This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qjrtkfKbLMfT4F8kDZkTdYHZtbM.cer File: qjrtkfKbLMfT4F8kDZkTdYHZtbM.cer (raw, json) Hash identifier: SlrhzrrXgrIpUPXgwlMRtflMczX8KDEoXFksqeucUIU= Subject key identifier: AA:3A:ED:91:F2:9B:2C:C7:D3:E0:5F:24:0D:99:13:75:81:D9:B5:B3 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E389266D342CDF73D9C27CDE3055486 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/73/8e0f63-ef7a-4662-b046-04e1eb2a9328/1/qjrtkfKbLMfT4F8kDZkTdYHZtbM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/73/8e0f63-ef7a-4662-b046-04e1eb2a9328/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:55 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 15412 AS: 29664 AS: 34406 AS: 42271 IP: 62.216.128.0/19 IP: 80.77.0.0/20 IP: 80.81.64.0/19 IP: 82.196.32.0/19 IP: 85.95.0.0/19 IP: 89.17.96.0/19 IP: 193.43.25.0/24 IP: 2001:1a00::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 21:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:92:66:d3:42:cd:f7:3d:9c:27:cd:e3:05:54:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa3aed91f29b2cc7d3e05f240d99137581d9b5b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cc:20:99:26:52:dc:6f:bb:48:0d:b8:0f:1e: c4:39:1a:4c:fe:a8:e9:ee:a1:c8:3f:c5:14:60:2f: b1:f8:7e:47:45:08:94:36:1e:26:d0:37:f3:9f:ff: be:5d:ae:1e:47:87:52:dc:81:ff:fb:95:58:c8:cd: 6e:91:8c:68:ab:d9:10:df:0f:71:83:69:1e:14:84: 03:65:72:ba:8b:ba:88:9b:1f:38:da:74:31:f9:17: 4d:e1:d3:d2:ce:6b:4f:94:9b:ae:61:ef:16:b6:4e: 33:a8:51:9d:4c:0a:1d:0a:ed:45:3e:13:80:52:12: 5a:00:b7:ec:82:cc:8f:66:d8:a2:93:b6:52:f9:0a: 25:1b:c3:f1:49:ed:90:a6:f5:86:15:69:a6:00:8c: 8e:1c:fa:1c:d0:09:33:78:c4:ca:37:27:a6:47:d5: 44:e2:6f:51:67:d0:e3:76:7f:5f:25:c9:4c:a3:6c: 26:0a:99:51:4f:70:7d:cd:36:f2:36:0b:9d:12:e6: 3b:cb:b8:3d:c8:12:05:08:53:e0:9b:9f:ff:7b:e6: 66:6f:f0:b1:6d:52:1b:ea:cf:93:84:ff:f3:2e:5d: 4a:0f:ce:08:a8:22:74:69:7c:be:99:8e:63:8c:7a: 86:2d:ff:38:c3:36:67:5c:41:b1:05:92:9c:ea:53: 73:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3A:ED:91:F2:9B:2C:C7:D3:E0:5F:24:0D:99:13:75:81:D9:B5:B3 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e0f63-ef7a-4662-b046-04e1eb2a9328/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e0f63-ef7a-4662-b046-04e1eb2a9328/1/qjrtkfKbLMfT4F8kDZkTdYHZtbM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.216.128.0/19 80.77.0.0/20 80.81.64.0/19 82.196.32.0/19 85.95.0.0/19 89.17.96.0/19 193.43.25.0/24 IPv6: 