This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q7lESdTSRidxdzvAimJFB9pRKw0.cer File: q7lESdTSRidxdzvAimJFB9pRKw0.cer (raw, json) Hash identifier: kejykTbc/7kJ1EOAXvIUaBXiQjyqiEGBO7QIttge/V8= Subject key identifier: AB:B9:44:49:D4:D2:46:27:71:77:3B:C0:8A:62:45:07:DA:51:2B:0D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E387C177579794CBB5ACE25594FD45D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 62.70.0.0/16 IP: 212.125.160.0/19 IP: 213.203.0.0/18 IP: 2a02:2ac0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:7c:17:75:79:79:4c:bb:5a:ce:25:59:4f:d4:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=abb94449d4d2462771773bc08a624507da512b0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1f:c7:be:a1:51:26:4c:b2:d3:83:ca:9b:37: 81:d0:03:7b:cb:41:5f:46:41:25:2f:55:7a:06:77: dc:51:60:73:62:d6:75:e5:bd:6f:1a:e7:37:be:a4: 61:55:db:eb:ad:86:8f:99:f0:8b:55:35:94:f4:80: b1:30:db:0c:e0:c4:c7:1c:0e:4a:29:36:2d:f2:00: dd:f1:55:dd:dc:fe:47:23:4b:db:82:e3:ac:2e:2c: d1:04:22:50:e7:0d:63:a9:a6:32:6c:18:30:d3:bc: 06:35:cd:8b:76:71:31:0b:ff:c5:1e:4c:13:79:e9: 05:cd:c4:e3:b4:a6:f0:4d:7c:67:93:04:f8:5d:37: c0:0c:6c:43:96:19:c6:12:65:da:be:f6:f4:da:d2: 12:ac:ff:40:87:69:d1:4c:78:f0:d8:fb:e1:cd:a0: c9:d0:de:7a:0c:fc:74:1b:43:5b:82:b7:cc:7b:98: 42:0a:ae:00:fe:d5:4f:28:89:ba:a7:6c:86:38:28: 8e:a4:10:47:26:11:b3:60:55:f4:a1:3b:ed:3a:77: 27:01:12:a0:c4:c9:fd:04:d7:11:4e:b3:3e:68:ca: 47:60:90:ee:bf:95:d4:94:34:b1:9a:77:0b:5b:5b: b6:02:c1:38:db:7e:9b:56:44:b8:8a:cd:61:49:ed: be:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:B9:44:49:D4:D2:46:27:71:77:3B:C0:8A:62:45:07:DA:51:2B:0D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.70.0.0/16 212.125.160.0/19 213.203.0.0/18 IPv6: 2a02:2ac0::/29 Signature Algorithm: sha256WithRSAEncryption ab:c5:68:e8:82:a0:98:3c:9a:d8:2f:85:c9:e4:fc:05:83:e5: 65:7e:99:d5:0c:ed:b6:53:9d:06:1c:6c:71:39:62:8d:e3:40: fd:7a:bb:2a:de:14:21:0c:7f:cd:2f:d9:d9:02:c4:50:7f:cf: 95:5f:bf:4f:c8:be:b5:61:46:be:62:44:0b:18:17:9f:ca:14: e1:84:35:50:f3:b4:e1:0e:98:d4:a7:9b:bd:d2:87:0e:5d:44: 44:38:c5:c2:b0:6a:1e:d3:06:25:0d:52:e8:16:ac:8c:45:b6: 70:99:08:96:31:07:86:99:8e:ee:ac:35:42:59:13:4f:6b:d2: b8:94:a0:bd:e3:d7:e5:6b:a3:d9:41:8c:93:cb:51:93:3a:d2: b0:0d:ce:99:75:41:d3:bd:fe:b9:5e:24:46:35:52:f4:e4:cd: 0f:1c:ce:5b:94:9e:67:a8:35:65:26:ea:6d:48:af:c8:bb:4a: c4:ef:f3:4c:a9:34:66:27:6d:d6:04:ac:18:18:53:c0:58:05: e3:27:71:66:9d:48:99:d2:a6:ad:12:ec:f5:b1:cb:a6:03:80: b6:62:83:7c:19:30:51:0e:ea:15:bb:2f:13:db:9e:54:b1:1b: ed:54:13:f3:4e:88:36:2c:d3:02:d0:15:d3:46:2e:8e:8e:a3: a5:06:29:5d -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgISAZt+OHwXdXl5TLtaziVZT9RdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYmI5NDQ0OWQ0ZDI0NjI3NzE3NzNiYzA4YTYyNDUwN2RhNTEyYjBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAth/HvqFRJkyy04PKmzeB0AN7y0Ff RkElL1V6BnfcUWBzYtZ15b1vGuc3vqRhVdvrrYaPmfCLVTWU9ICxMNsM4MTHHA5K KTYt8gDd8VXd3P5HI0vbguOsLizRBCJQ5w1jqaYybBgw07wGNc2LdnExC//FHkwT eekFzcTjtKbwTXxnkwT4XTfADGxDlhnGEmXavvb02tISrP9Ah2nRTHjw2PvhzaDJ 0N56DPx0G0NbgrfMe5hCCq4A/tVPKIm6p2yGOCiOpBBHJhGzYFX0oTvtOncnARKg xMn9BNcRTrM+aMpHYJDuv5XUlDSxmncLW1u2AsE4236bVkS4is1hSe2+pwIDAQAB o4ICnjCCApowHQYDVR0OBBYEFKu5REnU0kYncXc7wIpiRQfaUSsNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVlLzYyNWQ3 OC0wMTljLTQzMDEtYmE3OC03MGMwYzE1YmM4MGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUvNjI1ZDc4 LTAxOWMtNDMwMS1iYTc4LTcwYzBjMTViYzgwYS8xL3E3bEVTZFRTUmlkeGR6dkFp bUpGQjlwUkt3MC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUF BwEHAQH/BCowKDAXBAIAATARAwMAPkYDBAXUfaADBAbVywAwDQQCAAIwBwMFAyoC KsAwDQYJKoZIhvcNAQELBQADggEBAKvFaOiCoJg8mtgvhcnk/AWD5WV+mdUM7bZT nQYcbHE5Yo3jQP16uyreFCEMf80v2dkCxFB/z5Vfv0/IvrVhRr5iRAsYF5/KFOGE NVDztOEOmNSnm73Shw5dREQ4xcKwah7TBiUNUugWrIxFtnCZCJYxB4aZju6sNUJZ E09r0riUoL3j1+Vro9lBjJPLUZM60rANzpl1QdO9/rleJEY1UvTkzQ8czluUnmeo NWUm6m1Ir8i7SsTv80ypNGYnbdYErBgYU8BYBeMncWadSJnSpq0S7PWxy6YDgLZi g3wZMFEO6hW7LxPbnlSxG+1UE/NOiDYs0wLQFdNGLo6Oo6UGKV0= -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:08 2026 by rpki-client