This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qR_iZyyPHBKyetoPzLqnwhLL1xw.cer File: qR_iZyyPHBKyetoPzLqnwhLL1xw.cer (raw, json) Hash identifier: +Dc2TMqytGMGwbc2nFrSINyofusFNQLsrdj1Hz7JlFE= Subject key identifier: A9:1F:E2:67:2C:8F:1C:12:B2:7A:DA:0F:CC:BA:A7:C2:12:CB:D7:1C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B365D631EE50AADB546AEB1038D94E8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/qR_iZyyPHBKyetoPzLqnwhLL1xw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 50133 IP: 109.71.128.0/21 IP: 185.182.40.0/22 IP: 2a0a:e380::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:5d:63:1e:e5:0a:ad:b5:46:ae:b1:03:8d:94:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a91fe2672c8f1c12b27ada0fccbaa7c212cbd71c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e3:8c:46:ca:07:95:b5:dd:22:d9:a6:f1:c7: ec:51:8f:fa:4e:8e:47:25:72:78:d7:40:cd:dc:aa: 31:92:cd:20:7f:c0:3b:0a:f6:4c:b5:f0:fc:c4:c3: 9a:ff:ee:7c:25:9e:f5:3e:26:af:c2:21:01:b6:3a: 60:aa:ff:56:fa:28:f2:38:28:4c:06:bc:95:57:5c: d2:3f:ab:a1:08:57:cf:52:be:a0:63:56:32:d6:7a: 09:e6:41:d5:98:df:70:d3:ae:fc:0b:22:57:d8:4c: 90:86:57:64:70:19:aa:1c:8a:f6:93:6c:3e:a4:b4: 31:b0:f1:bb:86:82:4a:a6:fc:d2:02:58:5c:b8:df: 51:0c:6b:bb:07:32:5f:95:43:dc:e7:8e:f7:27:bc: 2c:fa:ea:d2:3b:03:6a:d4:ce:56:68:fc:a0:72:80: 41:7f:64:b8:43:7b:43:62:b1:33:b5:7b:09:27:7f: b4:bf:57:ea:2b:dc:55:00:a2:87:9e:b0:82:bf:91: 4d:3a:f9:be:d1:0b:37:15:70:d5:cb:aa:18:ba:02: d7:3e:7f:a4:39:4d:1f:d0:95:1b:b1:95:90:3d:d3: 15:56:ff:56:28:01:c3:19:8d:39:ff:aa:9a:49:b0: 57:f8:64:6b:3a:d4:24:74:02:35:da:62:b7:b1:a4: 4a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:1F:E2:67:2C:8F:1C:12:B2:7A:DA:0F:CC:BA:A7:C2:12:CB:D7:1C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/qR_iZyyPHBKyetoPzLqnwhLL1xw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.71.128.0/21 185.182.40.0/22 IPv6: 2a0a:e380::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 50133 Signature Algorithm: sha256WithRSAEncryption 67:51:2a:cd:91:fd:c3:27:5b:4b:43:0a:c3:60:cb:27:24:95: 7a:f3:c1:45:4d:dd:3b:c6:50:a7:af:ef:96:94:9a:4a:54:6d: b0:88:8b:f3:b8:1c:5a:eb:fd:88:98:bc:31:de:97:aa:d0:42: 5c:af:43:bc:82:4d:38:24:2e:a1:40:3d:e8:d2:09:8b:0b:78: 99:03:40:9b:00:4c:a8:73:8b:09:ba:9a:a8:2a:d9:7b:55:99: a1:aa:3d:2d:84:b9:88:f7:a6:9f:9c:14:eb:0b:98:c9:dd:23: 73:52:9a:91:79:ae:d8:fd:b1:8c:79:f0:b5:56:e5:44:29:bd: e3:f5:4d:fa:e3:42:65:41:01:ed:22:a7:7b:3a:75:24:ed:00: 05:af:c2:19:83:31:4a:4e:5f:68:3d:b6:0f:86:cf:0d:a1:a3: 96:e0:b4:cc:02:22:1c:9a:bd:60:48:ce:a2:72:a0:e8:10:40: ef:a0:62:b3:f8:c8:b9:47:cb:84:ba:48:24:2f:91:33:ad:b7: ee:00:89:a6:a6:b4:83:ef:a6:eb:30:75:0e:a5:c7:08:b3:be: 97:da:ac:9b:d7:3f:c6:cb:a5:77:5d:be:52:a2:bc:79:b0:ff: 52:05:fd:40:94:de:2d:e4:53:c7:f5:99:6b:e1:dd:fb:3b:a6: fd:22:3f:dd -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt7Nl1jHuUKrbVGrrEDjZToMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTFmZTI2NzJjOGYxYzEyYjI3YWRhMGZjY2JhYTdjMjEyY2JkNzFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouOMRsoHlbXdItmm8cfsUY/6To5H JXJ410DN3Koxks0gf8A7CvZMtfD8xMOa/+58JZ71PiavwiEBtjpgqv9W+ijyOChM BryVV1zSP6uhCFfPUr6gY1Yy1noJ5kHVmN9w0678CyJX2EyQhldkcBmqHIr2k2w+ pLQxsPG7hoJKpvzSAlhcuN9RDGu7BzJflUPc5473J7ws+urSOwNq1M5WaPygcoBB f2S4Q3tDYrEztXsJJ3+0v1fqK9xVAKKHnrCCv5FNOvm+0Qs3FXDVy6oYugLXPn+k OU0f0JUbsZWQPdMVVv9WKAHDGY05/6qaSbBX+GRrOtQkdAI12mK3saRKEwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFKkf4mcsjxwSsnraD8y6p8ISy9ccMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFhLzZjMDZj OS0zZjQ2LTQ2NTgtYWU4OS05YmYyMjY0MDJmZDQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWEvNmMwNmM5 LTNmNDYtNDY1OC1hZTg5LTliZjIyNjQwMmZkNC8xL3FSX2laeXlQSEJLeWV0b1B6 THFud2hMTDF4dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDbUeAAwQCubYoMA0EAgACMAcDBQMqCuOAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwDD1TANBgkqhkiG9w0BAQsFAAOCAQEAZ1Eq zZH9wydbS0MKw2DLJySVevPBRU3dO8ZQp6/vlpSaSlRtsIiL87gcWuv9iJi8Md6X qtBCXK9DvIJNOCQuoUA96NIJiwt4mQNAmwBMqHOLCbqaqCrZe1WZoao9LYS5iPem n5wU6wuYyd0jc1KakXmu2P2xjHnwtVblRCm94/VN+uNCZUEB7SKnezp1JO0ABa/C GYMxSk5faD22D4bPDaGjluC0zAIiHJq9YEjOonKg6BBA76Bis/jIuUfLhLpIJC+R M6237gCJpqa0g++m6zB1DqXHCLO+l9qsm9c/xsuld12+UqK8ebD/UgX9QJTeLeRT x/WZa+Hd+zum/SI/3Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:16 2026 by rpki-client