This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lrN3ZE5BQQHbberQ61ghBj9Yjow.cer File: lrN3ZE5BQQHbberQ61ghBj9Yjow.cer (raw, json) Hash identifier: O1euToAL1YY6SJV+U8tbE1+XmHeCY7kvX7Gevyita6o= Subject key identifier: 96:B3:77:64:4E:41:41:01:DB:6D:EA:D0:EB:58:21:06:3F:58:8E:8C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5C886CD93224EA984283FF374EC5AB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c8/89e4e2-b8ab-4814-93c1-28e6c5ba2eae/1/lrN3ZE5BQQHbberQ61ghBj9Yjow.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c8/89e4e2-b8ab-4814-93c1-28e6c5ba2eae/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:19:34 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 94.231.213.0/24 IP: 2a10:3200::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:88:6c:d9:32:24:ea:98:42:83:ff:37:4e:c5:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96b377644e414101db6dead0eb5821063f588e8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:85:f0:9d:0d:9e:91:77:53:dd:f6:0d:59:03: 69:b3:a2:60:3a:10:aa:f6:8c:db:de:f4:2e:2c:c6: 9a:2c:b4:09:d5:8e:5f:1d:95:1c:1b:f7:19:c5:48: 9e:99:c7:f2:b3:51:dd:cb:26:8a:ac:1d:88:44:5c: 66:0b:71:7b:7d:d2:18:ec:fe:fb:22:2f:e6:c2:04: 59:2b:35:ab:5c:9f:98:a0:d2:8f:eb:c2:a3:db:2c: c9:4c:27:1a:e3:7b:2b:9d:a2:52:bf:b6:e5:08:70: 26:ac:1f:fa:88:c7:c8:0a:f3:0f:ae:a6:0e:e9:f8: c7:27:10:60:53:8a:c8:13:53:2e:05:cf:e7:e3:63: 5a:24:64:bd:c4:4e:d1:fa:a8:d6:fa:aa:a7:16:96: 91:67:52:f2:3b:40:f1:1b:12:ac:64:0a:b6:42:54: 32:87:41:68:2a:ce:15:32:f2:65:0f:bd:5c:2c:06: bd:c1:f4:35:70:e0:86:92:08:61:cd:80:4b:0d:54: f5:1e:b3:e8:bd:d6:61:2d:46:85:63:93:49:54:e7: ac:f3:a2:c2:1c:ab:0c:35:ba:5d:56:88:4f:fc:28: 1a:2a:90:58:45:35:45:dd:1c:5f:9e:0a:bf:69:98: 37:dc:9f:c5:92:37:0c:55:28:a3:da:e0:06:88:78: c9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B3:77:64:4E:41:41:01:DB:6D:EA:D0:EB:58:21:06:3F:58:8E:8C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/89e4e2-b8ab-4814-93c1-28e6c5ba2eae/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/89e4e2-b8ab-4814-93c1-28e6c5ba2eae/1/lrN3ZE5BQQHbberQ61ghBj9Yjow.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.231.213.0/24 IPv6: 2a10:3200::/29 Signature Algorithm: sha256WithRSAEncryption 4b:0d:f9:14:79:66:5e:67:1a:af:eb:53:1c:c1:3f:69:72:a4: 52:26:ec:32:d1:fe:dc:38:5a:01:fa:7e:bc:fa:3a:b5:df:2c: 56:a8:aa:ea:10:8c:e5:2a:24:6c:ab:8a:ed:dd:58:5a:11:fc: 3d:25:fe:85:9f:02:5a:79:da:a6:fd:94:53:13:5e:92:86:f5: f9:6b:dc:7c:2d:c2:34:65:ce:f9:19:c5:fb:b9:11:ec:1c:f9: 1a:67:11:e3:9c:2d:0d:13:a5:e4:15:a8:85:2f:e3:61:8a:31: 82:28:9f:05:9c:b1:9e:f1:07:d4:90:e7:26:a6:b1:44:13:ad: 57:49:6f:de:7d:f5:23:a8:e1:a6:9b:98:8a:a9:62:3a:92:83: 31:4f:38:07:79:29:d2:0c:25:2e:a4:67:02:b9:00:b0:cc:ef: 4d:cc:76:43:08:f7:26:c0:96:32:37:be:a0:c7:fb:a7:6d:75: a7:3a:46:47:a7:9c:5e:1d:48:a0:27:7b:3d:ac:ee:d0:44:87: 07:6d:5d:d7:cf:d1:f2:cb:9b:65:96:28:14:c3:7c:4c:ec:37: 12:19:49:e3:8e:a6:9e:a3:bb:c8:98:87:7a:98:f4:4c:57:af: b7:30:25:4a:49:85:45:19:e8:65:8e:ea:da:ba:af:14:80:8e: f4:52:28:7e -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt9XIhs2TIk6phCg/83TsWrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NmIzNzc2NDRlNDE0MTAxZGI2ZGVhZDBlYjU4MjEwNjNmNTg4ZThjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIXwnQ2ekXdT3fYNWQNps6JgOhCq 9ozb3vQuLMaaLLQJ1Y5fHZUcG/cZxUiemcfys1HdyyaKrB2IRFxmC3F7fdIY7P77 Ii/mwgRZKzWrXJ+YoNKP68Kj2yzJTCca43srnaJSv7blCHAmrB/6iMfICvMPrqYO 6fjHJxBgU4rIE1MuBc/n42NaJGS9xE7R+qjW+qqnFpaRZ1LyO0DxGxKsZAq2QlQy h0FoKs4VMvJlD71cLAa9wfQ1cOCGkghhzYBLDVT1HrPovdZhLUaFY5NJVOes86LC HKsMNbpdVohP/CgaKpBYRTVF3Rxfngq/aZg33J/FkjcMVSij2uAGiHjJoQIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFJazd2ROQUEB223q0OtYIQY/WI6MMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M4Lzg5ZTRl Mi1iOGFiLTQ4MTQtOTNjMS0yOGU2YzViYTJlYWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgvODllNGUy LWI4YWItNDgxNC05M2MxLTI4ZTZjNWJhMmVhZS8xL2xyTjNaRTVCUVFIYmJlclE2 MWdoQmo5WWpvdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAXufVMA0EAgACMAcDBQMqEDIAMA0GCSqGSIb3 DQEBCwUAA4IBAQBLDfkUeWZeZxqv61McwT9pcqRSJuwy0f7cOFoB+n68+jq13yxW qKrqEIzlKiRsq4rt3VhaEfw9Jf6FnwJaedqm/ZRTE16ShvX5a9x8LcI0Zc75GcX7 uRHsHPkaZxHjnC0NE6XkFaiFL+NhijGCKJ8FnLGe8QfUkOcmprFEE61XSW/effUj qOGmm5iKqWI6koMxTzgHeSnSDCUupGcCuQCwzO9NzHZDCPcmwJYyN76gx/unbXWn OkZHp5xeHUigJ3s9rO7QRIcHbV3Xz9Hyy5tlligUw3xM7DcSGUnjjqaeo7vImId6 mPRMV6+3MCVKSYVFGehljurauq8UgI70Uih+ -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:53 2026 by rpki-client