This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer File: tPljRdPyLts5XSR_e4bS1z5KAJE.cer (raw, json) Hash identifier: XxH9pF0GhU0y8YdubqdCbxLQ2MCdkSfwZTtXyKQlAVA= Subject key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BE08DA04F7F5AD61D1BF516C9885482FE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Wed 21 Jan 2026 12:35:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205125 IP: 103.82.102.0/23 IP: 103.127.76.0/23 IP: 193.239.160.0/23 IP: 193.239.166.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:8d:a0:4f:7f:5a:d6:1d:1b:f5:16:c9:88:54:82:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 21 12:35:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:6a:36:9f:3f:58:45:d7:de:ce:15:44:a0: 87:5a:6d:43:2f:ef:69:e7:11:ef:30:0a:c4:07:88: 95:3a:a7:de:f9:3a:19:80:e1:82:2e:0d:c2:20:5f: 92:7c:e1:3b:bc:8a:69:df:2e:e8:eb:d5:c8:4a:2e: a5:eb:3a:50:9f:fe:a4:17:df:13:f1:9e:7a:41:3a: 6e:86:76:65:b6:88:d1:7b:89:1b:31:ee:79:de:fb: 25:da:98:52:4a:21:87:fe:01:60:ee:d1:5b:1e:28: 31:a9:98:65:66:81:5d:5e:b5:9f:ce:83:dc:c6:54: 76:83:9b:1b:31:24:c9:1d:16:9a:e6:16:ab:dc:ac: 5e:16:ae:c0:05:09:05:bd:9d:0d:6c:52:a5:11:e0: 23:c1:42:60:1b:17:15:f4:6a:17:9e:49:e4:fc:fc: bd:9c:fb:2d:a4:12:bd:c4:e5:51:26:d5:68:02:5c: 77:06:86:14:04:f5:3c:12:34:fd:4b:83:32:57:9a: 7e:4a:f3:a8:90:2b:a0:b4:53:81:4f:43:1e:08:c7: 00:3b:93:45:ba:db:09:c0:fb:34:3e:47:0c:f8:ad: bb:5d:fe:69:60:93:65:1e:ca:0e:99:17:5e:fd:d5: 57:f9:3d:8d:42:3d:a8:bb:11:36:13:fd:de:63:9f: ff:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.102.0/23 103.127.76.0/23 193.239.160.0/23 193.239.166.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205125 Signature Algorithm: sha256WithRSAEncryption 3d:f7:ea:3c:39:ed:6d:e7:db:e0:1b:08:b4:9b:1c:b8:63:c3: 29:b0:81:61:29:46:d6:e4:0b:c6:c8:ec:9d:3d:fc:52:4a:a0: f1:62:ad:90:ad:b9:38:d8:69:e9:80:29:64:92:50:e1:7a:61: 7f:71:87:d2:65:ad:2a:20:66:b1:2a:97:02:c1:ae:34:ce:70: 1a:56:e2:67:aa:a7:48:16:72:6c:fd:41:a6:a7:7b:5a:9a:aa: 0e:81:43:bd:fa:ff:bd:d4:13:d2:e0:65:1e:6c:68:b1:bf:71: d0:3a:67:b1:f5:d6:db:8a:02:0f:f0:fd:c5:43:fc:fb:06:8e: a0:f5:b4:00:4f:38:c4:14:d8:1d:c9:87:ed:55:bb:dd:7d:b0: c2:ad:cd:d4:79:ff:77:0a:90:26:21:3f:da:da:d9:f7:5d:2d: 25:1e:89:52:9a:c4:0d:09:91:b8:63:2c:fd:ef:e8:81:a6:39: e2:41:26:4d:27:ee:de:fd:36:48:3f:69:97:a4:0b:8c:39:73: 5d:ee:2e:36:fe:51:7e:52:1d:08:37:c8:0a:b3:bb:7d:8c:12: a6:b2:ea:52:ed:59:4b:fa:22:cf:35:d2:5d:93:f9:d0:9a:77: 66:b1:e0:19:a1:70:c5:98:8a:a7:60:84:fd:cb:82:12:f5:6d: c5:fb:8f:1d -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgISAZvgjaBPf1rWHRv1FsmIVIL+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTIxMTIzNTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbJqNp8/WEXX3s4VRKCHWm1DL+9p 5xHvMArEB4iVOqfe+ToZgOGCLg3CIF+SfOE7vIpp3y7o69XISi6l6zpQn/6kF98T 8Z56QTpuhnZltojRe4kbMe553vsl2phSSiGH/gFg7tFbHigxqZhlZoFdXrWfzoPc xlR2g5sbMSTJHRaa5har3KxeFq7ABQkFvZ0NbFKlEeAjwUJgGxcV9GoXnknk/Py9 nPstpBK9xOVRJtVoAlx3BoYUBPU8EjT9S4MyV5p+SvOokCugtFOBT0MeCMcAO5NF utsJwPs0PkcM+K27Xf5pYJNlHsoOmRde/dVX+T2NQj2ouxE2E/3eY5//EwIDAQAB o4ICsjCCAq4wHQYDVR0OBBYEFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M1LzhlMTIx ZC03M2IzLTQzOGEtODNjNC02ZmMzNDNkNzdjZDIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUvOGUxMjFk LTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRzNVhTUl9l NGJTMXo1S0FKRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAATAYAwQBZ1JmAwQBZ39MAwQBwe+gAwQBwe+mMBoGCCsG AQUFBwEIAQH/BAswCaAHMAUCAwMhRTANBgkqhkiG9w0BAQsFAAOCAQEAPffqPDnt befb4BsItJscuGPDKbCBYSlG1uQLxsjsnT38Ukqg8WKtkK25ONhp6YApZJJQ4Xph f3GH0mWtKiBmsSqXAsGuNM5wGlbiZ6qnSBZybP1Bpqd7WpqqDoFDvfr/vdQT0uBl Hmxosb9x0DpnsfXW24oCD/D9xUP8+waOoPW0AE84xBTYHcmH7VW73X2wwq3N1Hn/ dwqQJiE/2trZ910tJR6JUprEDQmRuGMs/e/ogaY54kEmTSfu3v02SD9pl6QLjDlz Xe4uNv5RflIdCDfICrO7fYwSprLqUu1ZS/oizzXSXZP50Jp3ZrHgGaFwxZiKp2CE /cuCEvVtxfuPHQ== -----END CERTIFICATE-----Generated at Wed Jan 21 18:27:00 2026 by rpki-client