This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sMmblRxqb2rcyGjYhalArfAFGhk.cer File: sMmblRxqb2rcyGjYhalArfAFGhk.cer (raw, json) Hash identifier: 0LQe982DBYJy1JiXi1mFxW9gCNYmrxWH8pp05A3wkNw= Subject key identifier: B0:C9:9B:95:1C:6A:6F:6A:DC:C8:68:D8:85:A9:40:AD:F0:05:1A:19 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CECEF959372DD47979A01CE8106CBA8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/sMmblRxqb2rcyGjYhalArfAFGhk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:41 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205565 IP: 185.213.244.0/22 IP: 2a0b:90c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:ef:95:93:72:dd:47:97:9a:01:ce:81:06:cb:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0c99b951c6a6f6adcc868d885a940adf0051a19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0e:eb:53:7c:92:ee:e6:e7:d8:b0:ba:05:b4: 8e:36:25:2c:0a:5b:50:8a:6b:c3:95:c4:91:de:da: 04:39:25:bf:bd:9d:60:0b:fd:3f:07:89:95:bb:bc: c9:00:9a:06:01:5a:2f:2d:40:1c:49:0d:27:1f:ed: 65:f9:b2:04:0f:69:8a:54:c2:25:86:04:47:d7:3a: 0a:a9:63:82:a0:e7:79:77:76:82:6a:f7:d3:ab:48: 7a:a1:22:89:2e:cc:56:49:5e:be:79:f9:c3:27:1a: 9a:51:9a:36:4e:50:43:ee:d3:37:80:eb:94:5c:3b: 04:fa:8c:3a:71:77:4a:07:a3:ce:df:0b:7f:03:49: 99:e2:89:b4:01:92:5c:1f:88:26:8b:4a:6d:d1:35: c3:2e:d3:e4:7b:3a:31:bd:81:fd:f9:5c:15:22:de: 53:6d:81:f8:98:39:ea:ab:60:e0:ba:6d:e1:4c:30: 85:f7:ac:f7:90:44:5e:47:c2:16:40:fc:04:60:34: b3:fc:19:b4:e6:95:1b:8c:dc:62:2f:04:b4:99:cf: b8:14:9e:68:10:8f:2c:f9:cb:c4:64:d5:32:a3:57: 36:ed:c4:cc:98:11:87:2a:27:99:6e:c7:82:e1:24: 02:1e:33:06:de:d4:4f:3b:68:44:97:a0:e9:18:68: 67:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C9:9B:95:1C:6A:6F:6A:DC:C8:68:D8:85:A9:40:AD:F0:05:1A:19 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/sMmblRxqb2rcyGjYhalArfAFGhk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.213.244.0/22 IPv6: 2a0b:90c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205565 Signature Algorithm: sha256WithRSAEncryption 4e:90:43:c2:38:5d:98:e3:f5:e0:da:f0:92:c4:26:1f:df:ba: e7:a3:99:e5:0f:8d:1e:37:af:59:9b:97:63:36:c5:be:37:66: 78:7e:86:80:2a:d7:06:f4:37:7c:bb:fc:77:93:96:3f:14:67: d2:22:3c:6a:98:65:2f:41:95:f8:c4:a5:19:82:df:08:2c:ed: 4d:b4:4a:7e:3e:a4:3f:c3:a7:f8:a7:d6:40:de:ed:10:b3:39: f3:9a:0e:11:a8:5a:69:a9:74:b7:c9:4d:89:49:31:01:c3:0c: 0e:f9:bb:f0:e9:52:18:22:01:ca:52:85:62:78:53:12:92:d9: 65:98:e0:f9:60:a6:6e:03:e4:61:82:a5:c0:63:b3:66:bd:fe: f9:11:bd:18:cc:0c:dd:29:15:69:1d:87:89:42:ff:96:99:90: 35:73:76:1b:5e:80:9b:3f:2d:5c:3b:ad:da:56:0a:57:f1:ed: c2:11:3b:f1:96:83:d4:d4:1f:eb:a2:46:72:cf:63:b9:2e:ff: 0d:b6:21:9c:49:c3:39:84:8a:c4:89:c2:7d:66:cc:c1:a2:e7: f8:1c:af:c5:6c:38:48:61:f9:60:8a:8b:2a:44:a6:a1:b1:b6: b5:a9:a3:11:9e:cd:84:32:9c:f9:0a:97:7e:b9:8d:88:d0:60: 58:12:da:82 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt87O+Vk3LdR5eaAc6BBsuoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGM5OWI5NTFjNmE2ZjZhZGNjODY4ZDg4NWE5NDBhZGYwMDUxYTE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmg7rU3yS7ubn2LC6BbSONiUsCltQ imvDlcSR3toEOSW/vZ1gC/0/B4mVu7zJAJoGAVovLUAcSQ0nH+1l+bIED2mKVMIl hgRH1zoKqWOCoOd5d3aCavfTq0h6oSKJLsxWSV6+efnDJxqaUZo2TlBD7tM3gOuU XDsE+ow6cXdKB6PO3wt/A0mZ4om0AZJcH4gmi0pt0TXDLtPkezoxvYH9+VwVIt5T bYH4mDnqq2Dgum3hTDCF96z3kEReR8IWQPwEYDSz/Bm05pUbjNxiLwS0mc+4FJ5o EI8s+cvEZNUyo1c27cTMmBGHKieZbseC4SQCHjMG3tRPO2hEl6DpGGhnjQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFLDJm5Ucam9q3Mho2IWpQK3wBRoZMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYyLzBhN2Ji Zi1iZjIwLTQxMTQtOTcyYy0zZTY5NTZlZDJjNmEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIvMGE3YmJm LWJmMjAtNDExNC05NzJjLTNlNjk1NmVkMmM2YS8xL3NNbWJsUnhxYjJyY3lHallo YWxBcmZBRkdoay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCudX0MA0EAgACMAcDBQMqC5DAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMi/TANBgkqhkiG9w0BAQsFAAOCAQEATpBDwjhdmOP1 4NrwksQmH9+656OZ5Q+NHjevWZuXYzbFvjdmeH6GgCrXBvQ3fLv8d5OWPxRn0iI8 aphlL0GV+MSlGYLfCCztTbRKfj6kP8On+KfWQN7tELM585oOEahaaal0t8lNiUkx AcMMDvm78OlSGCIBylKFYnhTEpLZZZjg+WCmbgPkYYKlwGOzZr3++RG9GMwM3SkV aR2HiUL/lpmQNXN2G16Amz8tXDut2lYKV/HtwhE78ZaD1NQf66JGcs9juS7/DbYh nEnDOYSKxInCfWbMwaLn+ByvxWw4SGH5YIqLKkSmobG2tamjEZ7NhDKc+QqXfrmN iNBgWBLagg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:35 2026 by rpki-client