This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wKatm4cwm9AHnPowXUhhP4fEcNg.cer File: wKatm4cwm9AHnPowXUhhP4fEcNg.cer (raw, json) Hash identifier: I05j/vnzDRBxjsIi9icD5zLHcIJ2v6yS2DEp8watSuk= Subject key identifier: C0:A6:AD:9B:87:30:9B:D0:07:9C:FA:30:5D:48:61:3F:87:C4:70:D8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5A8E0AB483A431EA39B7811363AF77 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/10/fcc70e-e4a5-4b19-ab4f-70127b49b323/1/wKatm4cwm9AHnPowXUhhP4fEcNg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/10/fcc70e-e4a5-4b19-ab4f-70127b49b323/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:33 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204805 IP: 5.180.224.0/22 IP: 45.9.172.0/22 IP: 45.138.148.0/22 IP: 77.83.180.0/22 IP: 185.209.148.0/22 IP: 193.142.206.0/23 IP: 194.5.254.0/23 IP: 194.8.12.0/23 IP: 2a0b:47c0::/29 IP: 2a0f:cd80::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:8e:0a:b4:83:a4:31:ea:39:b7:81:13:63:af:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c0a6ad9b87309bd0079cfa305d48613f87c470d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1d:53:c5:b8:c7:d6:0c:b2:11:7e:0c:51:d8: fa:f6:0d:c1:72:f9:f5:3f:7b:a1:da:c2:51:2f:d1: c4:39:62:40:d5:53:d5:ae:49:21:df:b7:08:30:bd: a7:93:05:ab:3c:47:67:59:d6:7a:51:44:6f:32:6c: 77:25:33:27:21:2c:84:f6:c9:09:67:f3:79:19:ff: 83:de:5d:df:7f:dc:5d:b4:9b:2f:e4:41:c3:03:38: a1:86:1e:00:93:90:83:c3:43:78:d6:42:80:97:e8: 62:bf:3f:49:86:0b:b8:e1:77:86:16:f2:b3:6c:89: 38:a7:a1:26:84:c5:08:dd:15:21:4a:86:c9:39:bc: e6:6d:30:f0:a9:31:f0:b2:42:a5:f0:77:13:db:ed: 3b:08:45:f0:c8:fe:33:81:ce:77:6d:e9:19:59:b9: c1:5d:3d:b7:3c:74:ed:51:4b:51:8f:f0:4c:2e:04: be:1b:ac:8f:38:06:6d:e5:1a:a4:02:4d:bf:79:21: ca:8f:5e:48:6f:0e:13:92:10:f3:23:8f:62:fd:c4: 1f:50:b8:3f:10:c5:5c:f9:8f:b3:bc:da:a2:53:e6: cb:1c:b7:e5:2c:db:67:dc:aa:8e:d9:cb:86:bb:85: 94:5f:64:bb:48:6f:65:cb:82:1d:4d:10:be:e3:a6: 52:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:A6:AD:9B:87:30:9B:D0:07:9C:FA:30:5D:48:61:3F:87:C4:70:D8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fcc70e-e4a5-4b19-ab4f-70127b49b323/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fcc70e-e4a5-4b19-ab4f-70127b49b323/1/wKatm4cwm9AHnPowXUhhP4fEcNg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.224.0/22 45.9.172.0/22 45.138.148.0/22 77.83.180.0/22 185.209.148.0/22 193.142.206.0/23 194.5.254.0/23 194.8.12.0/23 IPv6: 2a0b:47c0::/29 