This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer File: pqBZBOyBdGoKZtIH9dNvjZeIig0.cer (raw, json) Hash identifier: HyUFAtgnJipA/AlXuTpkJR75eCKpb9ECZT8JmNWQPh0= Subject key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CECC39D7646F6371D249C5E91318C57 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 60318 IP: 193.104.157.0/24 IP: 2a06:b300::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:c3:9d:76:46:f6:37:1d:24:9c:5e:91:31:8c:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:57:81:19:a8:c8:12:0b:8c:80:84:55:13:ab: 1a:69:e1:61:07:6e:bd:8a:51:b0:a0:c8:9b:a0:81: 46:ba:98:ab:ca:4d:c0:43:a4:de:42:d6:0a:19:cf: b9:67:7b:f6:cc:02:2c:f4:db:95:86:5f:77:07:88: d8:b5:9a:d6:6e:ce:0b:62:0e:bb:54:19:4b:1a:34: 28:64:7d:d5:18:bf:61:8b:a4:17:98:e7:1e:97:aa: 45:49:20:1a:74:31:a9:0e:30:93:ec:35:11:26:a3: d7:24:5f:45:22:77:76:a6:8b:e2:32:0c:97:e2:59: c9:e4:1e:62:93:63:32:9c:68:2d:5f:e8:f2:b1:f9: 68:0a:7c:a5:24:4c:eb:69:79:58:3c:d9:04:0e:0f: a8:4d:84:f3:3e:16:16:31:e6:8a:eb:5a:01:aa:34: f3:ae:60:11:8b:e4:68:24:64:35:02:eb:d8:96:59: cc:7f:b4:73:aa:e0:b8:e3:f2:38:04:4c:db:db:fd: b2:fd:49:5d:7d:8f:3e:f9:f1:2e:8c:c8:a2:5b:9a: ae:d0:97:f4:9d:0c:fa:b5:11:f2:db:e6:43:70:d0: 8d:13:bd:54:27:70:d2:22:21:08:a6:08:ca:33:42: 91:ac:0d:37:2a:90:23:20:84:61:62:e3:3e:99:da: 9a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.104.157.0/24 IPv6: 2a06:b300::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 60318 Signature Algorithm: sha256WithRSAEncryption 5b:b7:cc:fe:4f:98:0d:54:84:a8:2b:c3:68:ca:56:4b:29:f0: 8a:0e:9d:1c:dc:67:aa:52:a2:83:9a:d7:a4:35:b8:df:57:ac: 8c:d8:b3:65:9e:77:67:24:dd:5c:b7:d8:e5:2f:11:b4:db:01: 5c:96:91:66:be:fe:40:41:b8:79:35:19:a9:11:78:c2:ce:fb: 21:c6:a7:7e:d4:8d:60:85:1d:f3:06:33:8f:9c:fc:d0:a0:9c: 05:a5:30:bd:9c:16:9e:fb:09:af:d8:6a:a3:c5:dd:e3:18:46: 6f:4d:a6:11:d4:66:a6:ea:57:19:fe:32:29:31:65:f1:31:0c: e6:6d:94:8d:14:bb:48:ea:8e:fe:17:c1:42:93:58:a4:8f:89: b2:9c:48:06:02:5d:cd:ab:43:6e:02:c7:9d:5a:2a:fd:65:16: 54:01:64:43:0a:5a:e2:27:69:81:99:ec:4a:47:9b:05:12:45: ca:b1:f6:56:af:f9:da:76:42:03:71:e1:ec:80:1c:e5:ba:5f: e8:88:2d:1d:a1:20:96:82:80:d5:c1:37:5e:bb:99:e2:47:9c: 8b:1e:0a:23:78:fe:1d:f1:b6:49:35:bd:ff:92:d6:ad:ba:b7: 62:bf:23:e2:30:7f:bf:78:30:9f:c5:47:09:b0:52:be:b6:8f: c1:0e:fa:50 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt87MOddkb2Nx0knF6RMYxXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNmEwNTkwNGVjODE3NDZhMGE2NmQyMDdmNWQzNmY4ZDk3ODg4YTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtleBGajIEguMgIRVE6saaeFhB269 ilGwoMiboIFGupiryk3AQ6TeQtYKGc+5Z3v2zAIs9NuVhl93B4jYtZrWbs4LYg67 VBlLGjQoZH3VGL9hi6QXmOcel6pFSSAadDGpDjCT7DURJqPXJF9FInd2poviMgyX 4lnJ5B5ik2MynGgtX+jysfloCnylJEzraXlYPNkEDg+oTYTzPhYWMeaK61oBqjTz rmARi+RoJGQ1AuvYllnMf7RzquC44/I4BEzb2/2y/UldfY8++fEujMiiW5qu0Jf0 nQz6tRHy2+ZDcNCNE71UJ3DSIiEIpgjKM0KRrA03KpAjIIRhYuM+mdqaRQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFKagWQTsgXRqCmbSB/XTb42XiIoNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI2LzNiNTFj OS1iMzdiLTQ3NjctODhkOS01ZGY2YTQ2MzAzNWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYvM2I1MWM5 LWIzN2ItNDc2Ny04OGQ5LTVkZjZhNDYzMDM1Yi8xL3BxQlpCT3lCZEdvS1p0SUg5 ZE52alplSWlnMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwWidMA0EAgACMAcDBQAqBrMAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDrnjANBgkqhkiG9w0BAQsFAAOCAQEAW7fM/k+YDVSE qCvDaMpWSynwig6dHNxnqlKig5rXpDW431esjNizZZ53ZyTdXLfY5S8RtNsBXJaR Zr7+QEG4eTUZqRF4ws77IcanftSNYIUd8wYzj5z80KCcBaUwvZwWnvsJr9hqo8Xd 4xhGb02mEdRmpupXGf4yKTFl8TEM5m2UjRS7SOqO/hfBQpNYpI+JspxIBgJdzatD bgLHnVoq/WUWVAFkQwpa4idpgZnsSkebBRJFyrH2Vq/52nZCA3Hh7IAc5bpf6Igt HaEgloKA1cE3XruZ4kecix4KI3j+HfG2STW9/5LWrbq3Yr8j4jB/v3gwn8VHCbBS vraPwQ76UA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:02:56 2026 by rpki-client