This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mRXw1qlhquvGsLUInaApObMQpRw.cer File: mRXw1qlhquvGsLUInaApObMQpRw.cer (raw, json) Hash identifier: 8fIrS298prr5YNBHnxLl55ptv69X7a/KVqKArGbE+U8= Subject key identifier: 99:15:F0:D6:A9:61:AA:EB:C6:B0:B5:08:9D:A0:29:39:B3:10:A5:1C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E73A9FB48CEAEC27302E51A16369A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8b/fa110d-e6e5-4bf9-84fe-bf26a7faa603/1/mRXw1qlhquvGsLUInaApObMQpRw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8b/fa110d-e6e5-4bf9-84fe-bf26a7faa603/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 192.156.213.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:73:a9:fb:48:ce:ae:c2:73:02:e5:1a:16:36:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9915f0d6a961aaebc6b0b5089da02939b310a51c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f8:2f:61:7b:f4:b3:3e:7f:fc:c1:a9:0e:86: 66:71:5d:1a:ca:61:6b:74:13:33:4a:a9:bd:5f:04: e5:e7:b3:46:25:f0:ca:65:31:d1:4e:3d:36:df:87: 80:b3:de:99:2e:22:fb:83:32:f5:69:ca:37:c0:8b: 74:37:f6:35:1f:7c:94:89:05:ac:db:98:4b:67:89: 80:f3:5d:4b:89:3e:74:3b:ae:97:76:f2:37:0c:b7: 91:97:b8:9a:79:5f:fc:f1:89:74:3f:a2:1b:a1:75: 1b:f6:07:3e:70:e8:86:0a:e8:5a:12:a9:f8:09:30: 44:3b:90:e3:b4:cc:29:eb:e0:2a:26:88:c3:1f:c9: 59:c4:dc:65:04:c4:ba:64:f1:ac:45:bb:ae:26:1c: ef:04:0b:3e:57:e9:5a:11:d3:13:3e:ee:db:bf:52: 4b:57:96:57:ab:8a:cb:86:f1:dc:60:fe:e6:bc:96: 55:ae:dc:2f:be:01:2d:0b:88:40:23:3a:52:49:f9: 3d:d1:8a:70:d7:94:b4:cf:b6:0b:04:b0:83:78:2c: fa:bf:af:c3:10:4b:78:31:ed:e9:82:3e:ee:13:dd: 72:14:3f:4d:5a:f0:78:5e:3d:0f:b7:96:93:e3:90: 53:09:46:ef:36:47:e7:c1:3b:c8:c0:b1:f4:0d:4d: 8e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:15:F0:D6:A9:61:AA:EB:C6:B0:B5:08:9D:A0:29:39:B3:10:A5:1C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fa110d-e6e5-4bf9-84fe-bf26a7faa603/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fa110d-e6e5-4bf9-84fe-bf26a7faa603/1/mRXw1qlhquvGsLUInaApObMQpRw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.156.213.0/24 Signature Algorithm: sha256WithRSAEncryption 83:54:da:30:03:9b:e7:4a:99:22:4c:5b:5a:27:98:59:07:74: 9a:9e:28:33:52:be:6c:cb:7b:71:82:c7:22:c8:60:13:df:79: 26:f6:dd:05:89:ea:fd:42:53:5b:b2:ca:07:38:0f:e4:31:45: 68:d0:d0:b4:6a:8d:71:31:f9:c7:84:99:dd:9f:df:e5:6f:11: 21:45:ef:d7:f4:06:5f:b1:c8:ff:a0:9e:26:b2:8b:44:03:3a: 07:26:1d:cb:91:2b:3e:1b:cc:9c:20:3c:8f:28:5e:d1:95:3b: a8:8d:e4:28:52:59:88:71:30:5b:9b:3b:68:ac:bb:d2:2a:2c: 38:d2:56:b0:c3:6c:b4:9f:57:f4:df:06:97:f8:5a:0f:9e:01: 1b:6c:a8:b8:79:09:be:6d:e1:12:13:6e:75:09:1c:35:ca:06: e8:03:3a:11:34:0b:25:5a:4a:c2:d5:ea:04:af:c1:1d:93:bb: 98:83:ed:17:0b:a3:a8:65:9d:94:3c:b3:5c:94:35:ff:c1:6b: cd:97:be:b3:51:ca:ee:22:a2:a2:a6:09:9e:78:58:04:fb:e4: 99:8c:4d:47:ca:a9:a9:31:b1:ce:1a:88:88:fb:44:ba:a0:d8: 3c:4a:cb:f2:57:11:5e:e5:e5:49:bf:4e:0b:02:41:ac:89:cb: 68:67:b7:55 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt5fnOp+0jOrsJzAuUaFjaaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTE1ZjBkNmE5NjFhYWViYzZiMGI1MDg5ZGEwMjkzOWIzMTBhNTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vgvYXv0sz5//MGpDoZmcV0aymFr dBMzSqm9XwTl57NGJfDKZTHRTj0234eAs96ZLiL7gzL1aco3wIt0N/Y1H3yUiQWs 25hLZ4mA811LiT50O66XdvI3DLeRl7iaeV/88Yl0P6IboXUb9gc+cOiGCuhaEqn4 CTBEO5DjtMwp6+AqJojDH8lZxNxlBMS6ZPGsRbuuJhzvBAs+V+laEdMTPu7bv1JL V5ZXq4rLhvHcYP7mvJZVrtwvvgEtC4hAIzpSSfk90Ypw15S0z7YLBLCDeCz6v6/D EEt4Me3pgj7uE91yFD9NWvB4Xj0Pt5aT45BTCUbvNkfnwTvIwLH0DU2OWwIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFJkV8NapYarrxrC1CJ2gKTmzEKUcMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhiL2ZhMTEw ZC1lNmU1LTRiZjktODRmZS1iZjI2YTdmYWE2MDMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGIvZmExMTBk LWU2ZTUtNGJmOS04NGZlLWJmMjZhN2ZhYTYwMy8xL21SWHcxcWxocXV2R3NMVUlu YUFwT2JNUXBSdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwJzVMA0GCSqGSIb3DQEBCwUAA4IBAQCDVNow A5vnSpkiTFtaJ5hZB3SanigzUr5sy3txgsciyGAT33km9t0Fier9QlNbssoHOA/k MUVo0NC0ao1xMfnHhJndn9/lbxEhRe/X9AZfscj/oJ4msotEAzoHJh3LkSs+G8yc IDyPKF7RlTuojeQoUlmIcTBbmztorLvSKiw40laww2y0n1f03waX+FoPngEbbKi4 eQm+beESE251CRw1ygboAzoRNAslWkrC1eoEr8Edk7uYg+0XC6OoZZ2UPLNclDX/ wWvNl76zUcruIqKipgmeeFgE++SZjE1HyqmpMbHOGoiI+0S6oNg8SsvyVxFe5eVJ v04LAkGsictoZ7dV -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:55 2026 by rpki-client