This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/w4w6HAXImev-FdI2GQmmNZfGgHg.cer File: w4w6HAXImev-FdI2GQmmNZfGgHg.cer (raw, json) Hash identifier: 81IWjPmzAwt6nnWQl2jRS+h5GhAcQjEuIw+SAEC+l78= Subject key identifier: C3:8C:3A:1C:05:C8:99:EB:FE:15:D2:36:19:09:A6:35:97:C6:80:78 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910FB4DA2F855F60D22F0ABA4B099DD Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5e/9e86ab-bc7f-4bc4-b127-42262161e940/1/w4w6HAXImev-FdI2GQmmNZfGgHg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5e/9e86ab-bc7f-4bc4-b127-42262161e940/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:34 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43771 IP: 91.198.148.0/24 IP: 185.202.4.0/22 IP: 2a0a:cdc0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:fb:4d:a2:f8:55:f6:0d:22:f0:ab:a4:b0:99:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c38c3a1c05c899ebfe15d2361909a63597c68078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:03:7b:d7:83:43:98:ff:ec:0a:6e:96:d9:9b: 15:09:4e:df:4c:fe:3f:79:49:34:b7:ab:64:b2:15: f1:5a:89:f4:78:ec:cc:72:59:54:f9:8c:50:7e:bb: 63:27:65:ce:89:6c:cb:68:56:1f:ba:a9:cc:f5:ec: 87:28:30:c0:e4:68:66:eb:f9:cb:d5:4c:c1:c7:a6: a1:5a:40:b8:db:a9:eb:46:45:b4:74:27:b0:05:c3: 09:85:a4:14:cb:cf:e4:68:66:99:e1:d1:6e:38:ca: d0:fe:03:14:9a:a5:f9:26:a8:7b:f3:34:dc:65:97: 12:55:fe:8b:88:86:53:39:08:63:86:c9:d3:f1:1e: 5b:ad:68:92:26:81:a8:eb:42:85:22:e1:d3:a8:38: 07:0f:1a:f4:36:b9:e6:c8:dc:34:f9:f8:ff:25:6c: bb:da:ce:d0:29:81:0d:28:e0:3b:1d:1e:91:6f:12: 58:a1:d2:aa:94:cf:73:94:a5:d6:47:4c:18:c5:ea: 18:ad:7a:1c:ef:3b:a3:3f:67:98:79:8a:f9:07:58: 73:e7:4f:6c:d2:0a:38:b7:a2:2a:83:ab:6b:9e:6a: c5:56:e7:01:a0:4d:d0:80:21:d8:2a:21:c9:b5:15: c3:93:ec:64:79:20:c2:91:e1:0d:37:dc:51:80:0e: ca:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8C:3A:1C:05:C8:99:EB:FE:15:D2:36:19:09:A6:35:97:C6:80:78 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9e86ab-bc7f-4bc4-b127-42262161e940/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9e86ab-bc7f-4bc4-b127-42262161e940/1/w4w6HAXImev-FdI2GQmmNZfGgHg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.148.0/24 185.202.4.0/22 IPv6: 2a0a:cdc0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43771 Signature Algorithm: sha256WithRSAEncryption 3d:11:97:c1:ad:44:cc:86:e6:3e:43:9d:38:0c:2f:2b:62:b1: ad:eb:9c:23:7e:72:2f:a1:a8:df:76:05:8a:da:a6:88:d3:16: 04:7f:0d:f5:91:13:47:9b:7b:65:f9:ea:71:84:95:fb:f9:67: 1f:7f:22:97:2b:dd:1e:cd:0e:ac:44:04:19:55:f4:04:94:49: 45:47:d1:d9:7a:6e:44:6a:94:c6:11:c4:b6:e5:37:c3:56:2c: dd:a3:74:1a:58:bf:93:57:80:60:90:dd:fe:b0:e2:ef:43:e5: 9f:4e:bd:6b:85:f4:67:f8:52:dc:40:f9:e1:41:84:a5:12:8c: a0:ed:b1:d5:10:d4:be:c7:63:88:62:30:ff:70:71:38:06:d7: ff:b5:43:12:db:e5:47:c1:d8:26:5c:31:8a:44:3a:13:75:0d: f3:e0:90:6d:0d:d1:54:a2:23:fc:72:39:f0:ff:7c:68:bf:ce: 46:59:4d:62:6e:1e:9c:14:c9:fb:94:35:d4:b5:14:50:b1:b0: 52:67:b9:83:04:16:dd:ef:39:80:cd:b1:a0:33:20:9e:8f:f9: ac:1b:4e:52:32:9f:02:60:f8:4b:d1:12:f7:21:1c:9b:b9:32: 9f:5a:2f:2b:6f:d7:c2:7b:f5:ab:b9:ac:f1:67:dd:5f:32:d0: 50:0a:3a:3c -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt5EPtNovhV9g0i8KuksJndMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMzhjM2ExYzA1Yzg5OWViZmUxNWQyMzYxOTA5YTYzNTk3YzY4MDc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgN714NDmP/sCm6W2ZsVCU7fTP4/ eUk0t6tkshXxWon0eOzMcllU+YxQfrtjJ2XOiWzLaFYfuqnM9eyHKDDA5Ghm6/nL 1UzBx6ahWkC426nrRkW0dCewBcMJhaQUy8/kaGaZ4dFuOMrQ/gMUmqX5Jqh78zTc ZZcSVf6LiIZTOQhjhsnT8R5brWiSJoGo60KFIuHTqDgHDxr0NrnmyNw0+fj/JWy7 2s7QKYENKOA7HR6RbxJYodKqlM9zlKXWR0wYxeoYrXoc7zujP2eYeYr5B1hz509s 0go4t6Iqg6trnmrFVucBoE3QgCHYKiHJtRXDk+xkeSDCkeENN9xRgA7KYwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFMOMOhwFyJnr/hXSNhkJpjWXxoB4MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVlLzllODZh Yi1iYzdmLTRiYzQtYjEyNy00MjI2MjE2MWU5NDAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUvOWU4NmFi LWJjN2YtNGJjNC1iMTI3LTQyMjYyMTYxZTk0MC8xL3c0dzZIQVhJbWV2LUZkSTJH UW1tTlpmR2dIZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAW8aUAwQCucoEMA0EAgACMAcDBQAqCs3AMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwCq+zANBgkqhkiG9w0BAQsFAAOCAQEAPRGX wa1EzIbmPkOdOAwvK2KxreucI35yL6Go33YFitqmiNMWBH8N9ZETR5t7ZfnqcYSV +/lnH38ilyvdHs0OrEQEGVX0BJRJRUfR2XpuRGqUxhHEtuU3w1Ys3aN0Gli/k1eA YJDd/rDi70Pln069a4X0Z/hS3ED54UGEpRKMoO2x1RDUvsdjiGIw/3BxOAbX/7VD EtvlR8HYJlwxikQ6E3UN8+CQbQ3RVKIj/HI58P98aL/ORllNYm4enBTJ+5Q11LUU ULGwUme5gwQW3e85gM2xoDMgno/5rBtOUjKfAmD4S9ES9yEcm7kyn1ovK2/Xwnv1 q7ms8WfdXzLQUAo6PA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:02 2026 by rpki-client