This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer File: wJLY1VEbGezkVpYPI7-ohu4dVws.cer (raw, json) Hash identifier: K6NZSwmmPN574c8ofSGFmWlVLMjGddOc347nLaBuFI0= Subject key identifier: C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC7BEE0870CF8645CE9B7366D84E338 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:17:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 58322 AS: 210402 IP: 91.106.32.0/19 IP: 109.61.4.0/22 IP: 2a0a:d940::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:be:e0:87:0c:f8:64:5c:e9:b7:36:6d:84:e3:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c092d8d5511b19ece456960f23bfa886ee1d570b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b8:16:94:b2:ff:2f:03:fa:5a:9a:42:5f:31: 15:bd:90:8e:f6:33:c1:9f:e5:7c:3b:d9:40:cb:34: 8e:6e:91:31:d3:c3:6b:68:27:4a:9c:73:6a:90:aa: d9:26:7d:ce:01:42:6a:ea:4e:a0:73:7f:e8:8f:48: e3:a9:3e:4d:92:38:15:0b:e1:18:3a:42:bb:c5:df: ab:89:cb:ec:63:e0:aa:b9:ec:4d:a6:9d:d6:f5:c1: 07:c5:4f:e7:ea:1c:33:48:96:11:7d:f0:c5:79:0f: 05:b5:42:4b:7b:b1:ec:85:3e:50:79:d2:48:d4:b1: 60:a3:2f:e7:01:d8:91:ad:b9:0d:16:76:57:40:e9: 18:de:62:c0:3c:0a:98:4b:2d:4a:5f:ed:e3:7d:22: a3:75:1e:58:0c:53:47:f6:1d:e6:e2:b6:78:b5:ca: d8:20:03:5d:ce:d2:8b:04:28:08:b6:66:e1:81:a5: d0:30:73:e9:7c:26:b0:0e:28:8e:34:95:5a:8c:44: 17:7b:a6:05:92:a4:76:ce:f8:54:71:19:a2:fb:9a: 5d:4c:ae:84:cc:e8:ba:50:b2:41:92:87:37:8d:3b: 8c:07:91:c9:8d:3b:e2:aa:56:31:b2:c5:2b:d5:6a: f5:ff:07:a2:4e:a4:35:65:53:19:c4:b3:84:28:d6: 16:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.106.32.0/19 109.61.4.0/22 IPv6: 2a0a:d940::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 58322 210402 Signature Algorithm: sha256WithRSAEncryption 60:5b:74:9a:f3:99:23:2c:79:34:e5:6e:10:d2:01:93:d2:e0: 33:dc:63:a1:4b:bf:a1:ea:1e:e3:b5:3f:9d:79:24:d3:e9:a7: 5d:12:23:bd:83:9b:ad:9d:3d:8f:e4:b4:a0:af:01:32:93:f5: 2d:3b:dc:9a:ac:45:7e:df:62:b5:6c:f5:8a:e3:c7:f2:7d:64: 8c:05:04:fa:6a:ef:40:a9:72:7b:95:b4:5d:50:c6:41:c6:5b: cf:a1:c8:58:63:25:00:8c:f9:d8:55:de:07:86:04:e3:d2:7b: 29:eb:63:67:13:a2:88:9a:26:93:7e:4d:39:38:c3:ea:8d:2c: 70:79:b5:96:fc:f7:b7:c5:aa:22:ad:6d:6e:5f:e6:a5:bf:43: bf:51:6a:3b:1f:3c:74:a8:ec:84:ae:8f:29:60:9d:f2:15:b6: cc:1d:40:7b:3e:2c:ff:72:15:ef:03:0d:e3:eb:23:e1:c7:c3: b3:22:89:f5:ba:a8:1d:7e:f6:5f:79:49:57:a9:ec:51:1c:a0: 68:1c:73:d3:d5:b8:93:c6:c9:36:44:b9:75:d3:fe:72:1a:b0: ef:0c:f7:23:39:fc:64:49:0b:5a:37:9c:a1:93:12:77:45:37: 6c:30:16:d7:83:6b:4e:89:5e:f7:9d:e0:f5:51:eb:03:1e:0f: d0:8c:b2:3a -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt6x77ghwz4ZFzptzZthOM4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMDkyZDhkNTUxMWIxOWVjZTQ1Njk2MGYyM2JmYTg4NmVlMWQ1NzBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5LgWlLL/LwP6WppCXzEVvZCO9jPB n+V8O9lAyzSObpEx08NraCdKnHNqkKrZJn3OAUJq6k6gc3/oj0jjqT5NkjgVC+EY OkK7xd+ricvsY+CquexNpp3W9cEHxU/n6hwzSJYRffDFeQ8FtUJLe7HshT5QedJI 1LFgoy/nAdiRrbkNFnZXQOkY3mLAPAqYSy1KX+3jfSKjdR5YDFNH9h3m4rZ4tcrY IANdztKLBCgItmbhgaXQMHPpfCawDiiONJVajEQXe6YFkqR2zvhUcRmi+5pdTK6E zOi6ULJBkoc3jTuMB5HJjTviqlYxssUr1Wr1/weiTqQ1ZVMZxLOEKNYWMwIDAQAB o4ICujCCArYwHQYDVR0OBBYEFMCS2NVRGxns5FaWDyO/qIbuHVcLMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY1L2Q0MzBk OS1kMjE0LTQxYzAtOGU1MS0yNjdhMTZiNDYyOWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvZDQzMGQ5 LWQyMTQtNDFjMC04ZTUxLTI2N2ExNmI0NjI5Zi8xL3dKTFkxVkViR2V6a1ZwWVBJ Ny1vaHU0ZFZ3cy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQFW2ogAwQCbT0EMA0EAgACMAcDBQMqCtlAMB8G CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwDj0gIDAzXiMA0GCSqGSIb3DQEBCwUAA4IB AQBgW3Sa85kjLHk05W4Q0gGT0uAz3GOhS7+h6h7jtT+deSTT6addEiO9g5utnT2P 5LSgrwEyk/UtO9yarEV+32K1bPWK48fyfWSMBQT6au9AqXJ7lbRdUMZBxlvPochY YyUAjPnYVd4HhgTj0nsp62NnE6KImiaTfk05OMPqjSxwebWW/Pe3xaoirW1uX+al v0O/UWo7Hzx0qOyEro8pYJ3yFbbMHUB7Piz/chXvAw3j6yPhx8OzIon1uqgdfvZf eUlXqexRHKBoHHPT1biTxsk2RLl10/5yGrDvDPcjOfxkSQtaN5yhkxJ3RTdsMBbX g2tOiV73neD1UesDHg/QjLI6 -----END CERTIFICATE-----Generated at Tue Jan 20 03:00:31 2026 by rpki-client