This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mQRCuMDNHdU1vq5yuU3TX5JyA40.cer File: mQRCuMDNHdU1vq5yuU3TX5JyA40.cer (raw, json) Hash identifier: dJgJumXmh+IfjrR4vzCOE3W7bXh7Cs5xg2K+Kqswfsc= Subject key identifier: 99:04:42:B8:C0:CD:1D:D5:35:BE:AE:72:B9:4D:D3:5F:92:72:03:8D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA6872F39FA287DF3BABCCF1CD72F36 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ca/15ecde-4038-4b46-893c-84cad7a6e5cb/1/mQRCuMDNHdU1vq5yuU3TX5JyA40.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ca/15ecde-4038-4b46-893c-84cad7a6e5cb/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:20:01 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216191 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:87:2f:39:fa:28:7d:f3:ba:bc:cf:1c:d7:2f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=990442b8c0cd1dd535beae72b94dd35f9272038d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d9:e0:8a:34:30:63:b7:7f:11:89:22:5e:bd: d5:55:38:6b:98:70:fe:a4:30:6c:ef:5e:c8:b0:17: a4:8b:98:b7:92:4f:7a:28:51:63:24:a0:da:a6:4b: 10:ea:9d:df:37:af:7f:94:05:c5:1b:56:c5:25:12: 3d:ad:76:09:90:2e:a0:05:2e:d7:3d:26:f9:93:33: c1:2b:c2:98:e5:6d:c2:87:76:83:23:03:ea:2e:17: 32:86:6e:93:8b:15:d9:b5:fd:44:6e:b7:12:c6:a3: 3c:1e:90:8b:b8:d2:08:51:b2:69:80:9a:49:87:87: 91:50:1d:76:d8:8b:a9:a2:11:f0:22:82:db:57:ce: 75:7f:2c:9f:ae:f0:e3:61:8f:4f:30:16:e8:a5:71: 78:ae:58:fe:7f:f0:2e:a1:7f:81:df:88:b3:21:6c: f2:3a:1a:c8:a0:d2:ed:f5:41:67:3a:4b:c2:9d:0f: 2d:b6:de:4b:6b:a1:35:87:33:4e:8a:0c:21:1b:fa: ef:ff:4a:56:1b:36:05:c8:1f:4f:c2:fa:43:45:4f: 85:0a:16:15:0d:30:f3:74:59:30:56:2e:05:5b:f8: 9d:2b:fc:17:76:75:32:c7:29:8d:2f:f0:aa:39:f5: 1e:e8:8d:86:5d:c1:c9:b8:8e:fe:b2:83:7c:64:c1: 2d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:04:42:B8:C0:CD:1D:D5:35:BE:AE:72:B9:4D:D3:5F:92:72:03:8D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/15ecde-4038-4b46-893c-84cad7a6e5cb/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/15ecde-4038-4b46-893c-84cad7a6e5cb/1/mQRCuMDNHdU1vq5yuU3TX5JyA40.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 216191 Signature Algorithm: sha256WithRSAEncryption 69:ba:cc:da:9e:67:e8:55:9b:07:bf:c5:10:d4:48:df:7d:fe: 54:b5:01:94:f9:c7:5d:b3:59:21:6d:49:17:e3:32:fd:07:f1: 33:0c:8b:d5:ef:2c:74:09:1e:8b:bb:1f:56:d7:b6:7e:1f:21: cf:28:c3:fc:65:24:a8:15:8e:11:a7:df:86:04:2a:9c:a7:de: 52:45:e1:d5:4a:7b:79:ca:47:a3:0c:97:61:67:f2:ca:f9:45: 2a:68:60:2f:81:5b:17:73:f3:c0:63:a0:43:88:f6:63:31:24: 7e:b9:3c:77:48:bb:ca:28:e9:4f:8f:00:50:52:21:a6:fe:28: db:72:9a:81:8b:f8:34:10:cf:73:da:b7:27:fb:5a:96:88:63: eb:05:33:65:0d:f4:8f:e3:fc:39:37:fd:fb:8d:70:d8:11:49: 94:79:12:a3:f0:ac:90:2c:a6:af:0e:32:f2:73:95:3e:dd:d9: bb:3c:a2:45:18:5b:02:54:93:a3:af:f5:7f:ea:2b:2e:cb:d7: 3f:67:59:b9:8c:69:1f:f9:3d:43:62:d4:7d:41:57:47:85:eb: aa:c0:f3:c7:5e:52:b1:87:af:15:18:23:10:b5:ab:4d:5c:40: 9f:87:e8:2c:0c:d4:56:dd:14:97:dc:71:bf:69:b2:09:f6:48: c4:c7:eb:c4 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt+pocvOfooffO6vM8c1y82MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTA0NDJiOGMwY2QxZGQ1MzViZWFlNzJiOTRkZDM1ZjkyNzIwMzhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9ngijQwY7d/EYkiXr3VVThrmHD+ pDBs717IsBeki5i3kk96KFFjJKDapksQ6p3fN69/lAXFG1bFJRI9rXYJkC6gBS7X PSb5kzPBK8KY5W3Ch3aDIwPqLhcyhm6TixXZtf1EbrcSxqM8HpCLuNIIUbJpgJpJ h4eRUB122IupohHwIoLbV851fyyfrvDjYY9PMBbopXF4rlj+f/AuoX+B34izIWzy OhrIoNLt9UFnOkvCnQ8ttt5La6E1hzNOigwhG/rv/0pWGzYFyB9PwvpDRU+FChYV DTDzdFkwVi4FW/idK/wXdnUyxymNL/CqOfUe6I2GXcHJuI7+soN8ZMEtJQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFJkEQrjAzR3VNb6ucrlN01+ScgONMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NhLzE1ZWNk ZS00MDM4LTRiNDYtODkzYy04NGNhZDdhNmU1Y2IvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2EvMTVlY2Rl LTQwMzgtNGI0Ni04OTNjLTg0Y2FkN2E2ZTVjYi8xL21RUkN1TUROSGRVMXZxNXl1 VTNUWDVKeUE0MC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNMfzANBgkqhkiG9w0BAQsFAAOCAQEAabrM2p5n6FWb B7/FENRI333+VLUBlPnHXbNZIW1JF+My/QfxMwyL1e8sdAkei7sfVte2fh8hzyjD /GUkqBWOEaffhgQqnKfeUkXh1Up7ecpHowyXYWfyyvlFKmhgL4FbF3PzwGOgQ4j2 YzEkfrk8d0i7yijpT48AUFIhpv4o23KagYv4NBDPc9q3J/talohj6wUzZQ30j+P8 OTf9+41w2BFJlHkSo/CskCymrw4y8nOVPt3ZuzyiRRhbAlSTo6/1f+orLsvXP2dZ uYxpH/k9Q2LUfUFXR4XrqsDzx15SsYevFRgjELWrTVxAn4foLAzUVt0Ul9xxv2my CfZIxMfrxA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:08 2026 by rpki-client