This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer File: lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer (raw, json) Hash identifier: pTpuOp4qoID4QU8gJ+jIfwKtAYHrm6N/YA5DV44FAyw= Subject key identifier: 96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5ADD6FE1B29D5719EF35353DA0355C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210466 IP: 2001:67c:2b64::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:dd:6f:e1:b2:9d:57:19:ef:35:35:3d:a0:35:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9665c8110d0dd86a7ebb0938aa32e09d1db122f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4d:3a:16:78:cb:40:36:b3:ec:c0:fb:d7:66: bd:3e:95:55:fc:7c:56:98:41:43:25:e4:1f:bc:71: a6:6c:9f:97:b3:ed:ec:7e:60:2a:bb:cd:93:41:2a: 54:33:ab:4d:29:de:9a:45:0e:40:a9:01:35:a7:fc: 4d:f4:1a:ee:c5:21:29:49:9f:39:db:fb:88:91:1f: 3b:38:e6:99:04:2e:2a:67:56:6f:c7:95:ad:ae:29: e5:0a:3d:30:64:62:49:dd:f7:35:82:e4:4c:78:3d: b6:3c:b9:e9:6f:08:2b:06:c8:11:81:34:9e:22:b6: cc:23:66:ab:fd:0d:a8:3b:3d:39:63:43:c6:c4:b9: 39:82:b3:6a:5d:d5:74:46:33:f6:23:fe:62:64:f2: 20:75:0e:ba:93:49:23:a3:d1:c3:e7:2a:0e:f7:3d: 65:a4:7a:7e:d6:d8:95:94:77:be:66:fb:8e:b1:48: 8d:c1:61:e3:04:5a:47:10:29:c4:5b:68:ef:0c:f6: e7:d6:1f:d2:2a:62:ed:e1:91:ab:25:82:12:d1:67: 25:51:f1:03:7f:01:69:af:95:c1:72:cf:06:10:23: 02:9f:07:5f:e2:78:68:b5:1f:0e:fa:ee:47:10:45: 26:c3:78:24:86:e2:7b:46:16:c6:4e:dd:5f:43:1e: e0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2b64::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210466 Signature Algorithm: sha256WithRSAEncryption 08:01:2b:a7:02:be:11:24:81:e5:fa:24:ae:33:69:c8:bc:dc: e5:f9:a6:ed:49:91:72:78:ea:5c:33:f6:11:7a:20:ae:76:4e: 1f:80:29:0b:fe:a0:ae:47:e8:72:84:bc:76:d6:6c:47:04:4f: 17:fc:1c:63:92:80:a8:60:e2:e3:c6:48:5e:3e:b5:f8:d7:3a: 89:71:e6:d8:28:76:84:50:b2:55:0c:11:40:d3:ee:54:47:1f: 10:d4:10:94:7c:82:6b:58:f2:22:99:cc:6c:4e:6f:58:bd:8b: 88:9c:66:84:b1:ca:71:2c:3e:7d:40:83:7a:27:a3:df:70:ce: 4a:9c:cf:44:5b:2b:18:14:b8:00:e5:af:75:c8:d2:39:76:64: 53:ed:60:13:8b:b8:dc:36:d6:db:3e:6f:56:34:87:b3:b8:1e: 90:2d:1f:c5:80:9d:a2:12:21:8e:94:75:eb:a0:fd:97:24:9b: 2d:eb:ed:c6:00:56:50:bd:6b:af:b8:d1:c2:6e:f4:7c:04:da: 36:e0:c9:b2:66:b5:32:c8:f1:9d:8f:7e:f2:54:a1:11:8b:8c: 32:ec:c0:6a:d2:55:86:61:2f:e6:a6:05:ce:5f:76:e6:76:f6: 74:4d:5c:5b:ff:3f:59:d9:9e:05:2d:83:48:17:97:0a:4c:11: 4a:d6:56:fa -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt6Wt1v4bKdVxnvNTU9oDVcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjY1YzgxMTBkMGRkODZhN2ViYjA5MzhhYTMyZTA5ZDFkYjEyMmY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyE06FnjLQDaz7MD712a9PpVV/HxW mEFDJeQfvHGmbJ+Xs+3sfmAqu82TQSpUM6tNKd6aRQ5AqQE1p/xN9BruxSEpSZ85 2/uIkR87OOaZBC4qZ1Zvx5WtrinlCj0wZGJJ3fc1guRMeD22PLnpbwgrBsgRgTSe IrbMI2ar/Q2oOz05Y0PGxLk5grNqXdV0RjP2I/5iZPIgdQ66k0kjo9HD5yoO9z1l pHp+1tiVlHe+ZvuOsUiNwWHjBFpHECnEW2jvDPbn1h/SKmLt4ZGrJYIS0WclUfED fwFpr5XBcs8GECMCnwdf4nhotR8O+u5HEEUmw3gkhuJ7RhbGTt1fQx7giwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFJZlyBENDdhqfrsJOKoy4J0dsSL2MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdjL2ZhODFm NC02NjAwLTQwNzktOTNjNS00ODk3MjYxYmE0NmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2MvZmE4MWY0 LTY2MDAtNDA3OS05M2M1LTQ4OTcyNjFiYTQ2Yi8xL2xtWElFUTBOMkdwLXV3azRx akxnblIyeEl2WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCtkMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwM2IjANBgkqhkiG9w0BAQsFAAOCAQEACAErpwK+ESSB5fokrjNpyLzc5fmm 7UmRcnjqXDP2EXogrnZOH4ApC/6grkfocoS8dtZsRwRPF/wcY5KAqGDi48ZIXj61 +Nc6iXHm2Ch2hFCyVQwRQNPuVEcfENQQlHyCa1jyIpnMbE5vWL2LiJxmhLHKcSw+ fUCDeiej33DOSpzPRFsrGBS4AOWvdcjSOXZkU+1gE4u43DbW2z5vVjSHs7gekC0f xYCdohIhjpR166D9lySbLevtxgBWUL1rr7jRwm70fATaNuDJsma1MsjxnY9+8lSh EYuMMuzAatJVhmEv5qYFzl925nb2dE1cW/8/WdmeBS2DSBeXCkwRStZW+g== -----END CERTIFICATE-----Generated at Tue Jan 20 07:36:03 2026 by rpki-client