This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/m1iV5_am1KupyWH3E7LnlxXwIfA.cer File: m1iV5_am1KupyWH3E7LnlxXwIfA.cer (raw, json) Hash identifier: DE3eSIzg/6VI7h1K/pqE6PbUnLxWwnxQPaYvxH3Wl+4= Subject key identifier: 9B:58:95:E7:F6:A6:D4:AB:A9:C9:61:F7:13:B2:E7:97:15:F0:21:F0 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5AA3BD5F0FD82F1E5C516641F74322 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/m1iV5_am1KupyWH3E7LnlxXwIfA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51825 IP: 46.31.96.0/21 IP: 147.234.92.0 -- 147.234.103.255 IP: 185.24.204.0/22 IP: 213.137.64.0/20 IP: 2a02:5080::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:a3:bd:5f:0f:d8:2f:1e:5c:51:66:41:f7:43:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b5895e7f6a6d4aba9c961f713b2e79715f021f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f7:2e:53:9a:c5:b1:09:fc:ab:57:81:2a:fa: 85:fe:ae:09:76:04:97:cd:2d:d5:bf:71:5c:3c:4f: 8a:14:27:47:ac:a6:3d:77:ca:2f:10:86:11:0a:32: 93:df:ae:00:8e:6d:f9:00:37:ff:15:ca:95:7a:b5: da:ab:48:ca:61:4b:2f:54:7d:6e:fb:8f:87:1a:8b: fd:76:5a:5a:18:81:5b:aa:0d:a4:ae:2f:cd:20:60: 9a:da:9b:59:9a:b8:15:a9:2b:df:7a:44:bc:ed:ab: 1f:ab:d1:b4:21:fa:2e:33:d6:1e:a3:b1:f8:39:47: 63:ce:d8:e6:d6:79:68:06:f0:2d:eb:8d:3c:f4:c7: 6a:7d:d1:77:a9:ab:db:f2:4d:d8:9b:b7:39:5e:85: 35:a6:02:8b:66:69:3c:e0:5c:10:be:e3:70:85:50: be:3f:66:2e:61:87:d1:b6:f2:46:3c:7f:0c:fd:77: 93:54:23:7c:4e:90:46:4f:7d:fb:bd:1e:d7:95:f1: b3:83:3b:88:9f:90:45:26:ec:6c:27:15:e0:b3:d8: 12:dc:94:7b:a7:18:ff:8d:c8:65:02:d2:59:fd:8f: d5:51:1d:1f:fb:eb:fc:9b:be:5b:43:12:3b:b0:fd: 62:cd:fd:55:5a:ec:7a:ff:e7:57:dd:f9:74:08:e5: e6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:58:95:E7:F6:A6:D4:AB:A9:C9:61:F7:13:B2:E7:97:15:F0:21:F0 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/m1iV5_am1KupyWH3E7LnlxXwIfA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.31.96.0/21 147.234.92.0-147.234.103.255 185.24.204.0/22 213.137.64.0/20 IPv6: 2a02:5080::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51825 Signature Algorithm: sha256WithRSAEncryption 49:92:07:6a:75:a2:73:fe:94:06:54:25:c5:a8:af:c5:2a:fe: 36:64:c2:bd:44:41:5e:81:bf:f7:a3:99:d9:b9:eb:c1:45:ab: 75:14:c0:fa:52:a8:ee:24:bd:0e:32:cd:85:2d:63:b2:17:c1: d0:8c:03:22:4d:9c:69:63:5c:0d:ba:9e:1a:d4:5a:e3:e6:8b: 0b:f3:35:5e:f2:e8:1b:6f:97:b3:97:93:71:87:0e:a8:0e:1c: db:b8:28:e4:50:12:de:97:c4:f2:8d:51:78:81:dd:79:99:5c: f3:72:b7:dd:2e:74:c7:39:d8:59:c4:b5:64:df:ca:64:60:27: 10:a2:ff:e6:13:72:ac:5a:40:51:c4:9f:f0:9b:2b:fe:73:88: b7:c4:e4:7b:e2:74:8f:ea:ab:b8:82:9b:c7:e9:06:32:a4:26: 24:9c:70:fa:48:b3:e7:ac:e7:7f:b3:68:7d:69:1a:a9:d4:05: 88:cd:da:77:5e:f3:27:ca:e9:1c:4a:d8:22:7a:df:d8:05:a8: dd:37:e6:2d:97:01:c1:f8:dc:ac:b9:f4:05:12:ba:c1:4d:1f: ce:c5:7d:b5:82:af:3b:c6:d2:91:5c:c8:bc:ab:3f:45:75:31: 01:1b:bd:64:f8:9b:fe:31:08:75:a3:0d:38:18:b5:4f:c8:d0: b4:f9:96:bc -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgISAZt6WqO9Xw/YLx5cUWZB90MiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjU4OTVlN2Y2YTZkNGFiYTljOTYxZjcxM2IyZTc5NzE1ZjAyMWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPcuU5rFsQn8q1eBKvqF/q4JdgSX zS3Vv3FcPE+KFCdHrKY9d8ovEIYRCjKT364Ajm35ADf/FcqVerXaq0jKYUsvVH1u +4+HGov9dlpaGIFbqg2kri/NIGCa2ptZmrgVqSvfekS87asfq9G0IfouM9Yeo7H4 OUdjztjm1nloBvAt64089MdqfdF3qavb8k3Ym7c5XoU1pgKLZmk84FwQvuNwhVC+ P2YuYYfRtvJGPH8M/XeTVCN8TpBGT337vR7XlfGzgzuIn5BFJuxsJxXgs9gS3JR7 pxj/jchlAtJZ/Y/VUR0f++v8m75bQxI7sP1izf1VWux6/+dX3fl0COXmyQIDAQAB o4ICyTCCAsUwHQYDVR0OBBYEFJtYlef2ptSrqclh9xOy55cV8CHwMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdiLzEzNGI4 Mi1iY2ZiLTQ0NWMtYmQ0Mi1mYzJhOTdiN2Q1M2UvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2IvMTM0Yjgy LWJjZmItNDQ1Yy1iZDQyLWZjMmE5N2I3ZDUzZS8xL20xaVY1X2FtMUt1cHlXSDNF N0xubHhYd0lmQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEgGCCsGAQUF BwEHAQH/BDkwNzAmBAIAATAgAwQDLh9gMAwDBAKT6lwDBAOT6mADBAK5GMwDBATV iUAwDQQCAAIwBwMFACoCUIAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAMpxMA0G CSqGSIb3DQEBCwUAA4IBAQBJkgdqdaJz/pQGVCXFqK/FKv42ZMK9REFegb/3o5nZ uevBRat1FMD6UqjuJL0OMs2FLWOyF8HQjAMiTZxpY1wNup4a1Frj5osL8zVe8ugb b5ezl5Nxhw6oDhzbuCjkUBLel8TyjVF4gd15mVzzcrfdLnTHOdhZxLVk38pkYCcQ ov/mE3KsWkBRxJ/wmyv+c4i3xOR74nSP6qu4gpvH6QYypCYknHD6SLPnrOd/s2h9 aRqp1AWIzdp3XvMnyukcStgiet/YBajdN+YtlwHB+NysufQFErrBTR/OxX21gq87 xtKRXMi8qz9FdTEBG71k+Jv+MQh1ow04GLVPyNC0+Za8 -----END CERTIFICATE-----Generated at Mon Feb 9 19:51:39 2026 by rpki-client