This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer File: rpPMjMqB-gDcU-e4B46RtcEbou8.cer (raw, json) Hash identifier: mDIrJEqeyweKsPKNSgyL+Ok4siLVS5U4NMcNlDRTMUE= Subject key identifier: AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C805B848764CB0576EF4795AB90CFBE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:19:05 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212295 AS: 212426 IP: 80.249.128.0/24 IP: 2a0d:a200::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 18:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:5b:84:87:64:cb:05:76:ef:47:95:ab:90:cf:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7c:3f:c1:62:12:8b:e1:97:59:06:ec:3e:c0: 90:8b:28:59:dc:66:19:23:a4:16:84:3e:a8:07:f6: b3:72:f9:c7:e3:bf:88:a8:74:af:a6:23:d2:b3:40: 31:b4:01:c6:34:6a:75:4c:c9:c0:08:e7:b4:5b:54: 13:33:fc:80:1d:9b:be:e8:9e:68:21:0a:d3:a5:70: f2:2e:8b:be:e4:39:ff:a9:82:31:72:4c:93:b5:6c: be:56:13:ae:e8:e7:79:bf:98:ac:67:4c:be:df:39: 5d:18:2e:2f:db:5b:88:b9:7b:4b:a4:21:43:08:dd: 46:75:c9:07:b5:4c:58:94:d7:3f:ab:69:a0:fc:75: 0d:50:a7:94:04:5d:c2:af:fe:40:64:2e:cf:7d:dd: c6:ac:62:bb:b0:6d:08:8a:5d:df:1a:cc:53:9e:d9: f7:0e:53:12:d7:a2:95:5c:a3:6e:af:7e:df:df:26: c5:c9:de:ed:ba:bc:d9:bb:33:bb:54:44:fc:1a:25: 4d:d3:93:60:61:17:e0:6d:ba:e5:82:92:d9:2c:1b: b2:a6:96:cf:40:ab:ef:b5:7f:44:3b:c8:db:13:ff: d5:53:42:8d:af:04:4b:49:91:2d:69:66:e1:66:16: 6f:57:93:db:df:08:cf:51:37:eb:5b:0a:de:27:d4: 97:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.249.128.0/24 IPv6: 2a0d:a200::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212295 212426 Signature Algorithm: sha256WithRSAEncryption 23:29:6f:f2:b7:08:bc:1e:02:0e:d6:d3:04:10:58:5a:88:91: 87:f0:1a:27:64:88:87:9c:4c:9e:45:48:34:02:77:b7:d7:92: 50:8a:14:50:56:c6:e0:09:71:b0:38:12:03:aa:a0:dd:a6:10: 1c:ba:4d:66:b2:e1:16:43:ca:9f:45:5d:33:67:42:75:e9:4e: 23:ac:8f:3b:7e:01:c3:e8:61:10:76:22:31:b1:5f:c9:dd:e5: 17:9f:96:17:9b:dc:cf:c4:2d:fc:c4:0d:2c:1a:af:1b:87:1c: 5f:b6:eb:0d:08:74:68:d8:84:54:82:36:6c:2a:95:15:be:90: 1b:f8:71:f5:c6:d8:7c:3b:1c:bc:ac:1f:a9:e2:2f:ac:63:04: 17:6e:dd:04:e7:45:9c:cf:e6:1d:e1:e2:b1:89:79:bc:ff:c5: 9e:8f:e4:7c:c7:73:f7:37:b6:79:a3:a1:92:e7:68:82:8c:ac: 3a:94:32:07:f4:eb:3f:0f:ec:8a:26:80:62:50:b3:a3:a2:2a: 5c:4a:e5:4b:f0:24:69:aa:b3:31:18:f2:46:c2:de:54:bf:32: 7c:ad:be:c5:91:19:61:be:95:cb:f0:06:c5:b9:98:63:50:a9: c5:8b:71:ba:3e:2c:b9:17:29:7e:6e:a5:be:a0:fb:cb:29:d8: 1a:d6:7f:20 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt8gFuEh2TLBXbvR5WrkM++MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTkzY2M4Y2NhODFmYTAwZGM1M2U3YjgwNzhlOTFiNWMxMWJhMmVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Xw/wWISi+GXWQbsPsCQiyhZ3GYZ I6QWhD6oB/azcvnH47+IqHSvpiPSs0AxtAHGNGp1TMnACOe0W1QTM/yAHZu+6J5o IQrTpXDyLou+5Dn/qYIxckyTtWy+VhOu6Od5v5isZ0y+3zldGC4v21uIuXtLpCFD CN1GdckHtUxYlNc/q2mg/HUNUKeUBF3Cr/5AZC7Pfd3GrGK7sG0Iil3fGsxTntn3 DlMS16KVXKNur37f3ybFyd7turzZuzO7VET8GiVN05NgYRfgbbrlgpLZLBuyppbP QKvvtX9EO8jbE//VU0KNrwRLSZEtaWbhZhZvV5Pb3wjPUTfrWwreJ9SXGwIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFK6TzIzKgfoA3FPnuAeOkbXBG6LvMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA5LzE3OTg5 MS00MWNjLTRhYTAtYWI2OC1mNDA2YzgzYjNmYmEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkvMTc5ODkx LTQxY2MtNGFhMC1hYjY4LWY0MDZjODNiM2ZiYS8xL3JwUE1qTXFCLWdEY1UtZTRC NDZSdGNFYm91OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAUPmAMA0EAgACMAcDBQMqDaIAMB8GCCsGAQUF BwEIAQH/BBAwDqAMMAoCAwM9RwIDAz3KMA0GCSqGSIb3DQEBCwUAA4IBAQAjKW/y twi8HgIO1tMEEFhaiJGH8BonZIiHnEyeRUg0Ane315JQihRQVsbgCXGwOBIDqqDd phAcuk1msuEWQ8qfRV0zZ0J16U4jrI87fgHD6GEQdiIxsV/J3eUXn5YXm9zPxC38 xA0sGq8bhxxftusNCHRo2IRUgjZsKpUVvpAb+HH1xth8Oxy8rB+p4i+sYwQXbt0E 50Wcz+Yd4eKxiXm8/8Wej+R8x3P3N7Z5o6GS52iCjKw6lDIH9Os/D+yKJoBiULOj oipcSuVL8CRpqrMxGPJGwt5UvzJ8rb7FkRlhvpXL8AbFuZhjUKnFi3G6Piy5Fyl+ bqW+oPvLKdga1n8g -----END CERTIFICATE-----Generated at Thu Feb 5 02:55:05 2026 by rpki-client