This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/n_M5Y3TL9ddnEl8C3PD5cpYyMJI.cer File: n_M5Y3TL9ddnEl8C3PD5cpYyMJI.cer (raw, json) Hash identifier: 6I+ulcbi5mhAWKLwO1Uf3v+zL/9aSMzqO8aDZxzZzDQ= Subject key identifier: 9F:F3:39:63:74:CB:F5:D7:67:12:5F:02:DC:F0:F9:72:96:32:30:92 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED3D35B2DA1E051C674901CFA0E4D2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3d/316020-9fc5-4b7c-ae41-e9554483ffa7/1/n_M5Y3TL9ddnEl8C3PD5cpYyMJI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3d/316020-9fc5-4b7c-ae41-e9554483ffa7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:19:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 59890 IP: 147.78.248.0/22 IP: 185.67.172.0/22 IP: 185.251.200.0/22 IP: 194.208.128.0/19 IP: 194.208.176.0/21 IP: 2a05:1140::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:3d:35:b2:da:1e:05:1c:67:49:01:cf:a0:e4:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9ff3396374cbf5d767125f02dcf0f97296323092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0c:b4:fe:ee:cf:3c:e8:d8:de:7d:9e:93:1f: 82:84:10:27:c8:b7:b9:1f:0c:1e:ab:43:39:b2:ac: f6:92:08:97:15:d3:71:f6:81:61:67:12:36:63:a4: 4e:4b:e1:fa:e1:5d:35:d2:6c:10:c4:92:4c:fa:e6: 4c:94:33:c6:ef:e0:26:9b:c3:ad:26:e6:c9:ad:47: b2:6a:ad:17:c8:79:c3:7e:73:96:f3:30:9b:09:6b: 44:17:83:17:97:b4:a4:45:e0:ec:45:00:dd:00:e7: c6:29:76:2d:95:1c:26:34:63:0e:46:9a:23:4d:fc: 77:be:81:86:19:8f:dc:a9:b4:6a:02:3d:2d:b3:22: 9a:ba:94:c5:0a:3f:d6:ab:d5:30:c3:92:10:40:79: 50:2a:7a:43:dc:ce:3b:ad:77:03:c6:36:f2:f6:02: 4c:23:01:5f:3d:de:76:ac:b6:64:fa:85:3c:66:4a: 06:80:06:7c:9a:5a:98:3e:09:e0:da:e9:d7:91:b4: 58:da:5a:04:a0:d4:23:7d:0a:76:9a:76:15:fa:e3: ad:ac:d8:b1:0b:a1:22:9d:0e:b9:d8:f0:8c:d8:15: 97:56:87:4f:27:a8:56:bc:af:e4:48:10:9f:84:c3: 35:16:5d:99:5e:83:f6:91:ad:ee:5e:d3:28:01:a5: 53:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:F3:39:63:74:CB:F5:D7:67:12:5F:02:DC:F0:F9:72:96:32:30:92 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/316020-9fc5-4b7c-ae41-e9554483ffa7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/316020-9fc5-4b7c-ae41-e9554483ffa7/1/n_M5Y3TL9ddnEl8C3PD5cpYyMJI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.78.248.0/22 185.67.172.0/22 185.251.200.0/22 194.208.128.0/19 194.208.176.0/21 IPv6: 2a05:1140::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 59890 