This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qagVvnVH64cOtfZB0w_mljdByOA.cer File: qagVvnVH64cOtfZB0w_mljdByOA.cer (raw, json) Hash identifier: mQePFYahviIBu7EqEAnI1F3ZrjjU+H8nEoIz6zeIVxw= Subject key identifier: A9:A8:15:BE:75:47:EB:87:0E:B5:F6:41:D3:0F:E6:96:37:41:C8:E0 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F831BBEE1C1C63D12A1B92A2720167E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/qagVvnVH64cOtfZB0w_mljdByOA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:20:57 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 44156 IP: 79.99.96.0/21 IP: 2a04::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:1b:be:e1:c1:c6:3d:12:a1:b9:2a:27:20:16:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:20:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a9a815be7547eb870eb5f641d30fe6963741c8e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:19:ae:22:c8:11:e6:55:de:3b:24:69:25:f7: 29:d4:0a:ef:9b:5d:46:75:f4:99:8b:be:1a:e3:1a: a1:68:54:c1:54:1e:be:84:12:77:d2:cf:8f:ae:c3: a3:f1:c1:b3:3a:d9:3c:65:c9:c3:d6:1e:a1:f2:5c: 04:c9:c4:13:2a:62:e8:a7:29:4f:3d:0c:c5:d6:44: ab:3c:d3:5f:98:54:b8:d0:c2:cb:08:24:b0:97:a9: 74:08:9e:c9:d2:87:11:01:a3:e7:12:9e:e4:c3:0a: 63:b9:03:59:34:7a:f5:6d:7e:9c:e2:03:5f:a7:5f: b4:10:e6:44:fd:fe:9f:0e:31:d3:a5:d7:bf:95:bc: fd:9b:a9:b3:6a:fb:e9:d7:53:4c:e5:4f:dc:7d:fd: e1:ca:e4:27:cb:09:5a:b9:90:17:bf:19:96:be:18: b6:76:2d:39:8e:17:d5:a8:a5:f1:71:6a:c3:24:71: 4c:46:c0:fa:5f:ce:ef:12:96:c3:40:91:54:77:c0: c5:66:ab:9c:66:b6:4d:35:03:e3:36:fb:77:4b:c4: a1:b7:67:bc:89:a6:f1:78:aa:04:01:a8:20:9f:9e: 85:0a:7f:31:af:5d:5e:fa:72:71:f6:cf:6f:b7:5b: a7:89:0a:45:d0:f2:56:10:cc:62:53:fe:81:d0:5c: f9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A8:15:BE:75:47:EB:87:0E:B5:F6:41:D3:0F:E6:96:37:41:C8:E0 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/qagVvnVH64cOtfZB0w_mljdByOA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.99.96.0/21 IPv6: 2a04::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 44156 Signature Algorithm: sha256WithRSAEncryption 63:4f:8c:8f:81:4b:39:5a:d2:27:ce:91:63:94:1c:93:c8:01: 14:08:c1:c3:c6:01:fb:6a:7d:f0:bb:7b:df:8c:28:38:60:42: 5b:11:6a:1a:a9:97:0d:26:e1:79:51:15:65:f6:5d:43:05:a7: 56:89:79:38:0b:fc:19:11:4b:d7:92:30:cf:24:3b:6a:b4:65: 9b:d2:ec:26:59:7a:90:11:bf:24:d9:17:82:5f:36:a1:a3:44: b9:c2:3d:ed:40:81:61:64:82:23:78:e3:8d:e1:18:7e:25:7a: 63:56:3f:44:2b:ba:93:5b:3f:ae:9a:81:fe:88:2d:a7:e7:c7: 57:ed:4e:2b:c0:22:23:48:b2:da:86:d5:9e:21:fb:1a:c9:86: ec:86:e8:d8:7f:2a:f2:2c:c9:c7:60:62:00:5d:f4:f2:f6:57: e4:3f:9a:a0:e0:d7:c5:ca:d1:02:8b:05:99:57:05:91:3e:4a: 0b:b1:a8:04:69:de:6a:0f:20:30:fe:71:f5:5a:9d:45:04:43: bf:1a:93:38:13:cc:ed:80:0d:26:01:ad:3c:0b:1e:12:5d:9a: 80:0d:8b:4b:f6:26:60:7f:b5:d7:78:3d:23:bd:eb:b9:a9:f7: 76:85:01:fb:72:f9:dc:bc:e1:c9:55:e9:d0:2f:09:3c:21:d9: 6c:ce:93:2e -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/gxu+4cHGPRKhuSonIBZ+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMDU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOWE4MTViZTc1NDdlYjg3MGViNWY2NDFkMzBmZTY5NjM3NDFjOGUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/hmuIsgR5lXeOyRpJfcp1Arvm11G dfSZi74a4xqhaFTBVB6+hBJ30s+PrsOj8cGzOtk8ZcnD1h6h8lwEycQTKmLopylP PQzF1kSrPNNfmFS40MLLCCSwl6l0CJ7J0ocRAaPnEp7kwwpjuQNZNHr1bX6c4gNf p1+0EOZE/f6fDjHTpde/lbz9m6mzavvp11NM5U/cff3hyuQnywlauZAXvxmWvhi2 di05jhfVqKXxcWrDJHFMRsD6X87vEpbDQJFUd8DFZqucZrZNNQPjNvt3S8Sht2e8 iabxeKoEAaggn56FCn8xr11e+nJx9s9vt1uniQpF0PJWEMxiU/6B0Fz5bQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFKmoFb51R+uHDrX2QdMP5pY3QcjgMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVhL2ZlM2Yz ZS1lMTg3LTRhMTItYWE5YS0yNDNjNWY0ZTJlNDAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEvZmUzZjNl LWUxODctNGExMi1hYTlhLTI0M2M1ZjRlMmU0MC8xL3FhZ1Z2blZINjRjT3RmWkIw d19tbGpkQnlPQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQDT2NgMA0EAgACMAcDBQMqBAAAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCsfDANBgkqhkiG9w0BAQsFAAOCAQEAY0+Mj4FLOVrS J86RY5Qck8gBFAjBw8YB+2p98Lt734woOGBCWxFqGqmXDSbheVEVZfZdQwWnVol5 OAv8GRFL15IwzyQ7arRlm9LsJll6kBG/JNkXgl82oaNEucI97UCBYWSCI3jjjeEY fiV6Y1Y/RCu6k1s/rpqB/ogtp+fHV+1OK8AiI0iy2obVniH7GsmG7Ibo2H8q8izJ x2BiAF308vZX5D+aoODXxcrRAosFmVcFkT5KC7GoBGneag8gMP5x9VqdRQRDvxqT OBPM7YANJgGtPAseEl2agA2LS/YmYH+113g9I73ruan3doUB+3L53LzhyVXp0C8J PCHZbM6TLg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:41 2026 by rpki-client