This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tLB5uhPORqvsf1vD893Ni7hnWQU.cer File: tLB5uhPORqvsf1vD893Ni7hnWQU.cer (raw, json) Hash identifier: JfnAcVMr4BLvPS4JR0Oy1s6EJE5fnGmoJwnWwKSLKy0= Subject key identifier: B4:B0:79:BA:13:CE:46:AB:EC:7F:5B:C3:F3:DD:CD:8B:B8:67:59:05 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C119E2E9D048E9AA7023DC9D15FB611 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/tLB5uhPORqvsf1vD893Ni7hnWQU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:18:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 56670 IP: 91.194.220.0/23 IP: 194.165.12.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:9e:2e:9d:04:8e:9a:a7:02:3d:c9:d1:5f:b6:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4b079ba13ce46abec7f5bc3f3ddcd8bb8675905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:55:29:90:a3:42:dc:69:83:48:c2:8e:d8:c9: 22:1c:5e:71:55:f4:bb:c5:c0:de:38:26:7f:e9:db: 01:66:63:37:9d:a1:e6:4f:e0:c7:61:99:aa:17:6d: ba:2f:ad:68:0d:d7:f5:8e:d9:cf:da:82:52:bd:73: 11:23:eb:e4:d1:64:7e:3b:f9:0a:9f:4c:ac:31:a3: 14:88:a0:e4:20:62:9c:ed:0f:f7:91:23:4d:6c:81: 40:18:15:ee:3c:12:73:e1:e1:66:ce:99:cc:67:cb: 47:73:2a:61:0a:21:05:c1:67:73:84:75:e2:ff:d2: 42:ba:e2:a6:4c:b1:aa:a6:61:a3:55:89:93:bc:b2: 48:c0:fc:5d:91:a2:be:a3:cf:06:3e:1c:b8:55:3f: b7:8f:27:5b:90:b4:e2:61:6e:3e:12:32:af:2e:b7: 00:5e:6f:31:67:9d:f8:49:bd:6a:c2:b1:a6:3c:8f: 93:7c:4e:63:ef:6d:32:b7:6b:9a:dd:a7:70:67:f5: 31:28:8d:bb:78:1f:85:94:fe:30:4f:72:da:58:2e: 82:dd:d9:c6:7b:69:87:ad:e9:51:99:fd:e7:66:05: ec:a7:ec:a0:d7:df:a9:5b:24:82:39:98:ce:61:53: 38:8a:d6:43:f3:68:d0:af:92:77:49:a0:d1:6c:f2: 3b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B0:79:BA:13:CE:46:AB:EC:7F:5B:C3:F3:DD:CD:8B:B8:67:59:05 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/tLB5uhPORqvsf1vD893Ni7hnWQU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.194.220.0/23 194.165.12.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 56670 Signature Algorithm: sha256WithRSAEncryption 83:f7:10:64:13:4d:72:2c:95:42:e1:78:7b:8a:57:1d:ec:9c: 1b:9f:a5:32:63:64:4a:79:1d:bb:ea:62:66:ef:7c:1d:a4:bd: db:8e:6d:01:03:e0:e7:24:7c:b6:ad:79:a4:6d:7a:d4:9f:b4: 3b:86:f9:f0:08:ab:58:25:82:43:74:62:f5:3a:30:fe:1e:7c: bc:5e:c3:7d:87:97:ec:3d:f8:9f:f5:33:5e:0e:ff:a6:a0:e9: f0:95:49:95:58:06:ad:ae:26:6f:9d:fc:40:5c:55:d1:2f:65: 6a:a2:c0:89:16:6f:69:3c:ab:c0:0d:ae:63:2f:84:4e:8e:3a: d6:6a:53:73:fb:39:be:31:79:34:81:15:be:ac:60:93:c2:df: 06:26:67:59:45:f5:67:90:24:1d:19:3e:0f:27:8d:f1:bc:ec: d5:55:fb:c0:e2:0e:49:58:93:7a:c3:e4:21:84:d0:ca:d7:4b: 6f:3a:c7:0c:39:b8:3e:df:a0:eb:bd:89:81:cf:64:38:05:35: 58:ce:45:a4:22:93:3a:2c:6e:55:b6:e8:5e:1f:df:23:4d:ec: 77:d7:2a:ae:46:3b:3e:1d:83:f2:33:c1:a1:57:89:d1:84:b9: b4:93:1c:bd:79:f2:16:54:e3:be:1e:58:91:c8:4a:0d:b4:8e: 94:db:3a:4d -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt8EZ4unQSOmqcCPcnRX7YRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGIwNzliYTEzY2U0NmFiZWM3ZjViYzNmM2RkY2Q4YmI4Njc1OTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5FUpkKNC3GmDSMKO2MkiHF5xVfS7 xcDeOCZ/6dsBZmM3naHmT+DHYZmqF226L61oDdf1jtnP2oJSvXMRI+vk0WR+O/kK n0ysMaMUiKDkIGKc7Q/3kSNNbIFAGBXuPBJz4eFmzpnMZ8tHcyphCiEFwWdzhHXi /9JCuuKmTLGqpmGjVYmTvLJIwPxdkaK+o88GPhy4VT+3jydbkLTiYW4+EjKvLrcA Xm8xZ534Sb1qwrGmPI+TfE5j720yt2ua3adwZ/UxKI27eB+FlP4wT3LaWC6C3dnG e2mHrelRmf3nZgXsp+yg19+pWySCOZjOYVM4itZD82jQr5J3SaDRbPI7cQIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFLSweboTzkar7H9bw/PdzYu4Z1kFMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZkL2Q0NmE4 MS0zNzM1LTQyYzYtOWJiYi0xZDE3OTliNTljOTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQvZDQ2YTgx LTM3MzUtNDJjNi05YmJiLTFkMTc5OWI1OWM5OS8xL3RMQjV1aFBPUnF2c2YxdkQ4 OTNOaTdobldRVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQBW8LcAwQBwqUMMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwDdXjANBgkqhkiG9w0BAQsFAAOCAQEAg/cQZBNNciyVQuF4e4pXHeyc G5+lMmNkSnkdu+piZu98HaS9245tAQPg5yR8tq15pG161J+0O4b58AirWCWCQ3Ri 9Tow/h58vF7DfYeX7D34n/UzXg7/pqDp8JVJlVgGra4mb538QFxV0S9laqLAiRZv aTyrwA2uYy+ETo461mpTc/s5vjF5NIEVvqxgk8LfBiZnWUX1Z5AkHRk+DyeN8bzs 1VX7wOIOSViTesPkIYTQytdLbzrHDDm4Pt+g672Jgc9kOAU1WM5FpCKTOixuVbbo Xh/fI03sd9cqrkY7Ph2D8jPBoVeJ0YS5tJMcvXnyFlTjvh5YkchKDbSOlNs6TQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:50:32 2026 by rpki-client