This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nLxTKkq1Xwb3wbZwGSJPjczaZTQ.cer File: nLxTKkq1Xwb3wbZwGSJPjczaZTQ.cer (raw, json) Hash identifier: qbbvXKhn2tBs80YL969oXx3hDcHttC3+2baJfj3333E= Subject key identifier: 9C:BC:53:2A:4A:B5:5F:06:F7:C1:B6:70:19:22:4F:8D:CC:DA:65:34 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C802D5B139A92BD1069FFBA207CDBE2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/81/da5c0d-5944-4963-adec-fb66742045ed/1/nLxTKkq1Xwb3wbZwGSJPjczaZTQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/81/da5c0d-5944-4963-adec-fb66742045ed/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207810 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:2d:5b:13:9a:92:bd:10:69:ff:ba:20:7c:db:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9cbc532a4ab55f06f7c1b67019224f8dccda6534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:cc:f3:d3:fe:8c:c7:05:61:34:9d:13:45:dd: 0d:62:6b:27:06:61:36:31:55:34:a3:6f:5d:c0:3d: 2b:ed:5f:d7:ee:04:4d:d7:91:05:81:23:33:8c:56: c9:b7:3d:67:97:ff:5b:f0:e1:14:01:d8:3d:19:0b: 0f:90:16:a0:0b:75:0f:17:dc:4f:d1:71:53:36:67: 58:60:6e:a1:15:bd:6e:8e:ae:4a:eb:84:c2:85:29: 0b:e6:ea:a6:d8:4d:50:aa:ad:0f:bc:35:40:30:7c: 78:11:52:3d:8e:5e:f6:47:a5:49:e8:40:69:cf:35: a3:44:cf:5b:dd:13:21:c0:a6:61:ce:3e:26:8b:dc: b9:c1:96:13:82:c1:02:44:6a:cb:75:26:d3:18:e8: 90:42:53:48:dd:32:4e:66:64:ac:dc:43:b6:e5:ac: 6c:06:f8:98:f3:42:e2:54:29:c2:4f:bf:22:a1:0f: 00:03:a9:b5:01:77:b9:b2:04:2d:44:56:76:20:53: 2a:28:59:a1:24:a4:de:2e:0a:16:73:f2:19:bc:23: f9:32:4d:9b:47:32:78:17:76:df:a3:cb:46:64:a0: fd:61:46:12:ff:92:94:6b:c8:3e:36:e8:43:17:52: e5:1a:ba:17:7d:81:f4:bd:aa:45:d4:4a:e7:26:81: 6c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BC:53:2A:4A:B5:5F:06:F7:C1:B6:70:19:22:4F:8D:CC:DA:65:34 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/da5c0d-5944-4963-adec-fb66742045ed/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/da5c0d-5944-4963-adec-fb66742045ed/1/nLxTKkq1Xwb3wbZwGSJPjczaZTQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 207810 Signature Algorithm: sha256WithRSAEncryption 2a:f2:03:be:0d:a2:6c:5c:b5:b0:7f:6b:58:76:ce:b3:b1:3b: 5e:9f:c3:8e:47:dc:da:fb:d2:25:e0:9b:0d:9a:97:ca:c0:ec: aa:88:10:30:89:ff:bc:7a:1a:77:0e:b7:32:ea:05:f8:5b:fa: 43:d9:e9:be:a2:b2:0d:64:22:da:6e:6d:7e:11:bb:f2:bd:76: cb:f4:48:03:1a:6b:1a:38:5d:99:74:ea:a4:6d:c8:b1:1d:36: 6a:d3:4a:6d:46:bc:ca:78:4a:aa:86:95:63:33:53:03:00:05: 84:fa:46:1b:6f:94:ae:73:d5:85:d3:f6:80:2c:12:56:53:f5: f6:7e:78:89:66:9c:ed:19:11:93:a3:06:43:3d:7d:9d:cc:91: 15:94:e1:29:1f:89:ba:e1:98:d1:21:a5:6d:c7:8c:cd:a2:83: 66:36:5d:7a:a8:6d:d4:e0:0b:cd:d3:f0:cb:b7:b2:6a:09:87: c2:16:04:10:88:05:e9:3d:4b:b2:2c:f7:ee:3a:e6:21:b9:52: a2:31:60:bf:1e:64:d3:55:8b:09:7b:e2:e7:34:23:e2:76:d4: 1e:c2:0d:26:31:8c:eb:bb:87:dc:c6:62:7a:1d:8f:b1:a3:cc: a0:ec:e4:78:10:73:60:2e:34:0e:e2:bf:0a:b9:9d:4c:e1:46: 3f:df:fa:8d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt8gC1bE5qSvRBp/7ogfNviMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Y2JjNTMyYTRhYjU1ZjA2ZjdjMWI2NzAxOTIyNGY4ZGNjZGE2NTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48zz0/6MxwVhNJ0TRd0NYmsnBmE2 MVU0o29dwD0r7V/X7gRN15EFgSMzjFbJtz1nl/9b8OEUAdg9GQsPkBagC3UPF9xP 0XFTNmdYYG6hFb1ujq5K64TChSkL5uqm2E1Qqq0PvDVAMHx4EVI9jl72R6VJ6EBp zzWjRM9b3RMhwKZhzj4mi9y5wZYTgsECRGrLdSbTGOiQQlNI3TJOZmSs3EO25axs BviY80LiVCnCT78ioQ8AA6m1AXe5sgQtRFZ2IFMqKFmhJKTeLgoWc/IZvCP5Mk2b RzJ4F3bfo8tGZKD9YUYS/5KUa8g+NuhDF1LlGroXfYH0vapF1ErnJoFsQwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFJy8UypKtV8G98G2cBkiT43M2mU0MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgxL2RhNWMw ZC01OTQ0LTQ5NjMtYWRlYy1mYjY2NzQyMDQ1ZWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEvZGE1YzBk LTU5NDQtNDk2My1hZGVjLWZiNjY3NDIwNDVlZC8xL25MeFRLa3ExWHdiM3diWndH U0pQamN6YVpUUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMrwjANBgkqhkiG9w0BAQsFAAOCAQEAKvIDvg2ibFy1 sH9rWHbOs7E7Xp/Djkfc2vvSJeCbDZqXysDsqogQMIn/vHoadw63MuoF+Fv6Q9np vqKyDWQi2m5tfhG78r12y/RIAxprGjhdmXTqpG3IsR02atNKbUa8ynhKqoaVYzNT AwAFhPpGG2+UrnPVhdP2gCwSVlP19n54iWac7RkRk6MGQz19ncyRFZThKR+JuuGY 0SGlbceMzaKDZjZdeqht1OALzdPwy7eyagmHwhYEEIgF6T1Lsiz37jrmIblSojFg vx5k01WLCXvi5zQj4nbUHsINJjGM67uH3MZieh2PsaPMoOzkeBBzYC40DuK/Crmd TOFGP9/6jQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:07 2026 by rpki-client