This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q2yACAY3-ssW9RnF2X7Cez2FCX0.cer File: q2yACAY3-ssW9RnF2X7Cez2FCX0.cer (raw, json) Hash identifier: Syb3wynnVD+ktwlSJr5DktquBlU6DOlg5n2fqCLeiQI= Subject key identifier: AB:6C:80:08:06:37:FA:CB:16:F5:19:C5:D9:7E:C2:7B:3D:85:09:7D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019C1ED5856D93621F60C140E8F5B1A1E19C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/q2yACAY3-ssW9RnF2X7Cez2FCX0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Mon 02 Feb 2026 14:50:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 28925 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1e:d5:85:6d:93:62:1f:60:c1:40:e8:f5:b1:a1:e1:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Feb 2 14:50:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab6c80080637facb16f519c5d97ec27b3d85097d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:0e:89:cb:8d:b0:8a:b6:28:bf:92:dd:19:33: 91:6a:ae:d7:11:28:25:6d:c3:27:6c:f1:ab:56:bc: 67:10:15:4e:5e:27:f8:09:03:35:2f:27:49:74:fc: 13:1c:bb:99:c7:10:48:cf:ee:cb:44:9d:3e:87:6f: 16:2f:8c:ae:03:e2:86:37:56:46:95:44:b3:fb:b7: 50:f1:27:f4:f8:31:bd:1f:79:f6:46:31:e4:5b:82: 4c:db:85:69:0f:3a:30:c4:6a:a3:45:69:dd:d0:bc: a6:26:32:04:b0:d6:29:da:51:03:c4:64:e0:15:63: 51:75:b3:4d:f7:eb:84:ed:9e:bc:64:79:1b:a4:57: 84:d7:11:93:8e:6d:24:ac:c4:1e:d6:8a:3f:4d:0c: ff:fb:c9:07:36:fd:54:aa:88:cd:21:85:d5:a5:79: a8:b1:65:6e:da:2a:c4:3d:63:76:b2:25:38:6b:7f: 16:29:1e:53:92:0f:b5:16:7c:be:bb:ca:0b:cc:d3: 7b:e6:14:97:d5:39:0e:38:d8:bb:a1:50:c9:58:a5: 28:03:f0:79:3b:a8:d9:90:f1:67:d6:32:a6:e0:8e: c3:54:93:22:3a:ee:8e:ca:10:a1:07:d1:e0:be:60: f7:a9:b4:16:6b:8a:f3:fb:6c:17:40:ad:70:b3:56: db:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6C:80:08:06:37:FA:CB:16:F5:19:C5:D9:7E:C2:7B:3D:85:09:7D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/q2yACAY3-ssW9RnF2X7Cez2FCX0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 28925 Signature Algorithm: sha256WithRSAEncryption 2c:93:16:c8:6e:7d:07:81:8c:fc:16:01:c9:c2:ec:e9:88:32: c8:0f:de:1f:0f:99:fb:cb:5e:ba:d7:6a:42:2b:58:bb:f9:95: 34:e2:3a:53:bf:2c:af:5d:41:4e:14:90:3e:6f:94:47:ec:13: 96:c1:a1:f8:0c:b5:4c:2d:69:25:d0:40:54:32:f4:f1:de:ca: 60:3a:cb:50:7a:cc:5b:38:ad:71:31:ed:05:68:53:9b:5f:03: 96:81:23:38:17:72:b5:b6:cb:4e:00:b1:e5:d8:a3:9d:1c:b2: f4:98:68:3d:9b:be:8f:91:cf:f4:5d:4d:cc:9e:e3:a9:cd:32: 12:2a:f0:5b:6b:07:cf:c4:6c:47:c8:e7:8f:bc:5d:23:8d:a0: 66:3a:70:3c:c2:02:77:b1:ea:dc:e9:62:b4:77:05:fd:3a:aa: 74:3b:e5:1e:5b:ff:94:ca:47:56:9a:5c:30:61:36:d3:6a:e4: 3a:5a:31:eb:59:76:af:c2:5c:b9:0f:10:cd:5e:37:7b:76:85: a2:72:80:72:90:a3:f0:46:a9:9c:30:0d:2c:ef:b8:37:8f:1c: 66:63:ba:3b:b8:d5:87:e6:bf:0a:04:a2:e5:21:8d:91:d9:31: da:4c:bb:09:fb:1a:eb:41:c5:92:cc:52:60:db:6e:cb:39:cd: 6a:ad:cb:a3 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgISAZwe1YVtk2IfYMFA6PWxoeGcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMjAyMTQ1MDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjZjODAwODA2MzdmYWNiMTZmNTE5YzVkOTdlYzI3YjNkODUwOTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiQ6Jy42wirYov5LdGTORaq7XESgl bcMnbPGrVrxnEBVOXif4CQM1LydJdPwTHLuZxxBIz+7LRJ0+h28WL4yuA+KGN1ZG lUSz+7dQ8Sf0+DG9H3n2RjHkW4JM24VpDzowxGqjRWnd0LymJjIEsNYp2lEDxGTg FWNRdbNN9+uE7Z68ZHkbpFeE1xGTjm0krMQe1oo/TQz/+8kHNv1UqojNIYXVpXmo sWVu2irEPWN2siU4a38WKR5Tkg+1Fny+u8oLzNN75hSX1TkOONi7oVDJWKUoA/B5 O6jZkPFn1jKm4I7DVJMiOu6OyhChB9HgvmD3qbQWa4rz+2wXQK1ws1bbIQIDAQAB o4ICfjCCAnowHQYDVR0OBBYEFKtsgAgGN/rLFvUZxdl+wns9hQl9MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRkLzZhMmM1 Yy05ZTFiLTQ1NjEtYTRlOS1lOWUxZDkxYTk4MTYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQvNmEyYzVj LTllMWItNDU2MS1hNGU5LWU5ZTFkOTFhOTgxNi8xL3EyeUFDQVkzLXNzVzlSbkYy WDdDZXoyRkNYMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBkGCCsGAQUF BwEIAQH/BAowCKAGMAQCAnD9MA0GCSqGSIb3DQEBCwUAA4IBAQAskxbIbn0HgYz8 FgHJwuzpiDLID94fD5n7y16612pCK1i7+ZU04jpTvyyvXUFOFJA+b5RH7BOWwaH4 DLVMLWkl0EBUMvTx3spgOstQesxbOK1xMe0FaFObXwOWgSM4F3K1tstOALHl2KOd HLL0mGg9m76Pkc/0XU3MnuOpzTISKvBbawfPxGxHyOePvF0jjaBmOnA8wgJ3serc 6WK0dwX9Oqp0O+UeW/+UykdWmlwwYTbTauQ6WjHrWXavwly5DxDNXjd7doWicoBy kKPwRqmcMA0s77g3jxxmY7o7uNWH5r8KBKLlIY2R2THaTLsJ+xrrQcWSzFJg227L Oc1qrcuj -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:58 2026 by rpki-client