Signature Algorithm: sha256WithRSAEncryption a7:0b:36:1a:c4:66:a3:aa:48:d5:a6:df:cb:7f:b9:d6:4c:64: 91:5f:6d:49:3a:b6:9c:ea:09:68:eb:de:56:38:a0:6d:3a:ba: d1:32:f7:c0:0f:cd:da:30:36:10:e4:6f:fc:0b:ba:87:17:bc: 27:f7:f3:6b:73:8c:94:be:2a:d2:3e:bb:4a:ce:9d:bb:0a:93: 76:29:b9:46:9c:b5:1a:e4:12:91:d8:9a:8e:1b:4b:e2:24:aa: 65:88:60:bd:37:d8:df:ff:6b:fc:94:99:73:8d:2d:e7:e0:82: e2:f3:5a:b0:1f:9a:f3:09:e9:1e:f1:29:5c:f0:e1:d2:62:4b: b6:87:0c:90:2e:16:89:a6:44:a3:7a:c5:ac:44:03:61:38:72: 30:17:ca:64:87:fb:0b:a6:fd:5e:98:40:6a:40:c5:cd:7e:f2: 1c:e2:64:a5:c8:67:11:8e:a4:45:9d:16:ad:f3:ab:a7:9a:66: 48:44:fa:c0:13:8b:88:a2:6b:ce:a5:04:9e:6d:8b:09:0a:76: 31:f0:92:02:f4:d7:e4:50:14:d6:8c:59:66:8b:2f:0d:81:55: af:dd:87:93:c4:95:7c:28:c5:0b:a7:9d:b0:af:af:d7:8f:90: 8a:93:2d:f1:8c:45:44:e2:c4:61:6a:d0:9f:41:a1:2a:b6:09: 2e:de:73:71 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgISAZt57T01stoeBRxnSQHPoOTSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZmYzMzk2Mzc0Y2JmNWQ3NjcxMjVmMDJkY2YwZjk3Mjk2MzIzMDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ay0/u7PPOjY3n2ekx+ChBAnyLe5 Hwweq0M5sqz2kgiXFdNx9oFhZxI2Y6ROS+H64V010mwQxJJM+uZMlDPG7+Amm8Ot JubJrUeyaq0XyHnDfnOW8zCbCWtEF4MXl7SkReDsRQDdAOfGKXYtlRwmNGMORpoj Tfx3voGGGY/cqbRqAj0tsyKaupTFCj/Wq9Uww5IQQHlQKnpD3M47rXcDxjby9gJM IwFfPd52rLZk+oU8ZkoGgAZ8mlqYPgng2unXkbRY2loEoNQjfQp2mnYV+uOtrNix C6EinQ652PCM2BWXVodPJ6hWvK/kSBCfhMM1Fl2ZXoP2ka3uXtMoAaVTMQIDAQAB o4ICxzCCAsMwHQYDVR0OBBYEFJ/zOWN0y/XXZxJfAtzw+XKWMjCSMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNkLzMxNjAy MC05ZmM1LTRiN2MtYWU0MS1lOTU1NDQ4M2ZmYTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2QvMzE2MDIw LTlmYzUtNGI3Yy1hZTQxLWU5NTU0NDgzZmZhNy8xL25fTTVZM1RMOWRkbkVsOEMz UEQ1Y3BZeU1KSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUF BwEHAQH/BDcwNTAkBAIAATAeAwQCk074AwQCuUOsAwQCufvIAwQFwtCAAwQDwtCw MA0EAgACMAcDBQMqBRFAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDp8jANBgkq hkiG9w0BAQsFAAOCAQEApws2GsRmo6pI1abfy3+51kxkkV9tSTq2nOoJaOveVjig bTq60TL3wA/N2jA2EORv/Au6hxe8J/fza3OMlL4q0j67Ss6duwqTdim5Rpy1GuQS kdiajhtL4iSqZYhgvTfY3/9r/JSZc40t5+CC4vNasB+a8wnpHvEpXPDh0mJLtocM kC4WiaZEo3rFrEQDYThyMBfKZIf7C6b9XphAakDFzX7yHOJkpchnEY6kRZ0WrfOr p5pmSET6wBOLiKJrzqUEnm2LCQp2MfCSAvTX5FAU1oxZZosvDYFVr92Hk8SVfCjF C6edsK+v14+QipMt8YxFROLEYWrQn0GhKrYJLt5zcQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:40 2026 by rpki-client