This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nQp0muJcHLtlhx1BanmrSohKxGg.cer File: nQp0muJcHLtlhx1BanmrSohKxGg.cer (raw, json) Hash identifier: q2VMUEoXudadv36s+VH7qbRjfrES4mTBNfbTFivgyMs= Subject key identifier: 9D:0A:74:9A:E2:5C:1C:BB:65:87:1D:41:6A:79:AB:4A:88:4A:C4:68 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C7036348A93616A6373026D4DCF1CF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/nQp0muJcHLtlhx1BanmrSohKxGg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 35266 IP: 46.30.8.0/21 IP: 185.69.13.0 -- 185.69.15.255 IP: 185.81.188.0/22 IP: 2a01:b000::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:03:63:48:a9:36:16:a6:37:30:26:d4:dc:f1:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9d0a749ae25c1cbb65871d416a79ab4a884ac468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9e:20:a6:d2:a4:f5:54:27:c3:b3:f3:e3:e5: 59:6a:8c:4f:c6:e0:00:4f:d5:17:e5:fb:81:f7:33: b9:e9:32:00:8c:c7:07:56:07:fb:e1:6e:0b:80:e4: 42:ea:b9:00:23:41:05:ee:66:a1:dd:38:fd:db:d9: ce:22:20:a8:ab:58:64:56:05:dc:51:49:19:f4:16: ea:3d:01:bd:92:60:91:46:8e:b7:b4:2d:c5:3b:94: a1:de:87:17:65:af:46:26:8d:6a:b4:c7:6a:13:2d: 10:18:e9:8c:68:4d:a9:83:8e:c8:06:fa:bc:6e:c4: e8:b4:73:b1:25:43:b1:32:fc:6d:9f:1e:66:d5:de: 90:f2:f1:1f:7a:4b:37:12:52:c5:8d:86:3f:06:00: 2a:c4:62:bd:f6:d5:95:ae:e7:60:d4:52:18:39:05: 55:5d:59:ce:39:04:99:46:f5:ce:97:ed:0d:43:2a: bc:47:d9:a4:15:6f:ca:b2:3d:bb:c4:e8:28:dd:f3: 6e:60:0f:af:c3:6b:7e:ff:09:96:2f:84:c2:36:40: d8:7e:b3:c7:9c:df:41:6b:5c:ae:ae:2a:4e:6b:5d: ea:7e:d5:dc:7f:c8:5f:84:7c:28:dd:4a:28:19:7a: c9:6c:91:b3:f5:cc:6a:87:ef:3c:33:cf:85:4c:55: c4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:0A:74:9A:E2:5C:1C:BB:65:87:1D:41:6A:79:AB:4A:88:4A:C4:68 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/nQp0muJcHLtlhx1BanmrSohKxGg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.30.8.0/21 185.69.13.0-185.69.15.255 185.81.188.0/22 IPv6: 2a01:b000::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 35266 Signature Algorithm: sha256WithRSAEncryption 9b:dc:3f:7d:04:68:15:52:2d:6b:9e:84:5e:b4:4e:58:1f:77: 55:9e:7b:3e:25:bb:95:ae:16:a2:8e:21:58:79:39:44:70:6a: 89:30:a7:ad:78:3e:37:3e:5f:93:d1:9d:56:28:88:05:b7:21: 1c:a9:51:0a:aa:54:87:dc:87:9d:62:b2:d1:0c:eb:1d:b0:4c: 2d:31:86:0b:23:21:41:4a:c4:c7:74:46:58:7d:01:81:b9:d3: c9:63:d4:fa:20:2b:ec:d3:c1:3f:52:72:73:fd:0c:19:4b:be: c6:01:d4:36:7c:9a:1c:45:9e:24:e9:2f:91:a5:13:17:4c:2d: ec:c6:d9:aa:d6:8b:11:34:49:e0:65:43:17:63:ac:c9:97:23: 20:85:25:d1:92:c1:3f:cf:5a:64:66:53:39:91:1d:cf:c6:7c: a7:bd:24:b7:66:9b:c6:02:31:5c:44:39:40:8f:e4:d9:be:b9: 6d:0d:9d:18:02:9e:45:43:75:ad:bf:9e:46:9b:8a:11:cb:57: 12:95:96:ea:35:ec:f4:93:5c:02:27:e1:c9:98:48:6d:d4:67: a0:81:9d:c2:31:df:e6:18:5c:11:0b:4a:90:49:63:f2:da:bf: b0:13:e0:ea:e4:9b:40:d0:b1:7b:81:d6:a2:e4:47:21:ab:b8: c3:80:cb:e4 -----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgISAZt3xwNjSKk2FqY3MCbU3PHPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDBhNzQ5YWUyNWMxY2JiNjU4NzFkNDE2YTc5YWI0YTg4NGFjNDY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu54gptKk9VQnw7Pz4+VZaoxPxuAA T9UX5fuB9zO56TIAjMcHVgf74W4LgORC6rkAI0EF7mah3Tj929nOIiCoq1hkVgXc UUkZ9BbqPQG9kmCRRo63tC3FO5Sh3ocXZa9GJo1qtMdqEy0QGOmMaE2pg47IBvq8 bsTotHOxJUOxMvxtnx5m1d6Q8vEfeks3ElLFjYY/BgAqxGK99tWVrudg1FIYOQVV XVnOOQSZRvXOl+0NQyq8R9mkFW/Ksj27xOgo3fNuYA+vw2t+/wmWL4TCNkDYfrPH nN9Ba1yuripOa13qftXcf8hfhHwo3UooGXrJbJGz9cxqh+88M8+FTFXEnQIDAQAB o4ICwzCCAr8wHQYDVR0OBBYEFJ0KdJriXBy7ZYcdQWp5q0qISsRoMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q1Lzg1ZDBh Ny1kODAyLTQxYzQtODFhZi0xYTZkM2M5OWRjNDgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUvODVkMGE3 LWQ4MDItNDFjNC04MWFmLTFhNmQzYzk5ZGM0OC8xL25RcDBtdUpjSEx0bGh4MUJh bm1yU29oS3hHZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEIGCCsGAQUF BwEHAQH/BDMwMTAgBAIAATAaAwQDLh4IMAwDBAC5RQ0DBAS5RQADBAK5UbwwDQQC AAIwBwMFACoBsAAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAInCMA0GCSqGSIb3 DQEBCwUAA4IBAQCb3D99BGgVUi1rnoRetE5YH3dVnns+JbuVrhaijiFYeTlEcGqJ MKeteD43Pl+T0Z1WKIgFtyEcqVEKqlSH3IedYrLRDOsdsEwtMYYLIyFBSsTHdEZY fQGBudPJY9T6ICvs08E/UnJz/QwZS77GAdQ2fJocRZ4k6S+RpRMXTC3sxtmq1osR NEngZUMXY6zJlyMghSXRksE/z1pkZlM5kR3PxnynvSS3ZpvGAjFcRDlAj+TZvrlt DZ0YAp5FQ3Wtv55Gm4oRy1cSlZbqNez0k1wCJ+HJmEht1GeggZ3CMd/mGFwRC0qQ SWPy2r+wE+Dq5JtA0LF7gdai5Echq7jDgMvk -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:07 2026 by rpki-client