This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer File: q3rQAuSQheSApRIaeaJvztr_oZs.cer (raw, json) Hash identifier: FjmstfpBSZHsz30S2RNkD9HPObUkGP0416KtaKFU0XI= Subject key identifier: AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE349D456004BAAEECE8B8BF20BE5E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:19:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 56996 IP: 91.229.237.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:34:9d:45:60:04:ba:ae:ec:e8:b8:bf:20:be:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab7ad002e49085e480a5121a79a26fcedaffa19b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6d:f8:15:a0:18:49:e4:ba:23:cf:d5:7f:f8: 6c:1d:36:02:66:74:55:82:e2:7c:d8:5b:3d:38:e2: e0:8e:75:3e:4d:e9:cd:88:a3:1a:d1:97:91:f5:74: 47:8a:92:4e:d2:fc:7d:21:07:8c:2c:01:1c:c3:ee: 54:53:8e:91:45:4c:f7:cb:9e:73:0a:95:9a:01:ff: ea:7d:b3:24:ce:4b:31:4f:57:f9:a1:ab:18:e9:07: d0:a3:e2:4c:5f:ce:eb:ef:f9:5a:f7:c9:a3:a8:23: 5e:16:b0:50:24:df:e1:e5:37:01:78:d7:fa:a5:22: de:38:58:be:91:30:c5:81:a1:56:7c:b9:cc:de:78: 5b:91:48:6a:be:d4:30:fd:36:b8:23:0b:37:7a:30: a5:f4:e8:91:7e:98:43:e3:0a:e6:57:02:dd:fe:0f: c0:41:d3:51:08:42:a7:41:7a:1d:34:8a:c7:26:a0: 03:95:d7:1b:95:72:4a:35:63:e2:91:77:04:30:e5: 3d:e4:94:2c:8a:cb:07:29:eb:eb:26:77:03:e0:e4: 53:62:5e:9b:96:b1:42:7d:94:a3:cc:0b:ed:98:96: dd:51:0a:bd:14:1c:2d:a6:c3:ae:3d:61:4d:a6:3b: d6:2f:d5:22:70:cf:63:08:0a:f1:d5:49:6f:c5:60: 03:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.229.237.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 56996 Signature Algorithm: sha256WithRSAEncryption 95:bf:6e:a7:b5:f9:a7:bd:65:7a:83:4c:cf:eb:c4:c4:9c:6a: 8a:ac:1b:ab:9b:e0:4e:47:9f:9c:b9:9f:90:67:6a:a0:72:37: e0:0c:fe:2f:8d:b3:98:5c:29:af:8c:9f:64:b2:9f:13:7e:7f: 02:fd:37:71:b2:0a:dd:9c:d0:c6:1f:ed:c8:54:fd:a3:74:73: d1:00:93:d9:38:5a:15:3f:1d:19:67:10:b3:5d:88:0d:64:21: 1c:15:5b:c4:91:a2:54:d7:7e:09:da:d1:32:26:5e:56:1f:00: 3a:8e:b7:21:11:64:0c:fb:f6:16:1b:ec:e7:58:0b:cd:b7:93: 92:ac:71:dc:fc:59:21:53:8c:b7:58:16:76:ae:7b:ee:10:09: 27:7f:47:1c:ec:54:fd:0c:dd:10:f6:1c:b8:14:b1:e9:b7:33: e5:12:86:58:8d:47:73:9f:7c:0b:69:a0:24:34:ab:3a:78:86: 51:c1:cb:fe:18:07:8b:0c:de:de:9a:32:89:92:b4:01:66:d3: 8d:db:50:e6:e0:d3:93:a9:12:c5:cb:67:ba:b7:37:52:84:eb: b5:f6:95:9e:77:e7:a6:15:2f:6e:07:2e:45:fb:6c:7d:51:62: fd:76:63:8f:6d:fd:9e:e8:88:be:0e:c4:64:50:d1:78:6c:2a: ad:ad:6a:b3 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt87jSdRWAEuq7s6Li/IL5eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjdhZDAwMmU0OTA4NWU0ODBhNTEyMWE3OWEyNmZjZWRhZmZhMTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkW34FaAYSeS6I8/Vf/hsHTYCZnRV guJ82Fs9OOLgjnU+TenNiKMa0ZeR9XRHipJO0vx9IQeMLAEcw+5UU46RRUz3y55z CpWaAf/qfbMkzksxT1f5oasY6QfQo+JMX87r7/la98mjqCNeFrBQJN/h5TcBeNf6 pSLeOFi+kTDFgaFWfLnM3nhbkUhqvtQw/Ta4Iws3ejCl9OiRfphD4wrmVwLd/g/A QdNRCEKnQXodNIrHJqADldcblXJKNWPikXcEMOU95JQsissHKevrJncD4ORTYl6b lrFCfZSjzAvtmJbdUQq9FBwtpsOuPWFNpjvWL9UicM9jCArx1UlvxWADHQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFKt60ALkkIXkgKUSGnmib87a/6GbMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIyLzI0ZmJi Ni04NmJjLTQ2Y2ItODhlNS1iNTg3M2JhOGZlNDcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIvMjRmYmI2 LTg2YmMtNDZjYi04OGU1LWI1ODczYmE4ZmU0Ny8xL3EzclFBdVNRaGVTQXBSSWFl YUp2enRyX29acy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW+XtMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDepDANBgkqhkiG9w0BAQsFAAOCAQEAlb9up7X5p71leoNMz+vExJxqiqwbq5vg TkefnLmfkGdqoHI34Az+L42zmFwpr4yfZLKfE35/Av03cbIK3ZzQxh/tyFT9o3Rz 0QCT2ThaFT8dGWcQs12IDWQhHBVbxJGiVNd+CdrRMiZeVh8AOo63IRFkDPv2Fhvs 51gLzbeTkqxx3PxZIVOMt1gWdq577hAJJ39HHOxU/QzdEPYcuBSx6bcz5RKGWI1H c598C2mgJDSrOniGUcHL/hgHiwze3poyiZK0AWbTjdtQ5uDTk6kSxctnurc3UoTr tfaVnnfnphUvbgcuRftsfVFi/XZjj239nuiIvg7EZFDReGwqra1qsw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:36 2026 by rpki-client