This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q3dzqhxxoCJlFGujNszC5Y3q24g.cer File: q3dzqhxxoCJlFGujNszC5Y3q24g.cer (raw, json) Hash identifier: QlNEKI5rDKZKtyue4GRuKmgdsU392JJ+I4AwwC0fDPI= Subject key identifier: AB:77:73:AA:1C:71:A0:22:65:14:6B:A3:36:CC:C2:E5:8D:EA:DB:88 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED18B9F6C39FC48AC2E2E194D80E58 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/01f997-f027-4a3a-8552-e6dfba1df230/1/q3dzqhxxoCJlFGujNszC5Y3q24g.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/01f997-f027-4a3a-8552-e6dfba1df230/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202928 IP: 2001:678:18c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:18:b9:f6:c3:9f:c4:8a:c2:e2:e1:94:d8:0e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab7773aa1c71a02265146ba336ccc2e58deadb88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0c:e2:c8:df:9b:b1:97:ed:b9:93:d1:38:66: c1:f8:16:27:80:c0:44:78:08:5f:be:34:41:42:7b: 89:3b:d1:03:f7:6b:0f:5f:e9:cd:ec:5f:a4:1a:ce: cb:e4:0c:37:11:11:d1:e4:58:a7:e1:80:43:d7:01: fd:2e:82:39:16:cc:cb:83:63:ba:d8:d5:ec:8c:b7: 5d:6f:09:72:70:09:60:f3:06:d5:c2:31:51:51:71: c8:e7:1d:49:25:15:c4:13:80:27:87:c2:2f:04:60: 0a:48:97:9d:c3:2b:6b:3e:59:2d:7b:ac:93:dc:58: e0:bf:ab:56:aa:88:30:95:8a:bb:52:62:08:eb:ea: 5e:fd:99:c0:02:ad:db:3b:9f:71:f4:4d:16:b4:20: ff:fd:49:7c:6f:4e:49:a6:f0:33:49:0d:d4:26:a9: 1a:8a:04:33:b1:f0:4a:32:f5:55:c3:f9:59:68:91: 15:4c:9b:d2:ae:65:17:52:e0:01:c6:c7:b1:cf:5e: d0:81:d3:c7:ef:99:a2:91:54:10:8e:d8:f4:43:e9: c1:a4:ce:3e:9d:9a:a7:79:d5:ec:fb:e8:e1:5b:e0: c0:04:c0:76:07:d7:cf:15:df:02:80:34:9a:0f:41: a0:af:cc:94:20:01:60:44:9d:2b:47:35:12:95:f3: 58:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:77:73:AA:1C:71:A0:22:65:14:6B:A3:36:CC:C2:E5:8D:EA:DB:88 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/01f997-f027-4a3a-8552-e6dfba1df230/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/01f997-f027-4a3a-8552-e6dfba1df230/1/q3dzqhxxoCJlFGujNszC5Y3q24g.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:18c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202928 Signature Algorithm: sha256WithRSAEncryption 21:7a:ef:fc:ba:aa:df:bf:9a:51:45:7b:4e:61:1e:56:30:2f: af:e0:d1:d7:87:a0:6b:08:10:f2:d3:fb:45:4f:95:de:59:9c: a2:2f:68:b9:68:18:09:85:db:44:68:78:93:14:f3:6b:32:2d: e3:87:9f:f4:6d:e4:a9:8a:dc:04:bf:6c:89:45:1a:1d:a0:ed: 54:a2:d6:cd:d9:42:41:08:9b:3f:1e:91:0d:fc:75:9c:ed:d6: 62:d5:70:f2:d5:ac:9f:92:4f:f1:81:e8:9d:8d:30:33:64:4f: 9f:09:bf:78:28:2e:33:e4:af:9b:00:9b:0f:63:b7:08:1f:b6: d2:6b:c8:96:48:bd:bf:e0:14:fb:9c:2c:7c:f2:cd:ea:86:48: 9c:0c:bd:bb:43:4a:27:1c:ff:cf:39:c9:b6:0c:a0:8b:7c:f5: 76:75:a6:e6:48:4c:64:43:d6:13:2e:6a:b4:ce:d6:a7:53:ce: aa:c3:5a:e0:07:ea:ec:bd:22:97:0b:9d:e3:b4:f1:45:6e:25: 83:ed:78:9a:36:53:f4:ac:15:54:a0:87:fe:fe:b5:0f:30:38: 6b:a4:b8:a5:5c:44:ea:ae:86:ab:b1:af:58:33:3c:ed:8c:9a: 41:8b:d0:f0:c1:86:be:aa:ca:55:5b:19:67:dc:0f:b9:8e:95: 47:24:47:a4 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt87Ri59sOfxIrC4uGU2A5YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjc3NzNhYTFjNzFhMDIyNjUxNDZiYTMzNmNjYzJlNThkZWFkYjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywziyN+bsZftuZPROGbB+BYngMBE eAhfvjRBQnuJO9ED92sPX+nN7F+kGs7L5Aw3ERHR5Fin4YBD1wH9LoI5FszLg2O6 2NXsjLddbwlycAlg8wbVwjFRUXHI5x1JJRXEE4Anh8IvBGAKSJedwytrPlkte6yT 3Fjgv6tWqogwlYq7UmII6+pe/ZnAAq3bO59x9E0WtCD//Ul8b05JpvAzSQ3UJqka igQzsfBKMvVVw/lZaJEVTJvSrmUXUuABxsexz17QgdPH75mikVQQjtj0Q+nBpM4+ nZqnedXs++jhW+DABMB2B9fPFd8CgDSaD0Ggr8yUIAFgRJ0rRzUSlfNYzQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFKt3c6occaAiZRRrozbMwuWN6tuIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU1LzAxZjk5 Ny1mMDI3LTRhM2EtODU1Mi1lNmRmYmExZGYyMzAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUvMDFmOTk3 LWYwMjctNGEzYS04NTUyLWU2ZGZiYTFkZjIzMC8xL3EzZHpxaHh4b0NKbEZHdWpO c3pDNVkzcTI0Zy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAGMMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMYsDANBgkqhkiG9w0BAQsFAAOCAQEAIXrv/Lqq37+aUUV7TmEeVjAvr+DR 14egawgQ8tP7RU+V3lmcoi9ouWgYCYXbRGh4kxTzazIt44ef9G3kqYrcBL9siUUa HaDtVKLWzdlCQQibPx6RDfx1nO3WYtVw8tWsn5JP8YHonY0wM2RPnwm/eCguM+Sv mwCbD2O3CB+20mvIlki9v+AU+5wsfPLN6oZInAy9u0NKJxz/zznJtgygi3z1dnWm 5khMZEPWEy5qtM7Wp1POqsNa4Afq7L0ilwud47TxRW4lg+14mjZT9KwVVKCH/v61 DzA4a6S4pVxE6q6Gq7GvWDM87YyaQYvQ8MGGvqrKVVsZZ9wPuY6VRyRHpA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:21 2026 by rpki-client