This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qVHmOKLLlcaLvFSicoYFsn9XBoE.cer File: qVHmOKLLlcaLvFSicoYFsn9XBoE.cer (raw, json) Hash identifier: E2FQY1KyCaR/XWben7R6g3GRqgcLd4Z///Z7wuwc1Fc= Subject key identifier: A9:51:E6:38:A2:CB:95:C6:8B:BC:54:A2:72:86:05:B2:7F:57:06:81 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC8A81DCADD948F97C760F90359197F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/qVHmOKLLlcaLvFSicoYFsn9XBoE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51885 IP: 91.223.156.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:a8:1d:ca:dd:94:8f:97:c7:60:f9:03:59:19:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a951e638a2cb95c68bbc54a2728605b27f570681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b0:f6:66:5c:bf:51:2c:76:bc:b0:70:67:f9: 98:8d:57:bc:df:e7:f5:eb:3c:d4:41:17:27:cc:40: 81:06:c9:f9:ed:f1:49:11:fa:ef:5d:6b:cd:03:0b: e2:6d:fe:48:78:81:4f:d0:ae:7e:bd:31:7a:c5:da: 2f:bc:1e:20:48:3a:88:39:c3:0f:19:b8:15:87:22: c2:96:14:11:9a:ef:f5:a8:5a:a3:22:b5:6d:2a:15: b1:ea:c2:13:12:19:e0:70:9f:fe:c4:0b:9d:a9:63: e5:6e:8e:51:b9:45:00:e5:6f:9d:81:9a:cf:03:36: 10:4d:9a:d2:24:87:14:bf:d6:a3:39:e4:9a:a8:6f: 01:48:c7:84:d0:bb:81:bb:9d:eb:f4:11:72:5e:ca: 18:89:ce:06:21:67:1c:fc:d0:e8:78:d4:87:37:b9: c1:08:9c:c7:95:e9:18:1b:e3:f8:70:aa:50:96:39: 24:db:8b:e5:60:61:b7:9d:89:cd:73:9d:19:5a:9b: 64:43:88:0a:6e:85:1d:e2:ae:26:b8:d6:26:fe:bd: 7e:13:42:c3:bc:4d:e9:82:42:84:b8:07:d0:b4:5a: f7:fe:c6:06:f0:43:ef:a5:2b:59:66:2d:9e:aa:9e: 68:e7:f3:12:ea:3a:ad:27:fd:d6:72:d6:f9:9d:1f: 4e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:51:E6:38:A2:CB:95:C6:8B:BC:54:A2:72:86:05:B2:7F:57:06:81 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/qVHmOKLLlcaLvFSicoYFsn9XBoE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.156.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51885 Signature Algorithm: sha256WithRSAEncryption 25:b0:dd:f1:87:86:e6:99:66:0d:6a:c4:23:9a:a5:2e:9a:d8: 89:91:ad:cf:4b:71:91:42:c8:a7:09:27:07:04:9f:48:10:99: 28:0e:bb:5e:c3:bc:0c:31:23:60:06:83:91:eb:58:fe:a6:af: 2d:ef:80:bb:6b:03:65:40:3e:1a:45:8e:f5:6a:f3:b8:eb:97: f5:5f:68:98:84:ed:1b:24:6f:1b:9f:b3:d9:37:24:3d:0a:b2: d4:99:1a:a2:1c:ed:11:06:05:57:9a:b5:c7:71:3d:73:98:54: be:99:79:55:7f:b4:94:f2:5d:8b:34:c4:33:a3:77:56:85:43: 73:e9:cc:2d:5a:77:5d:b5:a0:d5:10:b4:d5:50:8e:9a:23:4b: f2:b4:bf:a0:cc:ea:33:ae:56:62:e2:22:33:88:66:d3:ec:a5: 65:a2:0e:78:00:93:06:d8:b8:0b:df:90:2e:90:1c:1c:19:fa: da:1e:de:dc:f8:8e:f2:c9:24:fb:c6:db:08:82:d9:bc:a0:38: 4b:37:f5:f1:73:dd:73:3e:f9:19:92:08:4d:f5:74:3e:c2:85: bc:df:c2:3c:34:57:1a:cc:8e:30:b3:c8:21:79:22:64:7f:00: ab:53:68:b0:35:d8:fa:76:cd:fe:b3:ec:eb:e4:49:e4:49:27: 40:24:be:fc -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt6yKgdyt2Uj5fHYPkDWRl/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTUxZTYzOGEyY2I5NWM2OGJiYzU0YTI3Mjg2MDViMjdmNTcwNjgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprD2Zly/USx2vLBwZ/mYjVe83+f1 6zzUQRcnzECBBsn57fFJEfrvXWvNAwvibf5IeIFP0K5+vTF6xdovvB4gSDqIOcMP GbgVhyLClhQRmu/1qFqjIrVtKhWx6sITEhngcJ/+xAudqWPlbo5RuUUA5W+dgZrP AzYQTZrSJIcUv9ajOeSaqG8BSMeE0LuBu53r9BFyXsoYic4GIWcc/NDoeNSHN7nB CJzHlekYG+P4cKpQljkk24vlYGG3nYnNc50ZWptkQ4gKboUd4q4muNYm/r1+E0LD vE3pgkKEuAfQtFr3/sYG8EPvpStZZi2eqp5o5/MS6jqtJ/3Wctb5nR9O5wIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFKlR5jiiy5XGi7xUonKGBbJ/VwaBMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YzL2YwNmU3 OS1lZDJiLTQzZDUtYjRjMS1hYmRmOTA2YzVhZGUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMvZjA2ZTc5 LWVkMmItNDNkNS1iNGMxLWFiZGY5MDZjNWFkZS8xL3FWSG1PS0xMbGNhTHZGU2lj b1lGc245WEJvRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9+cMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDKrTANBgkqhkiG9w0BAQsFAAOCAQEAJbDd8YeG5plmDWrEI5qlLprYiZGtz0tx kULIpwknBwSfSBCZKA67XsO8DDEjYAaDketY/qavLe+Au2sDZUA+GkWO9WrzuOuX 9V9omITtGyRvG5+z2TckPQqy1JkaohztEQYFV5q1x3E9c5hUvpl5VX+0lPJdizTE M6N3VoVDc+nMLVp3XbWg1RC01VCOmiNL8rS/oMzqM65WYuIiM4hm0+ylZaIOeACT Bti4C9+QLpAcHBn62h7e3PiO8skk+8bbCILZvKA4Szf18XPdcz75GZIITfV0PsKF vN/CPDRXGsyOMLPIIXkiZH8Aq1NosDXY+nbN/rPs6+RJ5EknQCS+/A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:12 2026 by rpki-client