This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p_xcZck6dAQIaxelTn4NqWCpspM.cer File: p_xcZck6dAQIaxelTn4NqWCpspM.cer (raw, json) Hash identifier: KDW/zyYgztXNVTH9iBkKg7Q5Xt2sBvfKytdJIPrwRpk= Subject key identifier: A7:FC:5C:65:C9:3A:74:04:08:6B:17:A5:4E:7E:0D:A9:60:A9:B2:93 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B362D80381B0B297EDF146650F3227C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/p_xcZck6dAQIaxelTn4NqWCpspM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49554 IP: 91.225.112.0/22 IP: 2001:678:c00::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:2d:80:38:1b:0b:29:7e:df:14:66:50:f3:22:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a7fc5c65c93a7404086b17a54e7e0da960a9b293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f3:54:f4:70:1f:62:04:4d:9b:99:5d:83:b2: c2:db:5c:1b:7e:8e:aa:9a:a3:df:08:d9:65:8a:f2: 3a:5e:bc:be:23:b9:28:d3:a7:87:ee:fe:a1:77:aa: 71:06:68:77:81:7e:e7:40:32:ab:3d:1a:80:00:c0: 87:bb:64:8d:3c:a0:58:dd:b0:e3:b1:dd:13:e5:25: 46:ec:8a:ad:81:6a:04:8a:48:2e:32:ca:7f:63:4b: 04:9c:d6:d8:48:2e:e6:a4:3b:e1:62:03:93:cd:e7: e6:2f:7f:9d:f0:b8:f5:19:b5:70:9f:4e:64:20:43: d7:1b:52:8a:8f:fb:40:36:0c:6c:18:00:4a:dc:3a: e6:6a:1d:be:3e:3b:eb:65:73:22:16:13:d4:1a:c1: fa:c9:02:c8:5c:8d:56:6b:68:44:47:0f:c3:d9:bf: 82:64:16:81:f9:aa:2a:80:3a:2c:d6:e7:f8:fc:6f: 5f:4b:da:54:5f:fd:a6:f0:e1:98:84:a2:a1:a8:66: bc:5e:d3:07:64:0d:37:47:4b:eb:e5:43:2f:6f:1e: cb:cf:a8:fd:91:ce:01:bb:e9:03:9b:ed:eb:7e:81: ee:1b:c4:f4:6e:ac:11:1f:05:85:3b:3e:d3:9d:0f: cf:68:c9:e1:01:ab:2d:82:05:38:f5:01:df:1a:42: 9e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:FC:5C:65:C9:3A:74:04:08:6B:17:A5:4E:7E:0D:A9:60:A9:B2:93 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/p_xcZck6dAQIaxelTn4NqWCpspM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.225.112.0/22 IPv6: 2001:678:c00::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49554 Signature Algorithm: sha256WithRSAEncryption 7d:03:04:b4:e0:38:87:e8:0f:29:15:fe:55:df:e2:ab:3b:80: e9:d3:fd:05:26:f2:b3:aa:4c:55:c7:42:c2:2d:9c:1e:af:ff: 47:bf:77:83:47:00:0c:82:69:c4:6d:c2:ea:dd:60:87:9e:3d: b1:58:35:00:21:df:a9:76:81:d2:2b:96:2b:25:ca:27:e7:53: ca:8c:90:29:5a:e9:93:ea:13:e8:0f:0f:f4:8a:72:76:5e:aa: db:5d:42:a2:d7:d4:01:69:7d:27:fe:d0:4e:20:ac:ae:9f:6c: 15:b8:bb:bc:4f:e9:c2:6d:5c:0e:95:e1:78:a8:97:b5:60:fe: 3e:05:42:88:1c:76:27:2a:99:54:37:d1:7b:85:87:01:90:3a: ad:72:6d:51:6b:6a:7c:f8:44:bd:39:47:1c:e0:af:cc:5e:fb: 92:53:15:62:00:f2:ba:e7:84:e1:20:9e:15:70:73:e2:25:bd: 7e:d6:c9:62:9a:b0:6a:79:ca:a7:8f:b8:2a:67:28:24:ad:58: 08:2f:b4:1a:07:99:95:3f:4a:d3:a4:92:ae:56:4c:ae:33:23: 72:84:f4:e7:4a:4a:87:8f:5b:62:a4:27:22:b6:3c:23:5b:9e: c1:52:34:f6:5e:be:34:a5:7d:cb:47:6f:63:bf:00:e9:ba:15: fe:72:3c:f5 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt7Ni2AOBsLKX7fFGZQ8yJ8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhN2ZjNWM2NWM5M2E3NDA0MDg2YjE3YTU0ZTdlMGRhOTYwYTliMjkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPNU9HAfYgRNm5ldg7LC21wbfo6q mqPfCNllivI6Xry+I7ko06eH7v6hd6pxBmh3gX7nQDKrPRqAAMCHu2SNPKBY3bDj sd0T5SVG7IqtgWoEikguMsp/Y0sEnNbYSC7mpDvhYgOTzefmL3+d8Lj1GbVwn05k IEPXG1KKj/tANgxsGABK3Drmah2+PjvrZXMiFhPUGsH6yQLIXI1Wa2hERw/D2b+C ZBaB+aoqgDos1uf4/G9fS9pUX/2m8OGYhKKhqGa8XtMHZA03R0vr5UMvbx7Lz6j9 kc4Bu+kDm+3rfoHuG8T0bqwRHwWFOz7TnQ/PaMnhAastggU49QHfGkKeawIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFKf8XGXJOnQECGsXpU5+DalgqbKTMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkxLzhmY2Ix Mi1hZTRlLTQzNTMtYTNiOS1mMGFkMzc1YTgwODYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEvOGZjYjEy LWFlNGUtNDM1My1hM2I5LWYwYWQzNzVhODA4Ni8xL3BfeGNaY2s2ZEFRSWF4ZWxU bjROcVdDcHNwTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQCW+FwMA8EAgACMAkDBwAgAQZ4DAAwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAMGSMA0GCSqGSIb3DQEBCwUAA4IBAQB9AwS04DiH 6A8pFf5V3+KrO4Dp0/0FJvKzqkxVx0LCLZwer/9Hv3eDRwAMgmnEbcLq3WCHnj2x WDUAId+pdoHSK5YrJcon51PKjJApWumT6hPoDw/0inJ2XqrbXUKi19QBaX0n/tBO IKyun2wVuLu8T+nCbVwOleF4qJe1YP4+BUKIHHYnKplUN9F7hYcBkDqtcm1Ra2p8 +ES9OUcc4K/MXvuSUxViAPK654ThIJ4VcHPiJb1+1slimrBqecqnj7gqZygkrVgI L7QaB5mVP0rTpJKuVkyuMyNyhPTnSkqHj1tipCcitjwjW57BUjT2Xr40pX3LR29j vwDpuhX+cjz1 -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:06 2026 by rpki-client