This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pmnxwhNwxE39EOKvaIyMTg6hKVU.cer File: pmnxwhNwxE39EOKvaIyMTg6hKVU.cer (raw, json) Hash identifier: ekGM38pBXXdwqbxZJ/z5Rw9h2/PTriWMaJLSZR1kgLc= Subject key identifier: A6:69:F1:C2:13:70:C4:4D:FD:10:E2:AF:68:8C:8C:4E:0E:A1:29:55 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C80C14F5B5D92195DEA03AC2454CEF2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/pmnxwhNwxE39EOKvaIyMTg6hKVU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:19:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211723 IP: 2001:67c:296c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:c1:4f:5b:5d:92:19:5d:ea:03:ac:24:54:ce:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a669f1c21370c44dfd10e2af688c8c4e0ea12955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d8:a5:be:1f:cf:14:f1:0d:65:d3:e1:4b:4d: 36:62:74:58:f8:c4:84:b1:bc:35:6c:4c:79:34:59: f3:14:cd:97:b0:d1:c4:78:3b:9b:af:6a:63:22:a5: 74:63:e2:9a:a3:06:61:e4:dc:da:cb:57:9f:9c:5b: c0:72:39:9d:de:3e:e7:c9:d0:27:0c:2c:b0:b4:dc: e3:a9:72:bc:41:83:df:e2:4f:f3:80:20:1b:56:43: 18:33:de:30:b3:ba:45:f2:64:5f:f1:29:c3:9b:3c: 86:a2:29:f5:f6:97:1f:13:9c:73:b6:b9:d0:57:4e: 0c:bb:68:87:6f:74:a5:90:35:16:93:aa:4e:5b:15: de:52:2f:2c:b5:07:7f:81:44:85:a6:8c:20:2c:1c: af:8e:a6:56:af:cb:4b:ac:1b:0b:b0:e7:b6:fd:11: f0:83:76:75:36:00:06:07:c5:8b:4a:23:7b:5c:20: 97:b3:cb:74:69:90:c2:c9:de:24:09:30:c6:3f:45: c4:04:05:a2:98:a7:3e:05:e5:fa:f3:7e:b5:7b:24: b1:50:16:52:3f:cb:81:1a:b2:47:33:03:78:a2:a8: c1:2a:10:93:dc:bb:a5:5e:82:c9:84:2b:19:f6:89: 8f:2f:e7:73:ba:ad:ca:b3:2b:9c:b2:3d:e9:91:dc: 3b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:69:F1:C2:13:70:C4:4D:FD:10:E2:AF:68:8C:8C:4E:0E:A1:29:55 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/pmnxwhNwxE39EOKvaIyMTg6hKVU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:296c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211723 Signature Algorithm: sha256WithRSAEncryption 41:a3:96:aa:8b:17:4c:88:66:6e:e5:67:74:58:b0:4a:23:04: ee:66:2e:b2:57:ec:c8:c9:13:67:ac:8f:00:94:63:7d:51:87: 45:ca:7a:2f:a7:45:cc:33:39:2d:1f:c6:15:62:34:7d:89:72: 41:b8:11:10:12:f8:ea:62:12:f0:64:68:31:96:51:18:e8:cd: 22:8b:a0:ce:a9:20:36:be:1a:cd:b9:8c:31:73:db:ca:8b:08: 74:d0:c5:91:4b:2a:f3:b1:a1:c7:9a:79:dd:29:f1:69:25:67: b2:7b:01:27:56:5a:62:74:96:f6:c9:96:8f:ba:5b:20:fa:c7: e1:3c:88:e7:9f:8a:84:e0:18:bf:ee:3a:45:e1:d3:28:82:b1: 76:5f:c6:c6:3e:24:fe:13:03:18:80:9c:f7:ac:64:44:7b:82: 5d:3e:1e:63:63:8b:4c:f4:0f:5f:13:dc:fe:71:c8:2b:9a:6a: 1c:c9:c3:c1:f4:4c:43:e3:04:b0:d0:0d:b6:64:25:83:09:e8: 10:f5:dd:04:6c:03:50:60:78:13:32:70:b2:b9:98:59:43:64: 3b:b4:15:d8:10:76:f1:a2:35:c1:78:78:23:96:3b:57:f9:12: 0b:c4:b5:d8:c3:d6:41:2f:a1:a3:50:25:eb:e6:76:d6:9c:7e: 08:42:29:1d -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt8gMFPW12SGV3qA6wkVM7yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNjY5ZjFjMjEzNzBjNDRkZmQxMGUyYWY2ODhjOGM0ZTBlYTEyOTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9ilvh/PFPENZdPhS002YnRY+MSE sbw1bEx5NFnzFM2XsNHEeDubr2pjIqV0Y+KaowZh5Nzay1efnFvAcjmd3j7nydAn DCywtNzjqXK8QYPf4k/zgCAbVkMYM94ws7pF8mRf8SnDmzyGoin19pcfE5xztrnQ V04Mu2iHb3SlkDUWk6pOWxXeUi8stQd/gUSFpowgLByvjqZWr8tLrBsLsOe2/RHw g3Z1NgAGB8WLSiN7XCCXs8t0aZDCyd4kCTDGP0XEBAWimKc+BeX68361eySxUBZS P8uBGrJHMwN4oqjBKhCT3LulXoLJhCsZ9omPL+dzuq3Ksyucsj3pkdw7kQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFKZp8cITcMRN/RDir2iMjE4OoSlVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5L2U3YjQw Yy00MTRiLTQ3M2EtYjhjNy1iN2IxNDgxNjI1YjEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvZTdiNDBj LTQxNGItNDczYS1iOGM3LWI3YjE0ODE2MjViMS8xL3Btbnh3aE53eEUzOUVPS3Zh SXlNVGc2aEtWVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfClsMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwM7CzANBgkqhkiG9w0BAQsFAAOCAQEAQaOWqosXTIhmbuVndFiwSiME7mYu slfsyMkTZ6yPAJRjfVGHRcp6L6dFzDM5LR/GFWI0fYlyQbgREBL46mIS8GRoMZZR GOjNIougzqkgNr4azbmMMXPbyosIdNDFkUsq87Ghx5p53SnxaSVnsnsBJ1ZaYnSW 9smWj7pbIPrH4TyI55+KhOAYv+46ReHTKIKxdl/Gxj4k/hMDGICc96xkRHuCXT4e Y2OLTPQPXxPc/nHIK5pqHMnDwfRMQ+MEsNANtmQlgwnoEPXdBGwDUGB4EzJwsrmY WUNkO7QV2BB28aI1wXh4I5Y7V/kSC8S12MPWQS+ho1Al6+Z21px+CEIpHQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:34 2026 by rpki-client