This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lrvRv8ovihV4-qtbEMD8NVVhzGU.cer File: lrvRv8ovihV4-qtbEMD8NVVhzGU.cer (raw, json) Hash identifier: wrUL5k/WpnO/t+Ehwevv4xmX39W3gFfWXBPlJGUg5pU= Subject key identifier: 96:BB:D1:BF:CA:2F:8A:15:78:FA:AB:5B:10:C0:FC:35:55:61:CC:65 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC9460415B9FA419F8655415607314E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/73/73f5b5-293d-4035-92ac-a87e2872ad8a/1/lrvRv8ovihV4-qtbEMD8NVVhzGU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/73/73f5b5-293d-4035-92ac-a87e2872ad8a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:19:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216282 IP: 185.98.161.0/24 IP: 195.184.234.0/24 IP: 2a13:e1c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:46:04:15:b9:fa:41:9f:86:55:41:56:07:31:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96bbd1bfca2f8a1578faab5b10c0fc355561cc65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f9:e5:b7:05:f9:0b:6f:16:1f:00:e6:52:34: 26:f4:33:67:ba:8b:c6:a0:51:da:99:3c:93:5d:ed: cd:24:df:17:dd:8a:f6:7b:74:7a:f0:94:40:15:87: 6f:51:94:f7:57:2e:4c:46:6c:58:22:11:08:f1:58: 82:3c:07:2f:25:57:d1:01:5c:c0:fb:4d:93:de:7c: 06:fe:03:b7:1d:a6:2a:fa:74:d1:6a:73:67:5b:c4: ee:bf:a3:21:ff:da:95:6b:36:eb:30:24:53:ee:2d: b2:ba:cf:d9:bb:68:f8:37:a3:4e:d1:57:7f:2d:12: 28:8f:e1:e2:a5:50:f3:c0:62:95:c9:cb:f4:34:a3: 03:7d:61:d7:b6:c1:f9:b5:78:f0:06:7f:f5:2c:51: 46:7f:29:b4:40:6a:28:88:24:1b:ec:44:29:2d:86: dd:00:72:fd:9b:03:87:7b:3c:1c:c4:2f:41:8f:9a: 43:02:98:22:83:4f:01:9a:1e:be:58:1b:2e:2a:d8: 2d:be:fd:48:64:db:e4:67:ab:cd:b0:89:18:40:a3: 7a:2f:b7:3c:f3:f2:8d:be:97:ce:cf:c5:55:74:2b: dc:e2:82:6d:a0:7b:97:1e:37:05:84:44:e0:6b:6a: 49:07:b0:5f:33:c7:38:64:c2:8c:52:b6:7d:95:7c: 77:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:BB:D1:BF:CA:2F:8A:15:78:FA:AB:5B:10:C0:FC:35:55:61:CC:65 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/73f5b5-293d-4035-92ac-a87e2872ad8a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/73f5b5-293d-4035-92ac-a87e2872ad8a/1/lrvRv8ovihV4-qtbEMD8NVVhzGU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.98.161.0/24 195.184.234.0/24 IPv6: 2a13:e1c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 216282 Signature Algorithm: sha256WithRSAEncryption 4e:0d:1c:45:46:56:41:7e:fe:37:d6:83:da:4b:28:cc:e2:39: e0:d6:6f:72:28:f4:62:a7:2d:27:1d:0f:cd:7f:38:fa:0a:a4: 6a:59:78:79:95:0e:20:59:3c:3a:b2:ea:0d:a4:29:a1:c0:3c: 58:38:f0:35:f0:a2:53:36:a8:19:62:ca:2b:38:96:36:b3:32: cd:ed:10:2e:8c:68:50:08:9a:59:a1:70:24:64:2d:51:27:0a: 90:c1:ed:e8:21:3e:bd:da:a1:57:79:c8:47:17:af:9f:29:cb: 01:9f:5f:5f:50:c6:ec:3e:f0:b3:6d:73:15:fe:fc:72:ca:b1: de:e9:7c:22:15:37:42:cf:eb:22:6b:be:e9:a8:0a:ac:3a:63: de:52:e4:bf:13:10:8e:f6:da:b2:7e:f6:95:d2:9b:15:e6:b2: 05:41:ce:c1:3c:c7:a8:65:9a:7f:1d:cc:55:fd:2e:96:ad:21: 3d:13:71:19:2b:81:95:7c:c4:a9:28:67:64:16:de:e1:f1:4f: 23:4e:a7:5b:7f:ab:72:3a:98:3b:44:60:c6:d7:68:c4:e2:87: d1:c1:cf:0b:3b:85:d7:07:a7:cf:83:24:43:70:a6:6e:0a:bf: b0:11:e3:17:c8:cb:6b:30:a8:72:48:41:85:76:3c:3f:28:59: 2f:d4:ec:d8 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt6yUYEFbn6QZ+GVUFWBzFOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NmJiZDFiZmNhMmY4YTE1NzhmYWFiNWIxMGMwZmMzNTU1NjFjYzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/nltwX5C28WHwDmUjQm9DNnuovG oFHamTyTXe3NJN8X3Yr2e3R68JRAFYdvUZT3Vy5MRmxYIhEI8ViCPAcvJVfRAVzA +02T3nwG/gO3HaYq+nTRanNnW8Tuv6Mh/9qVazbrMCRT7i2yus/Zu2j4N6NO0Vd/ LRIoj+HipVDzwGKVycv0NKMDfWHXtsH5tXjwBn/1LFFGfym0QGooiCQb7EQpLYbd AHL9mwOHezwcxC9Bj5pDApgig08Bmh6+WBsuKtgtvv1IZNvkZ6vNsIkYQKN6L7c8 8/KNvpfOz8VVdCvc4oJtoHuXHjcFhETga2pJB7BfM8c4ZMKMUrZ9lXx3wwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFJa70b/KL4oVePqrWxDA/DVVYcxlMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzczLzczZjVi NS0yOTNkLTQwMzUtOTJhYy1hODdlMjg3MmFkOGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzMvNzNmNWI1 LTI5M2QtNDAzNS05MmFjLWE4N2UyODcyYWQ4YS8xL2xydlJ2OG92aWhWNC1xdGJF TUQ4TlZWaHpHVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAuWKhAwQAw7jqMA0EAgACMAcDBQMqE+HAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwNM2jANBgkqhkiG9w0BAQsFAAOCAQEATg0c RUZWQX7+N9aD2ksozOI54NZvcij0YqctJx0PzX84+gqkall4eZUOIFk8OrLqDaQp ocA8WDjwNfCiUzaoGWLKKziWNrMyze0QLoxoUAiaWaFwJGQtUScKkMHt6CE+vdqh V3nIRxevnynLAZ9fX1DG7D7ws21zFf78csqx3ul8IhU3Qs/rImu+6agKrDpj3lLk vxMQjvbasn72ldKbFeayBUHOwTzHqGWafx3MVf0ulq0hPRNxGSuBlXzEqShnZBbe 4fFPI06nW3+rcjqYO0RgxtdoxOKH0cHPCzuF1wenz4MkQ3Cmbgq/sBHjF8jLazCo ckhBhXY8PyhZL9Ts2A== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:45 2026 by rpki-client