This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer File: qHxnPzWntwWmtCTTORT6OS07li4.cer (raw, json) Hash identifier: JgbNdl1B4rmNWe0+9dLvy0qn9tH/IjU6maCgl3JzDl8= Subject key identifier: A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5A1AA501719183E9CFA6775ECFEF32 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 91.232.124.0/23 IP: 95.215.224.0/22 IP: 178.216.247.0/24 IP: 2a0c:a940::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:1a:a5:01:71:91:83:e9:cf:a6:77:5e:cf:ef:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a87c673f35a7b705a6b424d33914fa392d3b962e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5f:94:52:53:55:67:96:c7:31:98:dd:9d:bf: d9:03:70:1b:d8:89:14:5a:03:64:5a:61:99:ff:b3: fe:e5:1b:4c:06:e2:05:16:59:cf:25:a4:85:39:46: b3:05:e1:bb:84:25:aa:59:1d:b5:b9:81:05:ff:5a: 63:8e:ca:42:63:95:1b:e2:64:b2:c8:02:a8:23:60: b1:33:56:83:17:32:08:06:4d:63:a9:f2:2f:87:75: ab:2f:fb:a6:22:66:49:4f:df:79:ec:13:4a:a4:8b: 08:1b:59:84:e5:e5:27:44:24:54:a0:28:ca:ab:40: 2c:c1:0d:a8:7a:dc:29:d5:25:72:65:57:ce:8d:4c: 44:46:46:1e:d8:94:d9:2c:cc:a4:e0:6c:8c:c1:8a: 30:61:fb:2b:31:e5:1e:93:78:e0:24:cd:fd:a8:4c: 91:5f:af:2f:ab:a8:b8:20:2a:98:71:2a:09:a4:18: d3:be:6c:8b:92:82:6c:fc:2c:0d:80:89:55:f0:98: c7:01:e2:0b:cf:cd:06:3d:06:cc:10:1e:dd:8e:3a: ac:45:97:eb:d0:bd:bf:1e:ae:53:e2:16:df:6f:b0: a5:20:11:76:d0:c8:be:fc:aa:87:50:55:81:78:b6: 5d:45:74:47:8c:e7:9d:9d:b7:45:30:bd:e6:e2:6e: 3a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.232.124.0/23 95.215.224.0/22 178.216.247.0/24 IPv6: 2a0c:a940::/29 Signature Algorithm: sha256WithRSAEncryption 64:58:60:7a:4c:7c:fb:73:02:05:fa:2a:fc:22:d5:7f:76:f3: 55:89:58:23:a0:66:66:40:8a:fc:e6:04:bc:38:1d:92:45:e9: 37:c6:1e:a3:c1:fe:a7:6c:7b:01:d9:1b:d2:84:fe:71:9a:d2: 24:07:7d:33:e6:af:1e:8b:37:48:b5:5f:65:2b:b5:e7:c5:95: d0:8d:8a:08:69:ee:b0:c3:72:36:5b:b8:10:2b:ee:02:6e:48: fe:37:81:14:54:1a:93:d5:66:d9:8e:61:75:81:cb:a7:85:86: 1b:13:6b:19:81:ec:e0:c2:89:0a:30:68:8c:42:44:1d:8a:2f: 94:d9:e7:88:cf:7b:fa:21:aa:28:c2:35:28:2f:f3:a7:b9:a8: 51:6d:3c:49:f4:85:bd:83:c7:9b:a7:3e:dc:3a:0e:86:5a:d7: 57:c9:72:82:c5:49:27:7d:be:a2:be:4f:77:6f:30:f7:6b:15: ec:96:39:15:49:dc:6c:cf:bc:43:d5:16:32:54:ff:44:50:cf: 9f:87:ab:5f:f3:a0:fd:60:f9:fb:a3:15:f5:47:5d:51:1d:96: 99:72:4e:ca:35:15:d5:c6:54:12:e5:3b:3b:d7:9f:17:48:53: 89:12:01:4f:78:39:8d:57:77:e5:d1:7f:d7:69:a5:d7:a0:4e: 6d:4b:bc:16 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt6WhqlAXGRg+nPpndez+8yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODdjNjczZjM1YTdiNzA1YTZiNDI0ZDMzOTE0ZmEzOTJkM2I5NjJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuF+UUlNVZ5bHMZjdnb/ZA3Ab2IkU WgNkWmGZ/7P+5RtMBuIFFlnPJaSFOUazBeG7hCWqWR21uYEF/1pjjspCY5Ub4mSy yAKoI2CxM1aDFzIIBk1jqfIvh3WrL/umImZJT9957BNKpIsIG1mE5eUnRCRUoCjK q0AswQ2oetwp1SVyZVfOjUxERkYe2JTZLMyk4GyMwYowYfsrMeUek3jgJM39qEyR X68vq6i4ICqYcSoJpBjTvmyLkoJs/CwNgIlV8JjHAeILz80GPQbMEB7djjqsRZfr 0L2/Hq5T4hbfb7ClIBF20Mi+/KqHUFWBeLZdRXRHjOednbdFML3m4m46hwIDAQAB o4ICnzCCApswHQYDVR0OBBYEFKh8Zz81p7cFprQk0zkU+jktO5YuMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI3L2FhMWFm NC05MjU2LTQ2YzgtYWIwMi05NGU2NDcyNjIxNjAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcvYWExYWY0 LTkyNTYtNDZjOC1hYjAyLTk0ZTY0NzI2MjE2MC8xL3FIeG5QeldudHdXbXRDVFRP UlQ2T1MwN2xpNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQBW+h8AwQCX9fgAwQAstj3MA0EAgACMAcDBQMq DKlAMA0GCSqGSIb3DQEBCwUAA4IBAQBkWGB6THz7cwIF+ir8ItV/dvNViVgjoGZm QIr85gS8OB2SRek3xh6jwf6nbHsB2RvShP5xmtIkB30z5q8eizdItV9lK7XnxZXQ jYoIae6ww3I2W7gQK+4Cbkj+N4EUVBqT1WbZjmF1gcunhYYbE2sZgezgwokKMGiM QkQdii+U2eeIz3v6IaoowjUoL/OnuahRbTxJ9IW9g8ebpz7cOg6GWtdXyXKCxUkn fb6ivk93bzD3axXsljkVSdxsz7xD1RYyVP9EUM+fh6tf86D9YPn7oxX1R11RHZaZ ck7KNRXVxlQS5Ts7158XSFOJEgFPeDmNV3fl0X/XaaXXoE5tS7wW -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:11 2026 by rpki-client