This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer File: qs5nJaCg3dFoBICoN4XSzVe_arA.cer (raw, json) Hash identifier: Q//qFUcUaDjZAFhEzlrz3bw/NEkWvjUmyx8S7+Z24Dg= Subject key identifier: AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA3342CBABD679141C5997BEDD3F588 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 200443 IP: 31.24.82.0/24 IP: 46.28.236.0/24 IP: 91.247.164.0/24 IP: 185.228.207.0/24 IP: 2a13:5f40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:34:2c:ba:bd:67:91:41:c5:99:7b:ed:d3:f5:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8e:94:42:54:c7:97:91:af:91:d0:fc:a5:95: 4f:bf:d2:ca:d7:24:13:11:3d:f4:0e:5d:dd:ae:33: 3a:b9:80:8d:eb:70:c3:b2:1f:4c:00:1c:c7:dc:09: 4d:ae:73:91:0c:5c:36:6b:c5:ce:75:d0:ff:5b:04: c0:ec:6d:6f:05:f9:ce:27:b3:7c:11:03:fe:34:c5: c4:87:ca:38:89:95:9d:b8:b6:9f:87:ba:e7:52:90: 84:f7:a6:fb:56:91:42:d3:82:dc:81:3c:fc:8e:97: d0:3b:c8:85:56:07:ed:19:4e:dd:f3:9e:4c:56:f2: fb:c2:d6:6a:21:5b:c4:f8:d7:2d:88:15:98:0b:9a: 3b:26:8e:48:4c:3c:7a:32:e6:ee:7f:ab:b9:a5:d8: b7:71:35:03:42:d9:a0:06:cb:4e:db:1d:25:eb:83: 9b:06:63:cd:62:75:47:de:4a:2b:2b:2b:d3:0a:07: 96:45:05:7c:d1:d8:05:67:ce:95:c1:ce:a9:9f:bc: 95:9f:18:d9:ca:85:7e:e7:b4:08:9f:0d:57:67:ea: a9:9e:e5:e2:5f:d6:e8:d7:53:45:55:5b:a5:77:89: 4a:86:f1:5f:e1:d3:74:6e:00:c7:50:81:21:61:88: d1:36:30:3f:65:bd:47:40:bb:e8:4c:74:16:bc:a2: f1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.24.82.0/24 46.28.236.0/24 91.247.164.0/24 185.228.207.0/24 IPv6: 2a13:5f40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 200443 Signature Algorithm: sha256WithRSAEncryption 9e:24:06:1c:af:f5:6d:04:69:02:a7:81:fb:3e:9b:b9:42:b6: 43:33:c1:4e:8f:a4:ec:54:b8:6b:88:e7:26:25:29:95:36:19: ce:69:29:c8:f7:97:0a:05:81:32:47:c9:9e:36:99:79:2b:c4: 46:89:e7:fe:59:cd:df:d2:95:8a:98:49:12:49:a0:51:56:6d: a1:fd:a8:2c:1d:10:60:04:94:c7:ff:41:2e:53:21:c6:4f:18: c8:9f:cb:b7:b2:57:4c:57:60:3e:cc:29:c3:9a:0d:d1:01:fe: 1f:35:8a:94:45:8c:73:98:d1:2c:12:f2:d4:c8:ca:79:38:90: ca:5d:73:c8:ba:75:37:3e:18:cd:8f:64:16:8c:ba:88:eb:06: 72:d4:fc:8b:8d:af:b4:5b:0a:c2:ad:43:fd:0c:41:7f:c7:cc: e1:88:ec:d6:d9:fc:43:81:8a:3a:f4:6a:b8:e3:45:4c:36:cf: f4:1a:dc:7b:55:a2:d6:c7:fd:23:d3:84:68:e2:be:d4:8f:82: c6:b5:27:f7:e5:92:19:ed:67:56:c6:3f:f7:d0:59:60:8c:38: 58:79:b7:37:a5:89:49:cf:b3:99:08:6d:d4:b1:29:0b:a7:dc: 50:32:f0:9c:f4:a2:7d:4c:a3:64:52:27:7d:1c:d1:da:f0:08: 42:62:ae:1a -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgISAZt7ozQsur1nkUHFmXvt0/WIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWNlNjcyNWEwYTBkZGQxNjgwNDgwYTgzNzg1ZDJjZDU3YmY2YWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1o6UQlTHl5GvkdD8pZVPv9LK1yQT ET30Dl3drjM6uYCN63DDsh9MABzH3AlNrnORDFw2a8XOddD/WwTA7G1vBfnOJ7N8 EQP+NMXEh8o4iZWduLafh7rnUpCE96b7VpFC04LcgTz8jpfQO8iFVgftGU7d855M VvL7wtZqIVvE+NctiBWYC5o7Jo5ITDx6Mubuf6u5pdi3cTUDQtmgBstO2x0l64Ob BmPNYnVH3korKyvTCgeWRQV80dgFZ86Vwc6pn7yVnxjZyoV+57QInw1XZ+qpnuXi X9bo11NFVVuld4lKhvFf4dN0bgDHUIEhYYjRNjA/Zb1HQLvoTHQWvKLxTQIDAQAB o4ICwTCCAr0wHQYDVR0OBBYEFKrOZyWgoN3RaASAqDeF0s1Xv2qwMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M1LzgxMTJm Zi1iMjE2LTQwNmYtOGY1OS03MmEwODJjZGIxODIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUvODExMmZm LWIyMTYtNDA2Zi04ZjU5LTcyYTA4MmNkYjE4Mi8xL3FzNW5KYUNnM2RGb0JJQ29O NFhTelZlX2FyQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQAHxhSAwQALhzsAwQAW/ekAwQAueTPMA0EAgAC MAcDBQMqE19AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMO+zANBgkqhkiG9w0B AQsFAAOCAQEAniQGHK/1bQRpAqeB+z6buUK2QzPBTo+k7FS4a4jnJiUplTYZzmkp yPeXCgWBMkfJnjaZeSvERonn/lnN39KViphJEkmgUVZtof2oLB0QYASUx/9BLlMh xk8YyJ/Lt7JXTFdgPswpw5oN0QH+HzWKlEWMc5jRLBLy1MjKeTiQyl1zyLp1Nz4Y zY9kFoy6iOsGctT8i42vtFsKwq1D/QxBf8fM4Yjs1tn8Q4GKOvRquONFTDbP9Brc e1Wi1sf9I9OEaOK+1I+CxrUn9+WSGe1nVsY/99BZYIw4WHm3N6WJSc+zmQht1LEp C6fcUDLwnPSifUyjZFInfRzR2vAIQmKuGg== -----END CERTIFICATE-----Generated at Wed Jan 21 06:16:37 2026 by rpki-client