:93: c5:41:7e:b9:31:16:58:6a:b6:e5:f9:8d:98:23:68: 02:0b:a1:9c:fb:13:e6:2c:28:a5:e1:ab:31:d3:ed: 26:6e:83:bc:6c:ff:0f:06:5c:f5:47:fe:fb:c3:2f: 0f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:8F:41:E2:90:28:54:73:C2:A1:E2:BE:7F:66:F6:34:52:ED:46:44 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/f1480f-76e9-4c8e-ac32-3577b1efdc78/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/f1480f-76e9-4c8e-ac32-3577b1efdc78/1/l49B4pAoVHPCoeK-f2b2NFLtRkQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.150.0.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 39452 Signature Algorithm: sha256WithRSAEncryption 09:01:6b:fa:cf:e9:23:43:5f:7c:ff:75:fc:25:3f:a1:98:f3: 47:d1:e0:97:d0:2b:1b:a2:01:06:9e:cf:d0:90:0a:06:b9:40: 88:08:b8:50:53:e6:37:45:33:b9:08:c1:e4:4f:d4:81:87:a9: 96:04:a7:a6:98:24:3f:71:a6:6f:2b:9d:32:82:65:bb:fd:a5: 4d:48:43:bd:b4:32:bd:fb:4e:48:4b:e2:72:3e:4e:6f:a3:16: cb:4c:2d:be:c4:ae:e5:04:b1:93:ae:9c:be:7d:5f:33:04:85: c7:d2:0f:e5:9f:77:1a:29:2f:c7:4b:2b:3a:4a:75:48:8c:c5: ea:c7:5f:b9:56:83:16:94:a3:6f:79:f8:9f:ac:62:4c:40:25: 73:9c:c8:c2:68:5b:9c:12:ab:cc:bc:df:aa:91:e0:83:37:44: 79:a7:a6:0a:8b:65:12:7c:d5:e7:f3:40:2a:7f:b7:75:80:bb: a3:4c:2a:0a:c6:78:31:d8:63:7f:3c:74:e7:37:59:e6:24:bd: 8a:75:99:a3:04:dd:ab:39:27:19:d8:3f:18:8f:b9:e4:fd:83: 77:77:6e:30:55:fe:82:5a:61:24:c3:43:97:d6:3d:f6:9a:52: 00:8f:8a:b3:18:bb:6a:fa:ca:da:91:5d:6b:61:d3:df:61:1f: 5b:99:6d:ea -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt/g3evRh2HtZAaomL93bEeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NzhmNDFlMjkwMjg1NDczYzJhMWUyYmU3ZjY2ZjYzNDUyZWQ0NjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ZH8WxRly9JzZeXK4Gvo4aQyXNBU wSfPXh4RmBCgmW2ehOySINHJetjrt5Dbc1CxTTspTmpI/DqWX3+FjQ2PymcCwN9E 7De/vT5hjB+A5CusP4OkZO7CCMdNzwBFaCAuDmiHidMMZkfYoat2Vm674zo7Zcw+ pPisZG2BpAGXgu1U94EfboyHzecvB2ZskahbfdHHcIjldB3bqs7DvzUX8VikHV53 AL7SXegEmovIUIKjF/AMNquWeLwN8W2C8BtEIPEwVOkGvCL/URCWio1sLpPFQX65 MRZYarbl+Y2YI2gCC6Gc+xPmLCil4asx0+0mboO8bP8PBlz1R/77wy8P2wIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFJePQeKQKFRzwqHivn9m9jRS7UZEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc5L2YxNDgw Zi03NmU5LTRjOGUtYWMzMi0zNTc3YjFlZmRjNzgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzkvZjE0ODBm LTc2ZTktNGM4ZS1hYzMyLTM1NzdiMWVmZGM3OC8xL2w0OUI0cEFvVkhQQ29lSy1m MmIyTkZMdFJrUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBWZYAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCaHDANBgkqhkiG9w0BAQsFAAOCAQEACQFr+s/pI0NffP91/CU/oZjzR9Hgl9Ar G6IBBp7P0JAKBrlAiAi4UFPmN0UzuQjB5E/UgYeplgSnppgkP3GmbyudMoJlu/2l TUhDvbQyvftOSEvicj5Ob6MWy0wtvsSu5QSxk66cvn1fMwSFx9IP5Z93Gikvx0sr Okp1SIzF6sdfuVaDFpSjb3n4n6xiTEAlc5zIwmhbnBKrzLzfqpHggzdEeaemCotl EnzV5/NAKn+3dYC7o0wqCsZ4Mdhjfzx05zdZ5iS9inWZowTdqzknGdg/GI+55P2D d3duMFX+glphJMNDl9Y99ppSAI+Ksxi7avrK2pFda2HT32EfW5lt6g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:45 2026 by rpki-client