2a0f:cd80::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204805 Signature Algorithm: sha256WithRSAEncryption 48:28:51:0b:d6:ca:4f:20:11:62:50:28:5e:ee:1f:59:16:af: bf:ce:d6:0d:19:e1:50:f5:c7:c5:9f:bd:db:96:42:8c:20:c0: 7f:8d:28:cc:24:89:56:b2:08:c8:77:d6:a3:11:3a:d4:3f:0e: 94:5e:54:61:28:bc:2b:ee:be:49:0c:79:d7:37:1b:66:61:fc: 29:17:da:ff:7e:35:9b:48:c3:9d:27:f9:29:2f:6d:db:51:fe: 0b:5f:63:8b:26:90:e3:71:f5:a8:65:9e:4d:94:e5:59:cb:38: 09:f0:9f:c5:2a:2f:24:de:30:a8:39:17:32:ec:45:4f:c6:33: 6d:e9:c9:e4:e9:9e:3f:21:83:a2:6d:46:2f:d5:b6:9d:40:43: 3c:4b:30:9e:e4:fa:13:f7:91:3c:0c:2d:c0:96:74:f3:02:68: 2c:24:1e:fe:36:13:d7:9a:a5:ad:bb:6f:6f:ac:7a:d5:7c:28: b1:5a:01:db:14:9d:77:44:cf:af:f9:5c:ce:39:6d:83:e6:c8: 9e:95:86:91:57:aa:23:e4:77:c9:79:48:a7:09:0d:cf:db:02: b9:6d:44:ef:76:e2:6e:0e:bd:02:31:ed:be:4f:c8:34:17:80: ea:11:8e:47:4f:44:78:f0:37:38:8d:33:29:d6:78:43:43:9c: fb:6c:63:0b -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgISAZt6Wo4KtIOkMeo5t4ETY693MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMGE2YWQ5Yjg3MzA5YmQwMDc5Y2ZhMzA1ZDQ4NjEzZjg3YzQ3MGQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAth1TxbjH1gyyEX4MUdj69g3Bcvn1 P3uh2sJRL9HEOWJA1VPVrkkh37cIML2nkwWrPEdnWdZ6UURvMmx3JTMnISyE9skJ Z/N5Gf+D3l3ff9xdtJsv5EHDAzihhh4Ak5CDw0N41kKAl+hivz9Jhgu44XeGFvKz bIk4p6EmhMUI3RUhSobJObzmbTDwqTHwskKl8HcT2+07CEXwyP4zgc53bekZWbnB XT23PHTtUUtRj/BMLgS+G6yPOAZt5RqkAk2/eSHKj15Ibw4TkhDzI49i/cQfULg/ EMVc+Y+zvNqiU+bLHLflLNtn3KqO2cuGu4WUX2S7SG9ly4IdTRC+46ZS+wIDAQAB o4IC4DCCAtwwHQYDVR0OBBYEFMCmrZuHMJvQB5z6MF1IYT+HxHDYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEwL2ZjYzcw ZS1lNGE1LTRiMTktYWI0Zi03MDEyN2I0OWIzMjMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTAvZmNjNzBl LWU0YTUtNGIxOS1hYjRmLTcwMTI3YjQ5YjMyMy8xL3dLYXRtNGN3bTlBSG5Qb3dY VWhoUDRmRWNOZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GCCsGAQUF BwEHAQH/BFAwTjA2BAIAATAwAwQCBbTgAwQCLQmsAwQCLYqUAwQCTVO0AwQCudGU AwQBwY7OAwQBwgX+AwQBwggMMBQEAgACMA4DBQMqC0fAAwUAKg/NgDAaBggrBgEF BQcBCAEB/wQLMAmgBzAFAgMDIAUwDQYJKoZIhvcNAQELBQADggEBAEgoUQvWyk8g EWJQKF7uH1kWr7/O1g0Z4VD1x8WfvduWQowgwH+NKMwkiVayCMh31qMROtQ/DpRe VGEovCvuvkkMedc3G2Zh/CkX2v9+NZtIw50n+SkvbdtR/gtfY4smkONx9ahlnk2U 5VnLOAnwn8UqLyTeMKg5FzLsRU/GM23pyeTpnj8hg6JtRi/Vtp1AQzxLMJ7k+hP3 kTwMLcCWdPMCaCwkHv42E9eapa27b2+setV8KLFaAdsUnXdEz6/5XM45bYPmyJ6V hpFXqiPkd8l5SKcJDc/bArltRO924m4OvQIx7b5PyDQXgOoRjkdPRHjwNziNMynW eENDnPtsYws= -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:29 2026 by rpki-client