This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer File: qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer (raw, json) Hash identifier: 1n/6PW8RcZNh3OjmEedoyv4iMO1FxjVqqYYGC2fw5zw= Subject key identifier: AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5B105AEBD3BA7CB90B452AE1E9E6BE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/qspPSnN-wJ8zWsQGMxMzKCE-_D0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:19:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205876 IP: 31.24.250.0/24 IP: 45.152.249.0 -- 45.152.250.255 IP: 194.5.132.0/24 IP: 194.5.145.0/24 IP: 212.125.138.0/23 IP: 2a12:5040::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:10:5a:eb:d3:ba:7c:b9:0b:45:2a:e1:e9:e6:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aaca4f4a737ec09f335ac40633133328213efc3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e5:0e:d9:dd:01:5c:76:2a:40:04:7f:00:08: 86:25:cc:33:c2:a9:c8:0e:ee:29:d3:97:29:bd:b6: 95:6b:f8:3a:7a:0a:7c:0b:c7:d8:97:14:0c:36:d2: 6e:19:4b:a7:f9:50:0f:59:a3:c6:d0:65:6a:60:5d: af:b3:c0:28:44:0e:aa:54:d9:d2:b2:0b:2f:62:8d: 17:cb:52:0b:98:4a:fe:a2:56:56:77:0e:e7:9b:44: 69:30:c0:ec:56:e7:31:61:37:c4:86:c1:24:6a:f5: 76:94:ce:19:67:5c:ad:2c:be:4a:ac:0b:bb:88:0a: 3e:5f:8b:1a:d2:a4:2a:3d:ea:7f:b0:71:3a:3c:48: 83:4a:fc:e0:07:a6:d7:f2:9b:e6:71:8a:82:82:9e: f8:34:0f:bb:7f:05:25:71:af:f1:21:44:67:3b:2e: cd:2d:48:6b:ab:8b:77:53:5a:35:22:47:3f:e6:d7: 36:19:84:37:58:b0:81:7f:44:0b:dc:cb:a6:ac:31: 36:54:29:e5:ae:60:02:80:50:b9:9c:5a:e1:0e:c8: ef:03:a4:48:17:d3:fe:c1:01:e9:8a:d9:50:2b:37: 5a:89:45:76:00:fe:b5:8f:93:36:e9:6b:0d:26:07: d2:98:ae:1e:da:03:61:38:dd:b2:89:84:6c:77:76: 16:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/qspPSnN-wJ8zWsQGMxMzKCE-_D0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.24.250.0/24 45.152.249.0-45.152.250.255 194.5.132.0/24 194.5.145.0/24 212.125.138.0/23 IPv6: 2a12:5040::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205876 Signature Algorithm: sha256WithRSAEncryption 3e:0f:11:12:a6:e0:88:31:4d:00:fc:ee:01:cc:ae:3b:88:1a: ae:b8:9d:7b:2a:14:69:e5:eb:84:bb:be:50:84:4c:ad:66:d1: 86:e1:2a:5e:80:4d:b2:10:05:ae:b0:9b:05:9f:77:11:4f:ab: 33:05:f3:0f:01:eb:df:d8:28:e4:ae:2e:d6:16:dd:31:2a:10: b5:98:56:14:ef:c0:75:a5:5c:66:1c:c3:7a:54:24:6e:e9:66: 85:72:c2:c3:70:46:92:01:3a:d5:a3:ff:0e:39:1b:f2:bd:fd: 64:78:60:1a:f5:e3:fc:16:f7:e0:ed:5f:eb:80:59:1c:be:73: 28:3d:09:8c:c2:30:1c:c1:2b:a5:f6:97:4d:20:11:aa:cc:67: 52:f7:3a:4f:27:e3:25:52:f4:e6:65:0a:38:6a:7d:e5:ba:cd: f1:73:ac:13:4d:ab:98:c8:2f:8a:e7:d2:d6:79:23:38:c7:9a: f0:ba:f8:94:13:7a:50:5d:ef:49:56:33:9c:3a:68:99:47:17: 3d:76:b1:ca:99:95:11:ee:4c:52:74:d4:e8:5e:bb:5c:4b:2a: 08:8f:0c:a2:8c:35:d2:08:30:5d:1a:3f:19:49:86:a9:e6:96: 0e:a1:84:f5:71:f3:f5:46:07:0d:55:c4:85:69:ff:f1:a8:2f: 89:aa:62:a1 -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgISAZt6WxBa69O6fLkLRSrh6ea+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWNhNGY0YTczN2VjMDlmMzM1YWM0MDYzMzEzMzMyODIxM2VmYzNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7eUO2d0BXHYqQAR/AAiGJcwzwqnI Du4p05cpvbaVa/g6egp8C8fYlxQMNtJuGUun+VAPWaPG0GVqYF2vs8AoRA6qVNnS sgsvYo0Xy1ILmEr+olZWdw7nm0RpMMDsVucxYTfEhsEkavV2lM4ZZ1ytLL5KrAu7 iAo+X4sa0qQqPep/sHE6PEiDSvzgB6bX8pvmcYqCgp74NA+7fwUlca/xIURnOy7N LUhrq4t3U1o1Ikc/5tc2GYQ3WLCBf0QL3MumrDE2VCnlrmACgFC5nFrhDsjvA6RI F9P+wQHpitlQKzdaiUV2AP61j5M26WsNJgfSmK4e2gNhON2yiYRsd3YWfQIDAQAB o4ICzzCCAsswHQYDVR0OBBYEFKrKT0pzfsCfM1rEBjMTMyghPvw9MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY3L2MxODc2 YS1mYWUxLTQzY2MtYTJkNy0zMzRlNmYzMzIxODAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjcvYzE4NzZh LWZhZTEtNDNjYy1hMmQ3LTMzNGU2ZjMzMjE4MC8xL3FzcFBTbk4td0o4eldzUUdN eE16S0NFLV9EMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CME4GCCsGAQUF BwEHAQH/BD8wPTAsBAIAATAmAwQAHxj6MAwDBAAtmPkDBAAtmPoDBADCBYQDBADC BZEDBAHUfYowDQQCAAIwBwMFACoSUEAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQID AyQ0MA0GCSqGSIb3DQEBCwUAA4IBAQA+DxESpuCIMU0A/O4BzK47iBquuJ17KhRp 5euEu75QhEytZtGG4SpegE2yEAWusJsFn3cRT6szBfMPAevf2Cjkri7WFt0xKhC1 mFYU78B1pVxmHMN6VCRu6WaFcsLDcEaSATrVo/8OORvyvf1keGAa9eP8Fvfg7V/r gFkcvnMoPQmMwjAcwSul9pdNIBGqzGdS9zpPJ+MlUvTmZQo4an3lus3xc6wTTauY yC+K59LWeSM4x5rwuviUE3pQXe9JVjOcOmiZRxc9drHKmZUR7kxSdNToXrtcSyoI jwyijDXSCDBdGj8ZSYap5pYOoYT1cfP1RgcNVcSFaf/xqC+JqmKh -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:28 2026 by rpki-client