This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qsavDCm-vHxIXPgAHanxmTCs5F0.cer File: qsavDCm-vHxIXPgAHanxmTCs5F0.cer (raw, json) Hash identifier: movNYaNBBzFrCJcFd8/jnsWxdqpitxRHJ2LCCWX2UNU= Subject key identifier: AA:C6:AF:0C:29:BE:BC:7C:48:5C:F8:00:1D:A9:F1:99:30:AC:E4:5D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834C9DAFE71A12A3DA3A16807F93A0D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/qsavDCm-vHxIXPgAHanxmTCs5F0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 199290 IP: 5.180.248.0/22 IP: 45.8.64.0/22 IP: 185.79.4.0/22 IP: 185.196.16.0/22 IP: 185.241.28.0/22 IP: 2a0c:9780::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:c9:da:fe:71:a1:2a:3d:a3:a1:68:07:f9:3a:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aac6af0c29bebc7c485cf8001da9f19930ace45d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:04:a9:97:b1:98:f8:11:e8:6f:c1:34:82:dd: 03:9f:c7:76:74:7c:0a:bc:2f:f2:39:51:80:f0:8d: ee:c2:54:05:44:a4:66:73:b8:a0:2d:1c:e8:78:77: dc:16:40:5a:75:58:11:39:a8:0b:82:c4:95:ec:81: 73:2b:8f:32:d1:34:13:c0:fe:92:65:8f:a4:3f:15: 40:2e:f5:1d:82:e6:22:d6:9e:2c:f0:90:e7:79:a0: ff:ba:89:8e:e5:25:b1:e1:c3:25:35:c5:59:e4:91: 4a:d7:bb:42:34:9d:e3:c4:ed:a7:a2:fc:30:0a:3f: 2c:b9:08:47:3a:c2:4a:39:d2:6b:d2:dc:d9:0d:a1: 63:2b:8d:24:f6:12:e3:de:86:94:6c:32:d6:e2:23: 2f:0b:e6:6c:81:ff:39:41:05:7c:4c:2c:3c:23:33: fb:d2:c4:60:2d:1e:c4:d1:bd:25:6b:eb:64:79:c8: 09:9a:75:6c:b7:2a:76:76:1b:e3:58:38:32:1a:54: 50:63:fe:ac:7a:66:b1:dd:4f:9b:ce:5f:f9:e4:88: 38:65:65:43:06:f7:33:9d:ec:29:8a:a2:90:1d:90: ae:41:e9:c7:2b:bf:b2:f6:64:55:96:0d:0e:7c:a6: 81:f1:4d:c9:56:3d:5c:b6:4f:92:4d:aa:5a:14:2a: fe:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C6:AF:0C:29:BE:BC:7C:48:5C:F8:00:1D:A9:F1:99:30:AC:E4:5D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/qsavDCm-vHxIXPgAHanxmTCs5F0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.248.0/22 45.8.64.0/22 185.79.4.0/22 185.196.16.0/22 185.241.28.0/22 IPv6: 2a0c:9780::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 199290 Signature Algorithm: sha256WithRSAEncryption 2f:63:0e:67:1d:42:b1:93:f1:24:af:db:8f:6a:cf:16:87:95: bb:d6:cb:53:7f:c9:f0:7f:cf:81:f6:7c:38:1a:bd:1f:00:61: e0:dd:8e:b5:8f:13:ae:ee:70:6c:e4:bc:df:2d:52:90:76:45: ef:33:df:3a:0a:4f:d5:9e:5b:72:59:5b:59:6e:76:30:c5:fa: 2a:81:ba:8a:39:0b:3c:99:aa:33:97:9a:77:34:c0:17:77:64: a8:5b:f5:15:a6:ea:16:bc:02:6a:5b:12:fa:ac:8e:f1:4a:e8: de:de:0d:c2:06:04:b8:0f:7f:3b:5d:f9:4c:2c:02:09:47:a4: 66:67:d9:79:7b:cd:b8:88:29:f5:e4:1e:60:67:bc:90:ef:f6: 7e:18:f2:b6:25:d0:be:50:80:74:76:b8:f5:ee:a4:69:67:13: d7:71:7b:16:32:1b:e8:48:30:a6:21:d8:36:97:88:ea:5a:1f: 83:20:d0:c9:de:e0:b8:3f:cc:10:a7:66:d7:3e:9b:3a:29:31: be:a5:aa:2d:c6:2f:e0:91:af:2b:74:23:15:04:06:2e:0f:d5: 18:21:b1:70:86:f1:94:e2:60:5d:13:07:5c:c4:da:2a:8e:c1: 74:d6:bd:4e:49:e4:d8:b5:98:35:77:a6:54:b7:86:17:0e:89: 5a:6a:b2:f4 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgISAZt4NMna/nGhKj2joWgH+ToNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWM2YWYwYzI5YmViYzdjNDg1Y2Y4MDAxZGE5ZjE5OTMwYWNlNDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswSpl7GY+BHob8E0gt0Dn8d2dHwK vC/yOVGA8I3uwlQFRKRmc7igLRzoeHfcFkBadVgROagLgsSV7IFzK48y0TQTwP6S ZY+kPxVALvUdguYi1p4s8JDneaD/uomO5SWx4cMlNcVZ5JFK17tCNJ3jxO2novww Cj8suQhHOsJKOdJr0tzZDaFjK40k9hLj3oaUbDLW4iMvC+Zsgf85QQV8TCw8IzP7 0sRgLR7E0b0la+tkecgJmnVstyp2dhvjWDgyGlRQY/6semax3U+bzl/55Ig4ZWVD BvcznewpiqKQHZCuQenHK7+y9mRVlg0OfKaB8U3JVj1ctk+STapaFCr+2QIDAQAB o4ICxzCCAsMwHQYDVR0OBBYEFKrGrwwpvrx8SFz4AB2p8ZkwrORdMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzL2Y4YzQ0 NS0wYWFiLTQwODctYTBkMy05MzQ3NTkxOTEwYTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzMvZjhjNDQ1 LTBhYWItNDA4Ny1hMGQzLTkzNDc1OTE5MTBhOC8xL3FzYXZEQ20tdkh4SVhQZ0FI YW54bVRDczVGMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUF BwEHAQH/BDcwNTAkBAIAATAeAwQCBbT4AwQCLQhAAwQCuU8EAwQCucQQAwQCufEc MA0EAgACMAcDBQMqDJeAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMKejANBgkq hkiG9w0BAQsFAAOCAQEAL2MOZx1CsZPxJK/bj2rPFoeVu9bLU3/J8H/PgfZ8OBq9 HwBh4N2OtY8Tru5wbOS83y1SkHZF7zPfOgpP1Z5bcllbWW52MMX6KoG6ijkLPJmq M5eadzTAF3dkqFv1FabqFrwCalsS+qyO8Uro3t4NwgYEuA9/O135TCwCCUekZmfZ eXvNuIgp9eQeYGe8kO/2fhjytiXQvlCAdHa49e6kaWcT13F7FjIb6EgwpiHYNpeI 6lofgyDQyd7guD/MEKdm1z6bOikxvqWqLcYv4JGvK3QjFQQGLg/VGCGxcIbxlOJg XRMHXMTaKo7BdNa9Tknk2LWYNXemVLeGFw6JWmqy9A== -----END CERTIFICATE-----Generated at Mon Feb 9 20:49:38 2026 by rpki-client