This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pqqcrek75rp8irsyODGAdjF9YH0.cer File: pqqcrek75rp8irsyODGAdjF9YH0.cer (raw, json) Hash identifier: 7/EGgGYFoftqyJs0CsgR+T/wWR0DoYXOwRb22/+f/n8= Subject key identifier: A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C80B7416B6702846803C5CEDCE5F8EB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/pqqcrek75rp8irsyODGAdjF9YH0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:19:28 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203497 AS: 207668 AS: 209423 IP: 45.66.20.0/22 IP: 45.144.120.0/22 IP: 91.211.224.0/22 IP: 194.53.192.0/22 IP: 2a09:60c0::/29 IP: 2a0c:7240::/29 IP: 2a0d:8840::/29 IP: 2a0e:ed40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:b7:41:6b:67:02:84:68:03:c5:ce:dc:e5:f8:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a6aa9cade93be6ba7c8abb3238318076317d607d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:75:a1:0a:72:d3:2f:b8:0c:97:4a:14:c0:40: b0:d2:16:78:35:4e:71:ef:2c:d4:a6:d0:40:b0:fc: 84:9f:9f:a9:4f:17:d5:cb:f4:d6:fd:02:c7:f2:ae: a9:9f:dc:f7:54:64:0a:66:4d:2a:0c:26:2e:aa:e6: 59:b5:e4:69:89:2c:87:c5:6e:1c:51:ef:d3:35:3f: 49:f9:43:2b:75:7e:1c:44:d6:85:04:dd:8f:1e:a4: db:44:84:63:73:e6:1e:4c:13:3a:82:71:6a:62:1c: 9a:45:a0:e8:c3:85:86:d0:2a:c4:0f:0f:d1:62:c9: 03:4a:4a:de:15:bd:86:db:44:a4:fc:99:5b:df:8f: 9e:16:8c:2b:85:14:6b:98:65:97:84:8a:3d:48:ef: 46:4c:f3:d0:17:d4:0c:89:68:0d:d7:74:55:e3:e8: cb:e5:c1:2a:96:28:37:71:2c:e8:97:fd:9a:df:8e: 2c:63:77:23:16:b7:cb:6c:1d:6a:06:80:d5:4a:bc: d3:4b:40:af:10:39:a7:42:93:0b:80:4f:92:8e:7b: b1:b5:07:f4:d3:d3:ef:fb:bb:79:a2:88:85:c0:06: 54:f2:fe:cc:3a:c3:ca:3e:a2:02:5d:22:28:9e:13: b4:82:5f:ae:02:80:bb:24:bc:af:94:37:25:6d:df: 89:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/pqqcrek75rp8irsyODGAdjF9YH0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.66.20.0/22 45.144.120.0/22 91.211.224.0/22 194.53.192.0/22 IPv6: 2a09:60c0::/29 2a0c:7240::/29 2a0d:8840::/29 2a0e:ed40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203497 207668 209423 Signature Algorithm: sha256WithRSAEncryption 40:52:54:f5:e0:86:a4:a0:0d:85:a4:9a:9e:1c:bb:ee:08:29: bd:88:0d:53:86:94:20:32:6b:1e:d0:10:4f:08:b1:fd:d4:e0: 44:ba:0c:72:cf:f7:46:18:29:b7:35:8f:a4:67:66:b6:a3:b8: 19:cf:11:4a:c5:07:44:55:79:d4:f4:07:e6:60:d3:89:c9:14: e2:8d:ca:8f:ee:c1:0b:1c:be:74:37:66:d3:81:0c:6b:43:51: 71:ec:df:95:7c:7f:a7:e3:16:17:07:8a:58:bb:a0:33:00:0f: e8:a0:01:1c:ce:0d:f3:42:fe:4e:d0:68:18:ee:90:89:2f:8a: ff:80:f3:80:66:08:7e:83:d3:76:97:16:a9:b1:6f:56:73:ff: bb:1b:67:1d:2a:40:33:49:0f:1d:4f:3f:a3:a8:81:67:bd:81: f6:3e:39:c0:58:0a:66:a0:af:bb:19:0b:bd:e8:ec:29:b9:a5: b7:72:e6:50:fd:2c:db:1d:5c:cc:86:1c:9a:e1:67:11:ea:2f: fb:a0:6e:82:eb:df:d4:26:a5:c0:a9:5f:9f:c1:26:bd:bc:50: cc:00:e7:87:5a:2f:98:70:e4:dd:dd:f6:41:b7:d9:46:f3:25: 26:4c:25:14:4f:98:db:04:b8:dc:32:5e:33:a0:07:f3:a7:69: 57:01:ce:c8 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgISAZt8gLdBa2cChGgDxc7c5fjrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNmFhOWNhZGU5M2JlNmJhN2M4YWJiMzIzODMxODA3NjMxN2Q2MDdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XWhCnLTL7gMl0oUwECw0hZ4NU5x 7yzUptBAsPyEn5+pTxfVy/TW/QLH8q6pn9z3VGQKZk0qDCYuquZZteRpiSyHxW4c Ue/TNT9J+UMrdX4cRNaFBN2PHqTbRIRjc+YeTBM6gnFqYhyaRaDow4WG0CrEDw/R YskDSkreFb2G20Sk/Jlb34+eFowrhRRrmGWXhIo9SO9GTPPQF9QMiWgN13RV4+jL 5cEqlig3cSzol/2a344sY3cjFrfLbB1qBoDVSrzTS0CvEDmnQpMLgE+SjnuxtQf0 09Pv+7t5ooiFwAZU8v7MOsPKPqICXSIonhO0gl+uAoC7JLyvlDclbd+JFwIDAQAB o4IC4DCCAtwwHQYDVR0OBBYEFKaqnK3pO+a6fIq7MjgxgHYxfWB9MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VkL2E5NzBj Ni1jMTE4LTQ1MmUtYTU2Zi1lYzQ2N2ZhODYzNmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQvYTk3MGM2 LWMxMTgtNDUyZS1hNTZmLWVjNDY3ZmE4NjM2ZS8xL3BxcWNyZWs3NXJwOGlyc3lP REdBZGpGOVlIMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFUGCCsGAQUF BwEHAQH/BEYwRDAeBAIAATAYAwQCLUIUAwQCLZB4AwQCW9PgAwQCwjXAMCIEAgAC MBwDBQMqCWDAAwUDKgxyQAMFAyoNiEADBQMqDu1AMCQGCCsGAQUFBwEIAQH/BBUw E6ARMA8CAwMa6QIDAys0AgMDMg8wDQYJKoZIhvcNAQELBQADggEBAEBSVPXghqSg DYWkmp4cu+4IKb2IDVOGlCAyax7QEE8Isf3U4ES6DHLP90YYKbc1j6RnZrajuBnP EUrFB0RVedT0B+Zg04nJFOKNyo/uwQscvnQ3ZtOBDGtDUXHs35V8f6fjFhcHili7 oDMAD+igARzODfNC/k7QaBjukIkviv+A84BmCH6D03aXFqmxb1Zz/7sbZx0qQDNJ Dx1PP6OogWe9gfY+OcBYCmagr7sZC73o7Cm5pbdy5lD9LNsdXMyGHJrhZxHqL/ug boLr39QmpcCpX5/BJr28UMwA54daL5hw5N3d9kG32UbzJSZMJRRPmNsEuNwyXjOg B/OnaVcBzsg= -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:37 2026 by rpki-client