2001:1a00::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 15412 29664 34406 42271 Signature Algorithm: sha256WithRSAEncryption a8:83:51:21:c8:00:ca:57:af:7b:9e:8f:54:a5:b8:c4:84:54: 83:b6:19:dc:df:9c:81:1a:1a:ab:52:c3:21:12:de:dd:b3:76: 7d:c8:84:88:4c:48:7d:63:67:68:96:4b:d0:05:a2:48:42:52: 93:78:ad:5e:bf:f0:17:a7:53:cf:4d:c9:08:43:1b:85:e1:51: 0d:86:54:88:c7:69:53:db:64:41:3b:a5:fa:e7:a6:5b:0a:c3: 2b:c5:7e:7f:cf:41:d7:ed:3b:a2:ab:5f:7c:44:9a:04:73:04: 2a:f5:4f:a6:f1:9e:0a:0b:55:cf:7a:c1:ef:68:16:9b:a0:1c: a2:c0:7a:62:aa:5c:eb:09:47:dc:7d:3c:c7:26:ea:09:2a:8b: 6f:3e:4e:00:72:22:f5:0f:c5:30:eb:23:42:c2:f9:19:16:38: 6d:f1:86:8b:41:b5:f7:58:52:6a:1c:f6:5d:04:d6:0d:45:eb: 5e:3e:03:c7:66:2b:7a:da:bd:fe:42:52:ef:07:e6:75:1b:4a: b8:ec:81:3a:d7:46:41:2d:79:66:03:06:84:ac:db:65:3e:e0: 8d:81:b7:6c:a8:d3:c7:4b:79:13:58:df:20:c0:60:f7:76:70: 83:4d:63:d8:29:9a:47:a3:6b:08:e0:c1:12:b3:8b:99:2b:f4: 18:a1:2f:49 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgISAZt+OJJm00LN9z2cJ83jBVSGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTNhZWQ5MWYyOWIyY2M3ZDNlMDVmMjQwZDk5MTM3NTgxZDliNWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8wgmSZS3G+7SA24Dx7EORpM/qjp 7qHIP8UUYC+x+H5HRQiUNh4m0Dfzn/++Xa4eR4dS3IH/+5VYyM1ukYxoq9kQ3w9x g2keFIQDZXK6i7qImx842nQx+RdN4dPSzmtPlJuuYe8Wtk4zqFGdTAodCu1FPhOA UhJaALfsgsyPZtiik7ZS+QolG8PxSe2QpvWGFWmmAIyOHPoc0AkzeMTKNyemR9VE 4m9RZ9Djdn9fJclMo2wmCplRT3B9zTbyNgudEuY7y7g9yBIFCFPgm5//e+Zmb/Cx bVIb6s+ThP/zLl1KD84IqCJ0aXy+mY5jjHqGLf84wzZnXEGxBZKc6lNztwIDAQAB o4IC4DCCAtwwHQYDVR0OBBYEFKo67ZHymyzH0+BfJA2ZE3WB2bWzMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzczLzhlMGY2 My1lZjdhLTQ2NjItYjA0Ni0wNGUxZWIyYTkzMjgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzMvOGUwZjYz LWVmN2EtNDY2Mi1iMDQ2LTA0ZTFlYjJhOTMyOC8xL3FqcnRrZktiTE1mVDRGOGtE WmtUZFlIWnRiTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFIGCCsGAQUF BwEHAQH/BEMwQTAwBAIAATAqAwQFPtiAAwQEUE0AAwQFUFFAAwQFUsQgAwQFVV8A AwQFWRFgAwQAwSsZMA0EAgACMAcDBQAgARoAMCcGCCsGAQUFBwEIAQH/BBgwFqAU MBICAjw0AgJz4AIDAIZmAgMApR8wDQYJKoZIhvcNAQELBQADggEBAKiDUSHIAMpX r3uej1SluMSEVIO2GdzfnIEaGqtSwyES3t2zdn3IhIhMSH1jZ2iWS9AFokhCUpN4 rV6/8BenU89NyQhDG4XhUQ2GVIjHaVPbZEE7pfrnplsKwyvFfn/PQdftO6KrX3xE mgRzBCr1T6bxngoLVc96we9oFpugHKLAemKqXOsJR9x9PMcm6gkqi28+TgByIvUP xTDrI0LC+RkWOG3xhotBtfdYUmoc9l0E1g1F614+A8dmK3ravf5CUu8H5nUbSrjs gTrXRkEteWYDBoSs22U+4I2Bt2yo08dLeRNY3yDAYPd2cINNY9gpmkejawjgwRKz i5kr9BihL0k= -----END CERTIFICATE-----Generated at Tue Feb 3 03:50:25 2026 by rpki-client