This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer File: paimkAmtLokJhr3XbGM8GzHwbzo.cer (raw, json) Hash identifier: reRxYfjQJM2kwl2BEfdZqOTaym3zk5YilIa2LCNqpKw= Subject key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15745AA7DFCBBC738B492CBA397844 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:11 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216219 IP: 185.28.44.0/24 IP: 2a13:f740::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:74:5a:a7:df:cb:bc:73:8b:49:2c:ba:39:78:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e4:16:4a:05:a6:66:7d:a9:f4:f1:e8:4b:7c: 29:9c:66:dd:d9:28:e1:1d:98:ba:69:0d:4e:e8:71: f7:71:55:ef:70:fb:56:a1:9a:a4:54:34:71:ac:bb: 7d:d3:1e:df:d7:69:d7:bd:4a:3a:d8:e1:ab:76:c6: a1:56:34:fb:ee:b8:84:c1:e0:08:30:78:9e:be:f7: db:af:e5:ec:3c:f9:c7:03:73:13:4f:e6:7f:90:b7: 2d:54:70:76:ce:0a:88:ed:87:47:0e:05:92:a0:e7: f8:7e:60:64:13:7b:00:3f:3d:b8:08:64:03:fa:b8: c7:5c:e6:96:e0:43:e6:0f:1e:a5:07:16:c3:04:89: ee:42:74:7e:62:b3:bb:b8:24:b0:89:08:ba:c5:17: f1:35:24:11:fe:fb:03:83:45:aa:49:a1:48:4a:03: 31:d4:b3:ff:3c:b1:c3:49:9b:29:27:40:9e:e1:01: d0:83:49:ff:a2:ea:28:b7:4c:b2:5f:31:75:42:4b: e8:50:bb:16:57:3b:e2:27:fb:67:24:08:24:9f:2e: 60:de:c3:d5:72:ba:91:55:98:ff:eb:a0:4c:c7:83: fa:20:80:9d:cc:e6:22:63:15:2a:8e:78:f4:84:0f: 58:cb:15:b2:d0:ad:8c:0e:46:ee:38:c2:08:86:ba: ef:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.28.44.0/24 IPv6: 2a13:f740::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 216219 Signature Algorithm: sha256WithRSAEncryption 95:e9:7d:7d:12:07:ef:f5:67:11:b7:68:a8:75:a6:1d:55:85: f2:d7:b8:92:74:56:6c:c8:a3:54:14:6a:85:14:c7:c8:97:3f: 4f:0f:09:b0:50:07:e0:b3:cd:8c:2f:fd:0f:9d:92:0d:fd:96: 98:8b:1b:d5:c8:e7:84:24:f7:74:cf:07:00:44:45:3d:7c:7c: bf:a2:fc:81:14:ad:0f:ab:d7:cd:c1:8e:d9:f1:16:9b:38:39: 6c:7c:81:17:45:1f:64:9c:a0:11:0d:31:3a:4e:9e:e3:99:31: 10:cf:c1:38:2c:c2:d4:9a:cd:2e:d8:b9:84:da:f4:c7:1a:d0: 09:47:a7:7c:2e:91:c0:35:fb:a9:03:38:a1:6f:e9:f6:8a:d3: 3b:9a:c3:19:28:0e:c4:eb:37:c7:19:5d:d7:71:6b:6d:32:eb: 89:f1:dd:d3:e1:4e:c1:61:5b:88:9c:10:55:a2:d5:c1:a7:db: cd:9c:4c:fb:bb:1b:83:73:d5:10:08:56:dc:38:2e:2c:6e:8f: 3b:cd:0b:57:6a:2f:ac:aa:65:ba:2b:19:87:b6:e3:49:c6:1e: e8:8d:55:45:87:93:44:6f:b7:60:c8:c4:e3:89:0d:43:d3:c6: 11:78:a7:e2:6c:d6:d7:6a:a1:da:59:ba:c2:95:18:a4:a9:c2: 83:dd:fd:bd -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/FXRap9/LvHOLSSy6OXhEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNWE4YTY5MDA5YWQyZTg5MDk4NmJkZDc2YzYzM2MxYjMxZjA2ZjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeQWSgWmZn2p9PHoS3wpnGbd2Sjh HZi6aQ1O6HH3cVXvcPtWoZqkVDRxrLt90x7f12nXvUo62OGrdsahVjT77riEweAI MHievvfbr+XsPPnHA3MTT+Z/kLctVHB2zgqI7YdHDgWSoOf4fmBkE3sAPz24CGQD +rjHXOaW4EPmDx6lBxbDBInuQnR+YrO7uCSwiQi6xRfxNSQR/vsDg0WqSaFISgMx 1LP/PLHDSZspJ0Ce4QHQg0n/ouoot0yyXzF1QkvoULsWVzviJ/tnJAgkny5g3sPV crqRVZj/66BMx4P6IICdzOYiYxUqjnj0hA9YyxWy0K2MDkbuOMIIhrrvxQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFKWoppAJrS6JCYa912xjPBsx8G86MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VjL2M0ZGFk YS0xYTI5LTQ0OWEtOWFjNi1iMTJlYmYzNDViYzMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMvYzRkYWRh LTFhMjktNDQ5YS05YWM2LWIxMmViZjM0NWJjMy8xL3BhaW1rQW10TG9rSmhyM1hi R004R3pId2J6by5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuRwsMA0EAgACMAcDBQMqE/dAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNMmzANBgkqhkiG9w0BAQsFAAOCAQEAlel9fRIH7/Vn EbdoqHWmHVWF8te4knRWbMijVBRqhRTHyJc/Tw8JsFAH4LPNjC/9D52SDf2WmIsb 1cjnhCT3dM8HAERFPXx8v6L8gRStD6vXzcGO2fEWmzg5bHyBF0UfZJygEQ0xOk6e 45kxEM/BOCzC1JrNLti5hNr0xxrQCUenfC6RwDX7qQM4oW/p9orTO5rDGSgOxOs3 xxld13FrbTLrifHd0+FOwWFbiJwQVaLVwafbzZxM+7sbg3PVEAhW3DguLG6PO80L V2ovrKpluisZh7bjScYe6I1VRYeTRG+3YMjE44kNQ9PGEXin4mzW12qh2lm6wpUY pKnCg939vQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:55 2026 by rpki-client