This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q-CopGLQ3h9NMBLD455c2mA-j5E.cer File: q-CopGLQ3h9NMBLD455c2mA-j5E.cer (raw, json) Hash identifier: yUVrLbG7hGFufbYBy/zOyKnab1Jkx8kiEVZ5GUqR7lQ= Subject key identifier: AB:E0:A8:A4:62:D0:DE:1F:4D:30:12:C3:E3:9E:5C:DA:60:3E:8F:91 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA46A6F7CE9C62CAE7ECBCCD5DC4859 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/q-CopGLQ3h9NMBLD455c2mA-j5E.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:18:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 58125 IP: 91.239.14.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:6a:6f:7c:e9:c6:2c:ae:7e:cb:cc:d5:dc:48:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=abe0a8a462d0de1f4d3012c3e39e5cda603e8f91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:d4:8e:46:8d:37:42:d4:32:a1:a6:a2:68:0f: 57:c6:63:03:48:67:e2:8c:0a:f8:ff:6e:a6:3e:22: 5a:5e:7f:c9:32:a5:95:f8:09:58:44:f0:8b:ea:a8: 65:0d:db:d5:f2:01:ea:27:3d:62:80:f7:26:8e:d8: a3:0b:f8:eb:10:17:a6:55:d1:78:17:17:05:9f:1c: 47:46:4f:92:3a:80:86:ad:31:cd:f7:2e:fb:fe:b1: 1e:37:b1:82:da:93:cb:fb:33:f4:2a:23:a4:c1:b0: 1b:77:a6:9a:e0:9b:be:60:79:7a:1f:b8:6a:f9:e7: d7:c9:02:29:e5:f1:22:b7:2f:f4:2f:b6:3e:85:a6: af:73:97:4e:2b:a4:40:96:6e:1c:ec:b6:5f:d2:eb: df:98:b7:c2:88:2e:e2:b2:d5:c1:e9:51:06:fd:ae: cd:05:c6:c2:d1:89:fa:80:5c:f8:1d:71:a4:f7:cd: f4:d9:03:b3:09:f4:44:e8:99:14:2c:2f:dc:b5:df: 54:27:93:8a:e9:e0:b3:80:fa:1e:31:47:c3:00:b4: 62:df:10:a6:38:ed:ed:40:62:dd:d4:81:89:82:c1: 3f:10:58:cb:f8:15:e1:ba:1b:ab:0c:60:c9:ef:bd: 30:b5:e1:b3:7c:f1:22:64:db:70:2d:88:e4:8c:dc: f2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E0:A8:A4:62:D0:DE:1F:4D:30:12:C3:E3:9E:5C:DA:60:3E:8F:91 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/q-CopGLQ3h9NMBLD455c2mA-j5E.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.239.14.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 58125 Signature Algorithm: sha256WithRSAEncryption 59:a8:14:b7:08:5b:8e:e6:ac:06:fe:bc:c3:8a:ca:97:20:84: 75:d4:82:9d:a1:80:00:7e:22:53:6c:d8:b2:8f:36:50:00:96: b8:f4:86:7b:a8:ff:43:af:3e:67:79:30:7f:67:86:8e:83:0f: 32:b0:25:ff:fe:26:dd:bb:57:68:dc:e7:e0:c3:84:71:55:d9: 12:6d:f2:37:9f:ba:93:59:10:88:23:6e:f4:7a:14:e1:b5:ab: fc:13:92:43:bb:8b:e7:2c:ea:2b:6a:52:4e:b5:b8:4e:07:77: 6a:5f:bf:dd:44:25:d1:72:ed:62:d4:06:5c:e9:08:16:73:d9: 3b:ec:b1:de:57:a2:1a:5c:06:00:5c:f7:da:12:6a:3c:df:98: c3:da:68:4f:a4:6a:e5:96:e9:1c:8b:26:68:6b:db:02:eb:83: dc:6f:d5:a3:c0:76:9e:a1:a5:e7:72:20:ef:ea:4c:c0:5b:57: 64:2c:55:db:c2:2f:91:3c:3b:e7:c3:41:b1:3b:7c:19:1b:49: a6:c0:a1:7a:7a:c1:0f:b5:7a:bf:94:21:e0:44:98:10:b2:91: 35:fc:fa:ba:91:31:9d:42:66:77:77:ae:80:7a:cc:78:ee:a0: a4:6a:9c:b0:ca:e1:f3:01:0d:80:cc:3a:23:ad:08:7d:08:90: 2c:3c:eb:04 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt7pGpvfOnGLK5+y8zV3EhZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYmUwYThhNDYyZDBkZTFmNGQzMDEyYzNlMzllNWNkYTYwM2U4ZjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhdSORo03QtQyoaaiaA9XxmMDSGfi jAr4/26mPiJaXn/JMqWV+AlYRPCL6qhlDdvV8gHqJz1igPcmjtijC/jrEBemVdF4 FxcFnxxHRk+SOoCGrTHN9y77/rEeN7GC2pPL+zP0KiOkwbAbd6aa4Ju+YHl6H7hq +efXyQIp5fEity/0L7Y+haavc5dOK6RAlm4c7LZf0uvfmLfCiC7istXB6VEG/a7N BcbC0Yn6gFz4HXGk98302QOzCfRE6JkULC/ctd9UJ5OK6eCzgPoeMUfDALRi3xCm OO3tQGLd1IGJgsE/EFjL+BXhuhurDGDJ770wteGzfPEiZNtwLYjkjNzyeQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFKvgqKRi0N4fTTASw+OeXNpgPo+RMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEyL2RlYzMx Yy1kY2Q0LTRkYTctOWRkYS1jNGEwN2Q2MTY4OWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIvZGVjMzFj LWRjZDQtNGRhNy05ZGRhLWM0YTA3ZDYxNjg5ZC8xL3EtQ29wR0xRM2g5Tk1CTEQ0 NTVjMm1BLWo1RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW+8OMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDjDTANBgkqhkiG9w0BAQsFAAOCAQEAWagUtwhbjuasBv68w4rKlyCEddSCnaGA AH4iU2zYso82UACWuPSGe6j/Q68+Z3kwf2eGjoMPMrAl//4m3btXaNzn4MOEcVXZ Em3yN5+6k1kQiCNu9HoU4bWr/BOSQ7uL5yzqK2pSTrW4Tgd3al+/3UQl0XLtYtQG XOkIFnPZO+yx3leiGlwGAFz32hJqPN+Yw9poT6Rq5ZbpHIsmaGvbAuuD3G/Vo8B2 nqGl53Ig7+pMwFtXZCxV28IvkTw758NBsTt8GRtJpsChenrBD7V6v5Qh4ESYELKR Nfz6upExnUJmd3eugHrMeO6gpGqcsMrh8wENgMw6I60IfQiQLDzrBA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:31 2026 by rpki-client