This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tXwPr6ZQ3ZSjtVgXOfY9iO-kFPM.cer File: tXwPr6ZQ3ZSjtVgXOfY9iO-kFPM.cer (raw, json) Hash identifier: yu2u0ND3FKbDmCV3ZD0Tlp3lu1kWdDv392v4L7mMI04= Subject key identifier: B5:7C:0F:AF:A6:50:DD:94:A3:B5:58:17:39:F6:3D:88:EF:A4:14:F3 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E9A6C83CCE9D315C25306341399E0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/8c02ff-a9c5-4788-ae8b-18b9a8510539/1/tXwPr6ZQ3ZSjtVgXOfY9iO-kFPM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/8c02ff-a9c5-4788-ae8b-18b9a8510539/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:18 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206146 IP: 185.59.219.0/24 IP: 217.18.84.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:9a:6c:83:cc:e9:d3:15:c2:53:06:34:13:99:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b57c0fafa650dd94a3b5581739f63d88efa414f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:25:79:22:fb:ff:b9:83:76:5b:79:0c:b4:bb: 46:16:23:d5:61:93:13:87:68:ea:e9:3f:22:5e:19: 32:09:9a:92:6c:9d:71:1b:e9:f8:11:b9:c8:99:03: 1b:16:8a:75:91:2e:48:f3:a5:9a:fb:6c:a7:ed:c1: 3f:42:17:7f:18:43:96:3d:d4:36:07:95:88:0b:92: 47:03:e3:36:0b:ef:55:ad:40:9b:c3:a5:64:cd:42: dc:83:8e:2d:ea:cc:b3:4c:36:b4:29:e6:b6:e9:2f: 85:94:86:43:81:78:f4:bd:c7:02:54:96:85:e7:22: 5e:6c:16:12:24:3f:c3:e3:d6:00:f1:fc:a7:03:ce: 70:43:2c:96:63:e4:46:a9:8a:58:96:25:f7:cd:f9: 70:99:94:f9:cb:98:b2:11:ec:62:19:1e:27:c1:aa: d8:6e:78:e3:fd:6a:22:70:f2:b1:c9:14:12:d6:d0: dc:cc:05:26:f6:0e:19:db:f1:b6:17:d7:28:29:2f: 16:01:d7:58:01:67:a9:e7:5a:16:56:4c:2f:e4:13: f0:e4:e1:3d:10:21:2a:2f:03:fa:4f:94:cc:79:00: 5f:20:07:31:49:03:d8:da:02:ff:ed:2d:e8:95:cf: 97:7e:fa:22:71:20:6b:34:68:c6:03:88:f7:83:cb: 6f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:7C:0F:AF:A6:50:DD:94:A3:B5:58:17:39:F6:3D:88:EF:A4:14:F3 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8c02ff-a9c5-4788-ae8b-18b9a8510539/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8c02ff-a9c5-4788-ae8b-18b9a8510539/1/tXwPr6ZQ3ZSjtVgXOfY9iO-kFPM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.59.219.0/24 217.18.84.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206146 Signature Algorithm: sha256WithRSAEncryption 54:2c:61:bb:d4:03:82:8a:e5:50:da:7b:62:d4:5a:11:4f:9c: bb:f9:9f:24:91:04:c0:b2:37:c9:5b:6e:e1:94:4c:81:0c:1d: 76:e6:bb:81:86:e3:2e:d6:4c:15:67:c1:d5:7c:30:4e:30:88: 61:16:7e:c4:4e:52:af:71:ce:42:99:15:90:d0:7c:ee:61:aa: 4a:2a:d5:c6:54:4e:1b:21:cd:98:0a:42:6d:47:a6:84:01:95: 2c:e4:5b:fa:04:28:a5:c7:21:2e:3c:50:03:9e:9b:e5:27:98: 5d:ed:43:3f:a7:31:74:b2:88:52:5c:20:19:d1:c2:8f:ad:27: db:c0:27:7a:dd:36:3a:b8:bb:ab:df:ac:16:59:06:41:71:0a: ce:4f:ab:3b:95:a1:bd:a7:01:f0:9b:91:9c:29:db:b5:8a:45: fc:ec:3c:3d:46:93:9e:53:bb:d0:97:67:9f:e9:ab:5d:0b:5b: 16:d3:2f:4a:27:4a:28:5d:3d:19:87:05:25:ce:0b:21:ea:49: 0d:ff:29:3d:95:8c:38:4f:24:fb:7f:e8:7b:51:03:44:b4:fc: c1:fd:60:a0:46:91:2b:0b:fa:fa:b0:4d:79:61:3e:8a:e5:3e: 3b:a4:34:90:43:51:0e:f6:9a:d9:17:a2:d9:fc:8e:ce:af:df: b5:b8:44:51 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt5fppsg8zp0xXCUwY0E5ngMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTdjMGZhZmE2NTBkZDk0YTNiNTU4MTczOWY2M2Q4OGVmYTQxNGYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyiV5Ivv/uYN2W3kMtLtGFiPVYZMT h2jq6T8iXhkyCZqSbJ1xG+n4EbnImQMbFop1kS5I86Wa+2yn7cE/Qhd/GEOWPdQ2 B5WIC5JHA+M2C+9VrUCbw6VkzULcg44t6syzTDa0Kea26S+FlIZDgXj0vccCVJaF 5yJebBYSJD/D49YA8fynA85wQyyWY+RGqYpYliX3zflwmZT5y5iyEexiGR4nwarY bnjj/WoicPKxyRQS1tDczAUm9g4Z2/G2F9coKS8WAddYAWep51oWVkwv5BPw5OE9 ECEqLwP6T5TMeQBfIAcxSQPY2gL/7S3olc+XfvoicSBrNGjGA4j3g8tvLwIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFLV8D6+mUN2Uo7VYFzn2PYjvpBTzMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IxLzhjMDJm Zi1hOWM1LTQ3ODgtYWU4Yi0xOGI5YTg1MTA1MzkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEvOGMwMmZm LWE5YzUtNDc4OC1hZThiLTE4YjlhODUxMDUzOS8xL3RYd1ByNlpRM1pTanRWZ1hP Zlk5aU8ta0ZQTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAuTvbAwQA2RJUMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwMlQjANBgkqhkiG9w0BAQsFAAOCAQEAVCxhu9QDgorlUNp7YtRaEU+c u/mfJJEEwLI3yVtu4ZRMgQwddua7gYbjLtZMFWfB1XwwTjCIYRZ+xE5Sr3HOQpkV kNB87mGqSirVxlROGyHNmApCbUemhAGVLORb+gQopcchLjxQA56b5SeYXe1DP6cx dLKIUlwgGdHCj60n28Anet02Ori7q9+sFlkGQXEKzk+rO5WhvacB8JuRnCnbtYpF /Ow8PUaTnlO70Jdnn+mrXQtbFtMvSidKKF09GYcFJc4LIepJDf8pPZWMOE8k+3/o e1EDRLT8wf1goEaRKwv6+rBNeWE+iuU+O6Q0kENRDvaa2Rei2fyOzq/ftbhEUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:27:21 2026 by rpki-client