This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qTS43sEoG8VDF8f-0OmsvHuXysc.cer File: qTS43sEoG8VDF8f-0OmsvHuXysc.cer (raw, json) Hash identifier: E9Dx237APH7yBJ0z12bRNXjzKoXTj+Cqyh8m9i09qNI= Subject key identifier: A9:34:B8:DE:C1:28:1B:C5:43:17:C7:FE:D0:E9:AC:BC:7B:97:CA:C7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A28A9B220D799EB5EE25741325CB18 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/qTS43sEoG8VDF8f-0OmsvHuXysc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:17:56 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 57761 IP: 185.27.216.0/22 IP: 2a00:8ac0::/32 IP: 2a04:3c40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:8a:9b:22:0d:79:9e:b5:ee:25:74:13:25:cb:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a934b8dec1281bc54317c7fed0e9acbc7b97cac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e7:a3:28:e0:69:98:b9:0a:9b:bd:ad:79:f4: 99:4b:b8:f9:6d:c9:e9:9c:cd:06:c2:dd:72:30:34: f2:a3:9b:c9:e3:85:b1:83:63:4e:7e:6b:5d:4a:80: 9e:d9:96:85:df:aa:89:3f:8a:49:f6:99:d9:c2:cd: 02:47:7d:26:1c:dc:af:71:da:ae:a9:8f:bd:b2:ee: 88:64:ab:c0:ec:4d:4c:a5:79:43:c8:ce:51:d7:9c: 1d:4e:54:46:9b:15:e5:4b:c9:77:00:4e:d0:38:ac: 25:34:b2:f5:20:8c:f2:83:af:f1:2e:2a:78:b1:b9: cf:40:07:f8:9c:f6:2f:9b:31:02:fa:19:61:fa:bd: b6:86:51:d9:b6:4c:b5:7a:2f:50:ef:6f:d0:a0:b0: c0:6e:92:a1:81:0e:39:96:d4:9d:91:42:cc:fd:b4: f5:20:b7:87:f5:55:24:18:06:18:c5:02:84:92:f8: 28:83:6a:ce:20:bf:12:9e:ce:47:6f:f5:ab:a7:e4: 37:5f:b1:bc:16:09:95:f4:4a:e4:25:e9:11:e7:81: f4:3e:4b:be:b3:a0:08:55:29:18:cc:ea:01:9e:21: 69:8d:be:16:bc:34:bc:9e:0f:13:54:a3:0c:63:56: 3d:71:1d:17:53:be:c3:4b:f4:d2:2a:b8:c4:ad:2b: bd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:34:B8:DE:C1:28:1B:C5:43:17:C7:FE:D0:E9:AC:BC:7B:97:CA:C7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/qTS43sEoG8VDF8f-0OmsvHuXysc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.27.216.0/22 IPv6: 2a00:8ac0::/32 2a04:3c40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 57761 Signature Algorithm: sha256WithRSAEncryption 35:35:2c:f9:f2:e8:9e:16:d6:05:cb:79:f0:e4:2c:c6:a3:a0: 06:91:55:15:83:c3:6c:cf:df:4f:e2:1a:d6:bd:8d:e2:ce:59: 56:0c:55:d3:35:ee:66:9d:2c:fb:88:86:16:55:a5:f7:7c:31: a5:9f:81:17:24:12:18:0c:ba:f6:d4:5a:9c:14:5a:65:bf:f4: 90:48:a9:78:2e:be:40:8f:21:f1:5e:ee:da:24:f2:84:75:be: 7b:94:16:56:a0:da:1a:28:df:38:db:9b:c1:83:6a:ad:07:3f: 81:67:b2:82:4e:c9:77:9b:98:f9:26:4f:bf:d5:0d:82:38:62: 59:dd:3c:73:c9:40:ee:dd:8e:d0:4d:85:80:8d:1d:40:f4:63: 07:fc:74:55:29:2d:49:6a:02:80:9b:17:89:48:60:91:80:84: 59:f2:cc:1c:80:95:03:a2:42:63:7c:e8:10:58:9e:9f:66:b4: 06:47:e6:6e:40:e8:f5:67:39:24:ac:1c:87:3d:2a:d8:a8:ad: b1:e5:63:ac:d1:71:87:73:e3:13:2a:dc:53:b4:ec:a3:0c:ef: 5f:27:80:ad:d6:b3:92:7d:0b:15:fe:1f:1b:9f:46:8b:49:c8: 2c:f4:79:a3:31:e3:e0:a8:14:05:10:5f:75:56:50:f8:85:af: 5e:a1:c8:c4 -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgISAZt4ooqbIg15nrXuJXQTJcsYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTM0YjhkZWMxMjgxYmM1NDMxN2M3ZmVkMGU5YWNiYzdiOTdjYWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+ejKOBpmLkKm72tefSZS7j5bcnp nM0Gwt1yMDTyo5vJ44Wxg2NOfmtdSoCe2ZaF36qJP4pJ9pnZws0CR30mHNyvcdqu qY+9su6IZKvA7E1MpXlDyM5R15wdTlRGmxXlS8l3AE7QOKwlNLL1IIzyg6/xLip4 sbnPQAf4nPYvmzEC+hlh+r22hlHZtky1ei9Q72/QoLDAbpKhgQ45ltSdkULM/bT1 ILeH9VUkGAYYxQKEkvgog2rOIL8Sns5Hb/Wrp+Q3X7G8FgmV9ErkJekR54H0Pku+ s6AIVSkYzOoBniFpjb4WvDS8ng8TVKMMY1Y9cR0XU77DS/TSKrjErSu9KQIDAQAB o4ICtjCCArIwHQYDVR0OBBYEFKk0uN7BKBvFQxfH/tDprLx7l8rHMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA0Lzg3YjU2 Mi1jYjdkLTRhOTMtYmQ0My0yN2VlNDJkOTI1YWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQvODdiNTYy LWNiN2QtNGE5My1iZDQzLTI3ZWU0MmQ5MjVhZC8xL3FUUzQzc0VvRzhWREY4Zi0w T21zdkh1WHlzYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDUGCCsGAQUF BwEHAQH/BCYwJDAMBAIAATAGAwQCuRvYMBQEAgACMA4DBQAqAIrAAwUDKgQ8QDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA4aEwDQYJKoZIhvcNAQELBQADggEBADU1 LPny6J4W1gXLefDkLMajoAaRVRWDw2zP30/iGta9jeLOWVYMVdM17madLPuIhhZV pfd8MaWfgRckEhgMuvbUWpwUWmW/9JBIqXguvkCPIfFe7tok8oR1vnuUFlag2hoo 3zjbm8GDaq0HP4FnsoJOyXebmPkmT7/VDYI4YlndPHPJQO7djtBNhYCNHUD0Ywf8 dFUpLUlqAoCbF4lIYJGAhFnyzByAlQOiQmN86BBYnp9mtAZH5m5A6PVnOSSsHIc9 KtiorbHlY6zRcYdz4xMq3FO07KMM718ngK3Ws5J9CxX+HxufRotJyCz0eaMx4+Co FAUQX3VWUPiFr16hyMQ= -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:00 2026 by rpki-client