This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lWhmVi2fJYMewKzoqdjNDllNcfw.cer File: lWhmVi2fJYMewKzoqdjNDllNcfw.cer (raw, json) Hash identifier: uW5UUqzB/FBdzCynoyP+1swhiB4RbtwMTmvJDMdNY+4= Subject key identifier: 95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78355C3DF0B54338C95620A50907C6E4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:41 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 59807 IP: 164.10.0.0/16 IP: 185.181.88.0/22 IP: 2a03:2520::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:5c:3d:f0:b5:43:38:c9:56:20:a5:09:07:c6:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=956866562d9f25831ec0ace8a9d8cd0e594d71fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:08:cd:e7:f2:3e:fc:98:bf:bc:ba:d6:2b:c8: 9c:fb:ca:86:9c:4a:80:f9:f5:43:6c:79:58:80:d3: 9b:16:66:50:ee:ac:26:71:a9:de:a8:91:a8:59:d0: 2f:32:8a:f3:e7:9e:46:e3:a2:37:46:5a:cd:5f:28: c6:57:08:af:ea:f3:ab:51:cc:a1:33:3b:fb:cb:3c: df:83:d9:34:ac:05:f7:32:d2:86:11:4e:25:d5:25: 6e:e1:93:17:1e:ca:21:32:99:f6:6c:7e:71:65:ff: cb:d5:c4:ef:c8:c5:2f:3e:29:f0:e3:f8:1d:bc:97: 00:25:76:03:17:b6:6f:a5:99:88:b7:51:8a:d8:2e: f4:fe:fd:9d:e9:40:39:64:19:2c:a4:57:79:5f:35: 18:c1:47:25:e9:20:fa:f0:bc:f4:7d:45:3b:9c:57: 82:94:4d:8a:0a:6e:ec:f0:4e:02:f2:2b:97:41:7c: 9e:54:c1:f1:4e:3d:b1:a9:ff:97:0e:e3:23:bc:87: 23:b7:49:65:d1:7c:5d:a1:01:ff:56:3a:1e:0b:c1: 82:b7:38:00:d7:f7:2a:71:75:70:93:6d:75:1c:fc: 6e:f3:2d:25:7a:dc:b3:a7:cc:cd:8c:30:63:6d:bb: dc:38:d5:a2:2d:8f:11:aa:2d:cc:1e:81:25:90:65: 7a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.10.0.0/16 185.181.88.0/22 IPv6: 2a03:2520::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 59807 Signature Algorithm: sha256WithRSAEncryption 5a:ad:58:a1:ff:6e:96:9a:fb:ce:5f:d2:97:02:95:73:9d:dd: ac:39:98:90:d7:a9:7d:e3:d0:b3:a1:73:ab:a9:7f:91:05:50: f1:ec:2e:c0:cf:4f:33:da:19:b0:4a:a7:66:6b:2e:fc:ce:4a: ab:b2:8f:56:27:45:b9:b4:66:fc:38:95:ef:06:1c:41:1b:f9: 05:fd:44:e8:b9:d5:91:16:77:4c:bf:5b:4e:d3:1b:3a:aa:e6: fe:2b:64:2a:89:15:f5:53:7e:fa:32:be:f7:32:62:ce:87:73: 43:10:c6:7e:cd:70:dc:2d:a2:56:77:fc:f2:65:4d:61:b3:dc: c1:62:2c:dd:89:af:22:2c:d2:c6:26:68:f0:c3:19:28:a1:8e: 46:c1:ca:54:a6:05:c0:cf:d3:8b:1e:60:db:f3:3e:e9:a3:61: bf:c7:3c:ee:25:36:5a:62:a7:24:91:db:8b:c2:54:fe:5c:49: 11:57:41:a7:d8:30:d4:83:fe:43:07:52:b2:7d:88:44:60:c9: b2:cf:73:75:db:7e:d0:7c:86:b6:50:bd:99:cb:5a:85:f6:fb: 39:34:c2:4c:44:c2:b1:5d:80:e2:e2:72:6b:6d:b7:b2:9c:11: 2d:c4:7f:9a:f7:8f:5e:a2:2f:dd:75:6d:e5:7e:0c:ce:c2:8c: 13:86:c4:c3 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt4NVw98LVDOMlWIKUJB8bkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTY4NjY1NjJkOWYyNTgzMWVjMGFjZThhOWQ4Y2QwZTU5NGQ3MWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzwjN5/I+/Ji/vLrWK8ic+8qGnEqA +fVDbHlYgNObFmZQ7qwmcaneqJGoWdAvMorz555G46I3RlrNXyjGVwiv6vOrUcyh Mzv7yzzfg9k0rAX3MtKGEU4l1SVu4ZMXHsohMpn2bH5xZf/L1cTvyMUvPinw4/gd vJcAJXYDF7ZvpZmIt1GK2C70/v2d6UA5ZBkspFd5XzUYwUcl6SD68Lz0fUU7nFeC lE2KCm7s8E4C8iuXQXyeVMHxTj2xqf+XDuMjvIcjt0ll0XxdoQH/VjoeC8GCtzgA 1/cqcXVwk211HPxu8y0letyzp8zNjDBjbbvcONWiLY8Rqi3MHoElkGV6QwIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFJVoZlYtnyWDHsCs6KnYzQ5ZTXH8MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JlL2NiMmVl OC04NzgyLTRhZjQtOGY2Yi05ZDdmODZmMGQ0NzcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUvY2IyZWU4 LTg3ODItNGFmNC04ZjZiLTlkN2Y4NmYwZDQ3Ny8xL2xXaG1WaTJmSllNZXdLem9x ZGpORGxsTmNmdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDMGCCsGAQUF BwEHAQH/BCQwIjARBAIAATALAwMApAoDBAK5tVgwDQQCAAIwBwMFACoDJSAwGgYI KwYBBQUHAQgBAf8ECzAJoAcwBQIDAOmfMA0GCSqGSIb3DQEBCwUAA4IBAQBarVih /26WmvvOX9KXApVznd2sOZiQ16l949CzoXOrqX+RBVDx7C7Az08z2hmwSqdmay78 zkqrso9WJ0W5tGb8OJXvBhxBG/kF/UToudWRFndMv1tO0xs6qub+K2QqiRX1U376 Mr73MmLOh3NDEMZ+zXDcLaJWd/zyZU1hs9zBYizdia8iLNLGJmjwwxkooY5GwcpU pgXAz9OLHmDb8z7po2G/xzzuJTZaYqckkduLwlT+XEkRV0Gn2DDUg/5DB1KyfYhE YMmyz3N1237QfIa2UL2Zy1qF9vs5NMJMRMKxXYDi4nJrbbeynBEtxH+a949eoi/d dW3lfgzOwowThsTD -----END CERTIFICATE-----Generated at Tue Jan 20 03:00:32 2026 by rpki-client