This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer File: tqNouOZvnhWmEOwY1rFHtrokzuc.cer (raw, json) Hash identifier: FOOMhAOoTQwj9UnEjpiSTLSW7DDAMLkXGlJ40mP2P4w= Subject key identifier: B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE1664688852EAD1A5D67D93CA1EAF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:56 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207363 IP: 2001:678:1098::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:16:64:68:88:52:ea:d1:a5:d6:7d:93:ca:1e:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6a368b8e66f9e15a610ec18d6b147b6ba24cee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:98:14:ef:33:d6:03:8f:56:ab:2f:b1:4c:81: ba:0f:a4:1e:4e:e0:68:5c:21:96:36:17:71:8e:67: ea:2c:ce:7d:ad:d7:a1:79:2d:4e:fd:d6:a3:9b:4e: 0e:e5:8b:78:64:86:a5:a3:a9:1a:e8:53:40:6b:aa: fa:e3:45:2e:45:54:65:e4:2f:d3:0e:98:20:7b:e0: e7:e8:22:ea:80:22:5d:36:3f:79:6a:f5:51:1a:43: 5d:97:d9:9d:92:07:90:f2:51:99:c4:24:f0:7b:92: 38:53:a6:31:0e:47:41:39:f3:bb:2a:df:3c:be:67: 88:07:8a:d8:26:0f:59:2e:c6:56:b3:5f:a9:42:0b: 1a:ae:ff:0e:aa:c4:72:92:67:71:b6:66:17:a4:39: e1:52:b2:c4:0b:b3:45:5f:a2:80:1f:24:02:59:08: ef:24:5b:43:c5:22:0c:0e:bd:c8:9d:78:b5:7f:9a: 94:f1:80:a0:c3:c0:8a:18:54:cf:14:66:b3:93:7c: 05:43:d2:c8:15:50:00:99:fb:6c:f6:3d:7d:e5:25: 4f:14:7f:65:7f:3e:61:69:09:bb:94:27:2d:2e:40: c6:4d:34:b6:76:1a:11:dd:c7:95:ce:d5:a4:f0:35: 20:a0:98:88:0c:6d:a8:8d:23:58:27:a5:72:bd:ae: a8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1098::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207363 Signature Algorithm: sha256WithRSAEncryption a1:5a:d6:a0:86:40:69:b8:27:de:7f:1e:a8:42:1f:c3:54:de: e2:99:b2:0e:90:64:19:5f:3d:cb:59:7a:a2:60:3f:76:74:83: 63:eb:6f:32:1c:a2:21:cc:9a:11:15:2a:ca:7e:56:1c:64:21: b5:0d:4b:b0:ca:1b:ea:bd:f7:5b:70:54:af:8e:50:aa:35:8d: 5e:64:ca:61:c8:09:23:ea:8b:26:ea:78:7b:13:62:6f:4b:e8: 05:43:04:de:f9:e7:8e:4a:84:33:a4:4f:4a:56:ee:23:f5:04: 74:5a:41:65:09:00:35:32:82:95:77:04:8b:9f:85:3f:05:67: b6:2a:3f:f0:a5:7a:02:e3:33:f4:68:d0:5b:5b:62:cb:fa:7d: 89:3a:da:3b:f9:7a:75:ae:4a:33:d5:46:0b:57:89:5e:bc:c7: 82:e8:d6:1c:ba:29:78:b0:39:54:b7:bd:ba:b8:65:96:39:bf: ee:2a:1e:92:b9:36:c2:e4:33:aa:32:28:f7:d7:ed:fa:77:cb: af:04:cb:bc:4b:3f:cf:fb:1d:60:40:67:78:23:47:20:7c:ec: ab:dd:61:ad:92:4c:1a:66:9c:07:4b:a1:1f:7d:f0:46:9c:82: 78:94:9c:c5:67:94:1f:f8:a8:0c:23:c0:09:cc:8c:67:50:aa: 06:a7:b8:bd -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt87hZkaIhS6tGl1n2Tyh6vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNmEzNjhiOGU2NmY5ZTE1YTYxMGVjMThkNmIxNDdiNmJhMjRjZWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZgU7zPWA49Wqy+xTIG6D6QeTuBo XCGWNhdxjmfqLM59rdeheS1O/dajm04O5Yt4ZIalo6ka6FNAa6r640UuRVRl5C/T Dpgge+Dn6CLqgCJdNj95avVRGkNdl9mdkgeQ8lGZxCTwe5I4U6YxDkdBOfO7Kt88 vmeIB4rYJg9ZLsZWs1+pQgsarv8OqsRykmdxtmYXpDnhUrLEC7NFX6KAHyQCWQjv JFtDxSIMDr3InXi1f5qU8YCgw8CKGFTPFGazk3wFQ9LIFVAAmfts9j195SVPFH9l fz5haQm7lCctLkDGTTS2dhoR3ceVztWk8DUgoJiIDG2ojSNYJ6Vyva6o6wIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFLajaLjmb54VphDsGNaxR7a6JM7nMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFhL2JhMTg2 OC1hYjc2LTRiZTEtYmM1My03NDgwZDhhMmYxYmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWEvYmExODY4 LWFiNzYtNGJlMS1iYzUzLTc0ODBkOGEyZjFiZS8xL3RxTm91T1p2bmhXbUVPd1kx ckZIdHJva3p1Yy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBCYMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMqAzANBgkqhkiG9w0BAQsFAAOCAQEAoVrWoIZAabgn3n8eqEIfw1Te4pmy DpBkGV89y1l6omA/dnSDY+tvMhyiIcyaERUqyn5WHGQhtQ1LsMob6r33W3BUr45Q qjWNXmTKYcgJI+qLJup4exNib0voBUME3vnnjkqEM6RPSlbuI/UEdFpBZQkANTKC lXcEi5+FPwVntio/8KV6AuMz9GjQW1tiy/p9iTraO/l6da5KM9VGC1eJXrzHgujW HLopeLA5VLe9urhlljm/7ioekrk2wuQzqjIo99ft+nfLrwTLvEs/z/sdYEBneCNH IHzsq91hrZJMGmacB0uhH33wRpyCeJScxWeUH/ioDCPACcyMZ1CqBqe4vQ== -----END CERTIFICATE-----Generated at Sun Jan 18 09:53:27 2026 by rpki-client