This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer File: lJQumzXZGQbREkXXO9WM3Y7KSdE.cer (raw, json) Hash identifier: xPBdj0zF/pj+7ZMt0YL4Dnz8qxj6EIRXbAWqFlK9B6I= Subject key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCB469FF5067CEF90013A1527C4156A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:20:32 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 47469 IP: 194.50.45.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:46:9f:f5:06:7c:ef:90:01:3a:15:27:c4:15:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:29:c3:0b:24:88:d2:bd:01:0b:e0:81:4b:21: 07:ec:5c:07:be:76:5b:5b:7a:5f:6e:35:90:d0:3a: 65:09:40:17:5a:0c:1c:d9:72:a3:99:a0:f6:74:f4: 60:e5:f7:d3:f5:6d:21:3e:ba:ab:51:17:73:e4:ec: 6c:d9:78:59:9f:b2:79:fd:83:76:a8:74:8f:2c:a4: d8:7d:cc:b4:aa:2f:57:5d:92:52:04:b0:0b:c1:be: 5f:29:01:2c:f3:7f:8f:8a:7a:e2:19:b5:3d:89:f5: f1:72:00:5d:19:26:9e:34:a8:7d:f9:98:76:a6:a8: 75:79:15:38:7d:59:7c:b4:88:48:28:e5:e7:2d:ba: a9:80:82:71:db:88:33:54:52:f3:3c:b4:00:12:3f: d3:6f:65:d6:1d:ff:bf:85:8b:ce:9c:b1:35:a4:9a: b9:1a:34:6f:cf:fd:2b:ce:49:03:8a:aa:78:af:e5: 97:24:f3:90:b3:43:8a:06:2e:1e:71:06:06:ab:1b: 7f:8a:f3:42:63:8a:da:77:62:b6:6c:9f:c2:24:f3: c2:16:11:51:92:5e:b9:46:de:0a:5d:49:61:6c:e4: fc:d7:29:0d:6c:47:a5:fd:32:39:e6:0d:58:99:f1: b0:77:2d:ae:82:f5:4c:02:65:b3:b5:17:b6:d6:c7: ba:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.50.45.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 47469 Signature Algorithm: sha256WithRSAEncryption 4e:b1:7f:e6:01:40:2b:a5:12:78:76:4f:fe:c8:3f:c8:f5:4e: 89:dc:65:69:2c:a2:f4:d5:8f:8d:df:1a:56:24:15:7f:32:a5: 8e:3f:48:ce:32:df:02:19:63:fa:4e:bb:d6:3f:b7:c4:ec:11: 11:69:44:f4:88:ed:ca:20:b9:98:e3:3e:38:2e:d8:35:9d:3f: 05:3b:09:8d:d2:17:c7:4c:77:15:97:ef:7a:fa:18:c1:e1:e4: 8b:7e:e9:b2:a0:02:fa:30:f8:41:4b:08:6f:bb:57:22:9c:2a: 7d:51:07:ce:1e:4e:a9:95:0b:f3:3d:a6:df:49:98:08:9b:75: ae:43:19:f6:55:2b:7d:2e:30:eb:68:99:2c:07:10:b1:09:08: 5a:1b:28:fb:45:3d:d4:d7:ce:b2:8c:1e:08:3d:08:d4:c1:91: 7d:28:6d:09:35:6f:23:5b:1d:43:45:bc:eb:82:be:56:0c:f6: 6a:62:53:c8:7f:87:3d:1b:fd:b6:22:ba:ac:ac:33:a8:75:f2: ad:03:64:a4:07:9d:94:71:0c:5e:14:43:d1:64:a4:dd:23:60: 5a:33:79:34:f2:f0:cd:57:a5:19:91:32:7d:4d:75:e8:15:44: 0d:97:d5:63:11:92:be:57:78:ee:eb:02:6a:f3:89:08:68:9a: b4:bf:1d:26 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9y0af9QZ875ABOhUnxBVqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDk0MmU5YjM1ZDkxOTA2ZDExMjQ1ZDczYmQ1OGNkZDhlY2E0OWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSnDCySI0r0BC+CBSyEH7FwHvnZb W3pfbjWQ0DplCUAXWgwc2XKjmaD2dPRg5ffT9W0hPrqrURdz5Oxs2XhZn7J5/YN2 qHSPLKTYfcy0qi9XXZJSBLALwb5fKQEs83+PinriGbU9ifXxcgBdGSaeNKh9+Zh2 pqh1eRU4fVl8tIhIKOXnLbqpgIJx24gzVFLzPLQAEj/Tb2XWHf+/hYvOnLE1pJq5 GjRvz/0rzkkDiqp4r+WXJPOQs0OKBi4ecQYGqxt/ivNCY4rad2K2bJ/CJPPCFhFR kl65Rt4KXUlhbOT81ykNbEel/TI55g1YmfGwdy2ugvVMAmWztRe21se6FwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFJSULps12RkG0RJF1zvVjN2OyknRMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QxL2M2MDk4 MC1hMWRlLTQzOTAtYTBhMy0zMmMyMGNhZjA4ZWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDEvYzYwOTgw LWExZGUtNDM5MC1hMGEzLTMyYzIwY2FmMDhlZC8xL2xKUXVtelhaR1FiUkVrWFhP OVdNM1k3S1NkRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwjItMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwC5bTANBgkqhkiG9w0BAQsFAAOCAQEATrF/5gFAK6USeHZP/sg/yPVOidxlaSyi 9NWPjd8aViQVfzKljj9IzjLfAhlj+k671j+3xOwREWlE9IjtyiC5mOM+OC7YNZ0/ BTsJjdIXx0x3FZfvevoYweHki37psqAC+jD4QUsIb7tXIpwqfVEHzh5OqZUL8z2m 30mYCJt1rkMZ9lUrfS4w62iZLAcQsQkIWhso+0U91NfOsoweCD0I1MGRfShtCTVv I1sdQ0W864K+Vgz2amJTyH+HPRv9tiK6rKwzqHXyrQNkpAedlHEMXhRD0WSk3SNg WjN5NPLwzVelGZEyfU116BVEDZfVYxGSvld47usCavOJCGiatL8dJg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:46 2026 by rpki-client