This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/my5v1Q3cgXq7rFpk98ahJUaFnOI.cer File: my5v1Q3cgXq7rFpk98ahJUaFnOI.cer (raw, json) Hash identifier: ZvJ8tFzYab0eeAug3VRoLpvW10nY1xjg0Dw85Ads4Tk= Subject key identifier: 9B:2E:6F:D5:0D:DC:81:7A:BB:AC:5A:64:F7:C6:A1:25:46:85:9C:E2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5B3889D3B1AC9D3E5097AEA708B1C2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/my5v1Q3cgXq7rFpk98ahJUaFnOI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:18:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 47875 IP: 94.124.32.0/21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:38:89:d3:b1:ac:9d:3e:50:97:ae:a7:08:b1:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b2e6fd50ddc817abbac5a64f7c6a12546859ce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:d2:de:fc:d2:09:09:21:b6:07:6d:65:d7:c3: 99:9e:df:27:5a:05:09:fc:99:19:12:c9:96:56:a5: 13:ab:0a:78:b7:c9:48:13:1c:33:ab:97:30:df:59: 1a:73:c5:53:c4:f8:fb:af:74:b0:c1:4e:d5:82:f9: 49:59:9e:6d:3d:98:ca:3c:03:a4:f2:7a:40:ed:09: 78:87:41:44:45:1f:27:77:f0:f0:69:65:10:00:8a: 5f:06:a1:86:e1:9f:8c:7d:91:83:e7:20:3c:92:11: c8:ca:28:1b:dd:52:4f:1b:a4:99:48:ae:9c:f3:58: 97:7a:ff:76:e5:4a:6b:85:0c:2b:a0:28:7e:8a:f8: e9:54:3a:ad:a6:77:d5:9d:42:92:43:80:a2:1a:75: 9f:5a:69:f6:57:0b:ae:95:bb:17:e8:43:b9:b1:94: cf:50:a9:04:43:0e:d1:d3:9a:5a:a0:73:a0:2a:1b: 39:77:d5:b4:68:99:bc:6d:64:09:4f:09:f8:59:f9: 81:df:1c:43:f2:ad:7d:6e:59:06:05:04:31:15:33: 6c:73:ea:3b:43:af:18:dd:5e:db:cd:03:22:8c:d4: ac:f5:5b:af:76:e8:3c:31:aa:5b:4b:95:11:86:8f: cf:3c:82:b7:cc:c4:d6:48:7e:a1:a4:a3:aa:3b:63: 24:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2E:6F:D5:0D:DC:81:7A:BB:AC:5A:64:F7:C6:A1:25:46:85:9C:E2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/my5v1Q3cgXq7rFpk98ahJUaFnOI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.124.32.0/21 sbgp-autonomousSysNum: critical Autonomous System Numbers: 47875 Signature Algorithm: sha256WithRSAEncryption ad:c5:77:20:4e:51:53:28:5e:9c:8b:2e:e1:1b:fd:7e:50:e3: 06:f3:71:6b:18:66:b8:69:89:89:d2:9f:d7:52:49:00:40:0d: 92:99:1e:af:a7:59:8c:ac:94:bc:b4:c0:4c:81:c2:a1:f5:4a: 2d:83:e5:15:d6:17:e5:cc:8e:a3:81:d2:c5:8b:80:3a:4a:4a: 5b:a5:19:da:c7:7e:17:7b:23:4f:9e:8c:0d:a9:f9:54:24:a2: e4:7f:dc:e4:97:8e:9b:01:fb:2b:5f:80:12:d4:fc:8a:dd:6d: 40:44:cd:24:f5:54:ca:92:e3:d5:17:61:b5:0e:d0:2e:4f:68: 84:f4:df:f6:9d:79:f2:84:f6:e4:3c:8e:2d:c4:ce:0d:cc:bf: 6f:d1:67:d6:4b:19:86:31:d4:3e:3f:5f:86:45:5b:69:38:1c: 91:54:88:cd:d5:dc:af:a4:20:bc:ab:6e:e1:ea:51:55:cf:db: c6:02:12:44:35:8c:fd:9e:43:e2:11:a1:04:90:ac:6d:2f:0e: 58:7f:d8:0c:2e:11:10:8a:7a:8a:87:06:1c:c3:7f:20:d8:f2: 6d:6c:a1:57:86:dc:0c:45:32:33:ae:88:a3:7a:79:41:31:0d: 65:a3:af:e8:f2:3b:da:a7:cf:0b:cf:ce:67:37:52:bf:09:eb: 71:a6:41:22 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9WziJ07GsnT5Ql66nCLHCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjJlNmZkNTBkZGM4MTdhYmJhYzVhNjRmN2M2YTEyNTQ2ODU5Y2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkNLe/NIJCSG2B21l18OZnt8nWgUJ /JkZEsmWVqUTqwp4t8lIExwzq5cw31kac8VTxPj7r3SwwU7VgvlJWZ5tPZjKPAOk 8npA7Ql4h0FERR8nd/DwaWUQAIpfBqGG4Z+MfZGD5yA8khHIyigb3VJPG6SZSK6c 81iXev925UprhQwroCh+ivjpVDqtpnfVnUKSQ4CiGnWfWmn2VwuulbsX6EO5sZTP UKkEQw7R05paoHOgKhs5d9W0aJm8bWQJTwn4WfmB3xxD8q19blkGBQQxFTNsc+o7 Q68Y3V7bzQMijNSs9Vuvdug8MapbS5URho/PPIK3zMTWSH6hpKOqO2MkOQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFJsub9UN3IF6u6xaZPfGoSVGhZziMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk1LzNiYTJk OS03NGNlLTQ4ODEtYjIzZi03Y2IwNzIzZGEwYmQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTUvM2JhMmQ5 LTc0Y2UtNDg4MS1iMjNmLTdjYjA3MjNkYTBiZC8xL215NXYxUTNjZ1hxN3JGcGs5 OGFoSlVhRm5PSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQDXnwgMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwC7AzANBgkqhkiG9w0BAQsFAAOCAQEArcV3IE5RUyhenIsu4Rv9flDjBvNxaxhm uGmJidKf11JJAEANkpker6dZjKyUvLTATIHCofVKLYPlFdYX5cyOo4HSxYuAOkpK W6UZ2sd+F3sjT56MDan5VCSi5H/c5JeOmwH7K1+AEtT8it1tQETNJPVUypLj1Rdh tQ7QLk9ohPTf9p158oT25DyOLcTODcy/b9Fn1ksZhjHUPj9fhkVbaTgckVSIzdXc r6QgvKtu4epRVc/bxgISRDWM/Z5D4hGhBJCsbS8OWH/YDC4REIp6iocGHMN/INjy bWyhV4bcDEUyM66Io3p5QTENZaOv6PI72qfPC8/OZzdSvwnrcaZBIg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:14:08 2026 by rpki-client