This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q5ddtDeN_KfClTuG07GNyLIY7Gs.cer File: q5ddtDeN_KfClTuG07GNyLIY7Gs.cer (raw, json) Hash identifier: jPR4BXZXhvNsrOrvEEaKg1r32sUGMD+YWcTKrRFhLlI= Subject key identifier: AB:97:5D:B4:37:8D:FC:A7:C2:95:3B:86:D3:B1:8D:C8:B2:18:EC:6B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B783448881AA4D180CB94AD3CD830AD0D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6c/1c8605-163e-4245-af12-cdbd556e1749/1/q5ddtDeN_KfClTuG07GNyLIY7Gs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6c/1c8605-163e-4245-af12-cdbd556e1749/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208283 AS: 208338 IP: 45.144.4.0/22 IP: 2a0e:e740::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:48:88:1a:a4:d1:80:cb:94:ad:3c:d8:30:ad:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab975db4378dfca7c2953b86d3b18dc8b218ec6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8b:a2:43:7c:44:26:b4:dc:19:3c:49:0b:26: 38:f2:af:3e:ea:b7:a1:3d:be:70:52:e4:9f:18:a5: 48:bd:27:37:2f:f2:de:ae:4c:af:e1:95:56:7b:6e: 3c:34:46:7e:0d:d5:ea:57:f2:08:da:75:22:50:9f: 52:78:83:f9:1f:f3:0c:60:ff:a2:45:3c:9d:96:ad: fc:b0:56:ae:23:ce:08:a6:fa:b4:97:1d:c3:89:5f: d0:59:e8:25:51:39:0a:da:3d:26:1b:6a:33:dd:d7: df:26:f2:5b:a3:d7:5c:79:7a:16:cc:bd:c0:61:99: 6f:09:44:aa:f9:42:bd:f6:a9:6e:18:4e:df:c4:64: 5f:68:d1:b8:6a:20:a2:b0:d2:a0:14:f1:0a:ad:51: 54:71:b0:45:a7:12:b1:54:b9:a9:dc:a7:16:a1:80: 46:01:b8:16:ae:0c:2a:39:a2:cd:50:eb:50:58:f5: 69:71:4e:7a:f6:03:21:3d:d2:d6:ab:f6:cc:a5:78: d7:17:c9:e5:f2:90:07:58:ab:5f:77:eb:a8:31:b5: a6:b3:f7:0f:73:4b:f7:83:27:c4:05:83:d7:9a:9d: 70:91:e7:b2:fd:98:52:8c:f8:14:32:df:28:e6:b9: e8:3a:21:a9:53:c7:78:54:3a:fc:01:9c:da:9a:24: 52:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:97:5D:B4:37:8D:FC:A7:C2:95:3B:86:D3:B1:8D:C8:B2:18:EC:6B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c8605-163e-4245-af12-cdbd556e1749/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c8605-163e-4245-af12-cdbd556e1749/1/q5ddtDeN_KfClTuG07GNyLIY7Gs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.144.4.0/22 IPv6: 2a0e:e740::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208283 208338 Signature Algorithm: sha256WithRSAEncryption 16:b9:98:72:9a:08:fb:d3:74:ed:d0:3b:52:88:4a:a8:a3:7b: 91:c6:fa:da:01:9d:3a:33:8d:20:c9:57:40:35:14:90:a6:81: 89:20:06:65:2b:14:97:0f:bc:94:d0:20:85:d9:e0:47:4d:c3: e8:55:51:49:5e:d3:0c:f1:bf:bd:95:92:51:86:70:95:79:97: 03:e7:da:61:99:85:69:de:a0:7d:7b:f6:33:96:12:95:11:ff: 50:09:c3:3e:7f:f6:e6:54:76:a1:ba:7b:0e:a0:df:c0:c9:1d: eb:0f:00:ed:b7:0f:d1:5f:20:5c:71:c0:67:d1:51:2c:34:6f: 7b:37:5e:54:35:16:42:48:d0:bf:d8:ff:36:fd:72:e5:2b:10: 16:99:c6:51:8d:d9:05:fd:2d:b6:18:12:8f:95:ef:b3:7a:20: ff:04:a8:a5:95:bc:58:16:c4:55:67:a3:1b:f8:fc:4d:38:a1: 59:56:5a:ee:cd:78:69:4a:92:9b:d0:2d:5e:e4:24:84:9f:f6: 65:d1:14:33:6c:1c:3c:dd:79:ef:3c:17:db:16:d5:a4:c8:a3: 3b:16:9c:0f:21:db:bb:48:f1:79:4a:cf:6c:8c:85:cf:e2:24: e8:f9:12:23:d3:23:e1:7a:44:51:52:67:c1:ae:a9:e1:1c:2a: 45:e3:08:cf -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt4NEiIGqTRgMuUrTzYMK0NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjk3NWRiNDM3OGRmY2E3YzI5NTNiODZkM2IxOGRjOGIyMThlYzZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYuiQ3xEJrTcGTxJCyY48q8+6reh Pb5wUuSfGKVIvSc3L/Lerkyv4ZVWe248NEZ+DdXqV/II2nUiUJ9SeIP5H/MMYP+i RTydlq38sFauI84Ipvq0lx3DiV/QWeglUTkK2j0mG2oz3dffJvJbo9dceXoWzL3A YZlvCUSq+UK99qluGE7fxGRfaNG4aiCisNKgFPEKrVFUcbBFpxKxVLmp3KcWoYBG AbgWrgwqOaLNUOtQWPVpcU569gMhPdLWq/bMpXjXF8nl8pAHWKtfd+uoMbWms/cP c0v3gyfEBYPXmp1wkeey/ZhSjPgUMt8o5rnoOiGpU8d4VDr8AZzamiRSeQIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFKuXXbQ3jfynwpU7htOxjciyGOxrMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZjLzFjODYw NS0xNjNlLTQyNDUtYWYxMi1jZGJkNTU2ZTE3NDkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmMvMWM4NjA1 LTE2M2UtNDI0NS1hZjEyLWNkYmQ1NTZlMTc0OS8xL3E1ZGR0RGVOX0tmQ2xUdUcw N0dOeUxJWTdHcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCLZAEMA0EAgACMAcDBQMqDudAMB8GCCsGAQUF BwEIAQH/BBAwDqAMMAoCAwMtmwIDAy3SMA0GCSqGSIb3DQEBCwUAA4IBAQAWuZhy mgj703Tt0DtSiEqoo3uRxvraAZ06M40gyVdANRSQpoGJIAZlKxSXD7yU0CCF2eBH TcPoVVFJXtMM8b+9lZJRhnCVeZcD59phmYVp3qB9e/YzlhKVEf9QCcM+f/bmVHah unsOoN/AyR3rDwDttw/RXyBcccBn0VEsNG97N15UNRZCSNC/2P82/XLlKxAWmcZR jdkF/S22GBKPle+zeiD/BKillbxYFsRVZ6Mb+PxNOKFZVlruzXhpSpKb0C1e5CSE n/Zl0RQzbBw83XnvPBfbFtWkyKM7FpwPIdu7SPF5Ss9sjIXP4iTo+RIj0yPhekRR UmfBrqnhHCpF4wjP -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:12 2026 by rpki-client