This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer File: lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer (raw, json) Hash identifier: rlKZ1KPGVvNcKpYTeiDT1PFmWt6skhaIseo7XTwkRdQ= Subject key identifier: 96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED0B31B7138617E3E0C8DFABF3CE8C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/lnc-nMl0MBp4t-5tmUUo8fiC5G8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 48294 IP: 91.194.46.0/23 IP: 94.126.208.0/21 IP: 185.38.244.0/22 IP: 185.77.56.0/22 IP: 185.81.232.0/22 IP: 185.81.244.0/22 IP: 185.81.252.0/22 IP: 185.126.248.0/22 IP: 188.164.224.0/21 IP: 194.150.200.0/23 IP: 2a02:5d80::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:0b:31:b7:13:86:17:e3:e0:c8:df:ab:f3:ce:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96773e9cc974301a78b7ee6d994528f1f882e46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bb:40:09:ef:c9:21:e0:f1:1d:42:b6:3a:cd: 8a:aa:fe:86:a8:38:b4:6d:dc:55:cd:ae:28:c8:00: 3f:83:61:fb:ad:f8:70:57:04:c2:37:d8:9a:23:53: 2d:6a:30:9c:51:18:67:81:c5:fb:d6:35:81:51:d8: 8d:8e:ce:92:5a:4a:4d:84:63:59:e0:78:9b:6e:aa: a7:da:37:df:20:a1:38:ff:be:a3:36:00:6b:1d:ee: e2:fd:dd:a4:0e:c7:4b:38:96:b0:46:8a:c7:01:57: ea:c2:8c:f8:f3:fc:5d:67:47:ef:bf:df:bd:6b:81: 25:3c:4c:9e:95:76:20:92:28:de:53:24:47:00:36: ee:e8:c9:95:94:79:53:1e:79:95:69:7e:44:f7:ab: e5:f5:a0:94:fc:5e:58:0b:e3:00:d7:b2:b6:5c:8d: 7c:74:25:7d:25:79:a9:0b:d5:22:8e:1f:be:51:c4: dd:e3:e4:18:ac:1b:73:56:fd:75:ad:f2:ef:e4:57: bb:49:b9:7e:11:08:34:a3:a3:47:42:ca:d2:42:f2: 97:ac:d3:4c:9c:96:40:ce:cb:b4:90:54:29:95:e3: e9:cf:69:77:ec:00:2e:40:33:b9:90:e6:43:a8:c5: b0:5f:d9:e2:e7:51:83:91:32:9c:6a:fc:a9:bf:48: 53:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/lnc-nMl0MBp4t-5tmUUo8fiC5G8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.194.46.0/23 94.126.208.0/21 185.38.244.0/22 185.77.56.0/22 185.81.232.0/22 185.81.244.0/22 185.81.252.0/22 185.126.248.0/22 188.164.224.0/21 194.150.200.0/23 IPv6: 2a02:5d80::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 48294 Signature Algorithm: sha256WithRSAEncryption 2a:7a:3c:ed:1b:32:33:75:11:92:00:90:26:9f:bd:1e:c1:e4: 23:cb:3c:5f:50:46:d7:8d:3e:42:09:fa:1a:a1:77:07:2f:41: 58:63:5c:b1:a7:70:a2:1c:d5:26:15:1d:c1:33:f9:72:c9:35: 24:80:e7:e6:a6:8a:6d:d3:db:d8:49:78:68:d6:fd:5b:71:b9: 6a:71:5c:c3:54:25:9f:1c:a8:43:01:af:b8:9b:44:49:84:a2: 76:24:ac:d9:9f:c3:86:24:dc:e1:fc:3e:51:b1:b5:28:1f:21: 06:de:05:8e:78:3b:84:f8:51:f2:bb:02:37:66:5c:e4:23:69: b3:13:eb:91:9d:b9:ba:f2:89:17:60:75:6a:e9:f7:ef:b7:35: 68:3e:3b:a2:b3:4c:95:54:6a:c9:ae:4f:81:e2:4e:aa:97:f1: b7:a7:bd:55:2d:e8:c4:a1:d1:ab:9d:a3:e6:e3:2c:0f:84:a1: c2:36:32:f9:ff:09:57:ce:68:3a:5e:60:61:0c:5f:43:ca:0c: 62:8e:8c:a5:da:cf:a9:6b:4c:b1:c4:f5:80:93:11:b9:1b:da: 92:25:1d:5f:80:94:5f:ff:aa:c0:9f:bf:d5:95:1a:70:84:f3: b8:f7:6e:b6:b7:97:29:80:af:47:bc:a1:09:fb:77:38:1a:83: 2a:4d:fc:2e -----BEGIN CERTIFICATE----- MIIF2TCCBMGgAwIBAgISAZt87QsxtxOGF+PgyN+r886MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Njc3M2U5Y2M5NzQzMDFhNzhiN2VlNmQ5OTQ1MjhmMWY4ODJlNDZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0LtACe/JIeDxHUK2Os2Kqv6GqDi0 bdxVza4oyAA/g2H7rfhwVwTCN9iaI1MtajCcURhngcX71jWBUdiNjs6SWkpNhGNZ 4Hibbqqn2jffIKE4/76jNgBrHe7i/d2kDsdLOJawRorHAVfqwoz48/xdZ0fvv9+9 a4ElPEyelXYgkijeUyRHADbu6MmVlHlTHnmVaX5E96vl9aCU/F5YC+MA17K2XI18 dCV9JXmpC9Uijh++UcTd4+QYrBtzVv11rfLv5Fe7Sbl+EQg0o6NHQsrSQvKXrNNM nJZAzsu0kFQplePpz2l37AAuQDO5kOZDqMWwX9ni51GDkTKcavypv0hTMwIDAQAB o4IC5TCCAuEwHQYDVR0OBBYEFJZ3PpzJdDAaeLfubZlFKPH4guRvMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI5LzkxMjBj Yi0wYjA2LTQ4NjEtYjY1Ny03NTc4Mzg2NzA5NDgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkvOTEyMGNi LTBiMDYtNDg2MS1iNjU3LTc1NzgzODY3MDk0OC8xL2xuYy1uTWwwTUJwNHQtNXRt VVVvOGZpQzVHOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGQGCCsGAQUF BwEHAQH/BFUwUzBCBAIAATA8AwQBW8IuAwQDXn7QAwQCuSb0AwQCuU04AwQCuVHo AwQCuVH0AwQCuVH8AwQCuX74AwQDvKTgAwQBwpbIMA0EAgACMAcDBQMqAl2AMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwC8pjANBgkqhkiG9w0BAQsFAAOCAQEAKno8 7RsyM3URkgCQJp+9HsHkI8s8X1BG140+Qgn6GqF3By9BWGNcsadwohzVJhUdwTP5 csk1JIDn5qaKbdPb2El4aNb9W3G5anFcw1QlnxyoQwGvuJtESYSidiSs2Z/DhiTc 4fw+UbG1KB8hBt4Fjng7hPhR8rsCN2Zc5CNpsxPrkZ25uvKJF2B1aun377c1aD47 orNMlVRqya5PgeJOqpfxt6e9VS3oxKHRq52j5uMsD4ShwjYy+f8JV85oOl5gYQxf Q8oMYo6MpdrPqWtMscT1gJMRuRvakiUdX4CUX/+qwJ+/1ZUacITzuPdutreXKYCv R7yhCft3OBqDKk38Lg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:12 2026 by rpki-client