This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer File: wQmKGQW70zgVM4KPa3_SJxcEMe8.cer (raw, json) Hash identifier: FLsQOm34vzb5qJGJ49hH7678ixhOQLqKoPRI4aHC5lI= Subject key identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC94C0EDA97144AAC7F7B4793E8763C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:19:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 57324 AS: 211513 IP: 79.132.195.0 -- 79.132.199.255 IP: 86.111.144.0/22 IP: 109.230.112.0/20 IP: 122.102.116.0/22 IP: 185.113.105.0/24 IP: 185.113.107.0/24 IP: 202.164.192.0/20 IP: 2a03:c340::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:4c:0e:da:97:14:4a:ac:7f:7b:47:93:e8:76:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c1098a1905bbd3381533828f6b7fd227170431ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:84:40:db:54:43:50:cc:f1:60:3d:23:1c:04: a0:5b:88:68:77:ca:58:73:b9:43:98:5d:84:c7:c0: e1:68:a7:00:08:75:30:da:ce:45:ca:b8:9e:96:e2: a3:2b:c7:28:1a:00:3d:c5:c9:20:7f:03:94:85:af: ae:8e:1d:9a:0e:64:db:bd:ee:e5:f0:d2:30:13:f8: 91:3c:97:5c:06:5f:6d:cb:5f:45:3c:31:2e:b6:16: 0d:3b:be:25:c4:ba:fd:04:d4:cd:96:3c:3e:19:22: d9:10:a6:1c:07:dc:a0:f7:8d:5e:74:e8:17:0f:96: 6a:43:0d:40:1d:af:7a:4e:be:47:96:11:e8:83:95: 8c:fc:ce:6c:9c:ec:ad:7c:99:ec:41:fe:4c:11:fb: 2a:86:5b:f0:eb:3e:85:f3:54:b3:6c:ed:e4:d1:03: 24:a6:91:a3:25:95:b1:26:f2:e8:1e:ed:e3:83:1f: 64:65:e9:ee:59:b9:46:42:5e:0b:68:70:37:f3:6c: 5f:94:25:e3:33:4e:e5:3d:df:65:c7:62:db:6b:90: 22:61:48:15:26:78:9c:b7:c6:8a:cd:42:47:e5:d1: 37:a2:a2:4d:2a:85:76:65:5c:8b:d2:b3:b2:6b:f8: 07:85:89:2b:e3:1d:b8:34:e7:5f:fc:12:5d:11:3c: 2b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.132.195.0-79.132.199.255 86.111.144.0/22 109.230.112.0/20 122.102.116.0/22 185.113.105.0/24 185.113.107.0/24 202.164.192.0/20 IPv6: 2a03:c340::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 57324 211513 Signature Algorithm: sha256WithRSAEncryption 5e:e3:33:61:46:f5:24:bd:89:d8:da:a1:9b:1f:38:f3:ee:52: 04:2e:a4:56:60:bc:ee:3e:ed:5d:dc:9f:3f:56:bd:a9:6c:9c: 2e:e4:a6:80:81:a9:7a:3e:4a:8a:28:70:cb:f3:f8:01:22:26: cf:17:eb:25:54:88:f2:5d:3f:be:ed:13:37:b5:0f:a6:63:d8: b2:b0:c1:78:53:02:76:76:c5:65:0c:a1:dc:dd:04:1b:cd:82: 4e:12:a9:9c:e3:c0:a6:4f:87:58:20:51:93:eb:7a:34:72:80: 80:73:57:9e:fc:6b:f5:30:aa:3e:64:80:0a:89:2f:7c:ee:b6: a3:f7:e6:74:64:ef:fa:af:bd:03:9d:5f:c0:e2:82:15:9f:40: 3e:69:48:53:4e:43:dc:29:c0:f8:76:9e:ac:cc:0b:12:b1:9e: 5e:69:38:cc:bb:6c:04:95:51:52:b0:56:b0:bb:d5:bd:51:33: 59:82:e1:a0:9b:76:dc:b3:ab:2b:0b:02:ff:a7:28:23:83:9e: db:4f:90:f9:11:00:34:6c:8e:d5:94:39:c5:54:37:bb:48:09: ee:90:12:28:3c:45:d0:53:ec:d9:52:a3:a2:1c:7b:fc:1e:cb: 52:40:85:97:60:93:c9:c0:40:c7:13:c9:d6:b2:e0:9d:ae:f9: 12:5c:87:39 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgISAZt6yUwO2pcUSqx/e0eT6HY8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMTA5OGExOTA1YmJkMzM4MTUzMzgyOGY2YjdmZDIyNzE3MDQzMWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4RA21RDUMzxYD0jHASgW4hod8pY c7lDmF2Ex8DhaKcACHUw2s5FyrieluKjK8coGgA9xckgfwOUha+ujh2aDmTbve7l 8NIwE/iRPJdcBl9ty19FPDEuthYNO74lxLr9BNTNljw+GSLZEKYcB9yg941edOgX D5ZqQw1AHa96Tr5HlhHog5WM/M5snOytfJnsQf5MEfsqhlvw6z6F81SzbO3k0QMk ppGjJZWxJvLoHu3jgx9kZenuWblGQl4LaHA382xflCXjM07lPd9lx2Lba5AiYUgV Jnict8aKzUJH5dE3oqJNKoV2ZVyL0rOya/gHhYkr4x24NOdf/BJdETwrowIDAQAB o4IC4DCCAtwwHQYDVR0OBBYEFMEJihkFu9M4FTOCj2t/0icXBDHvMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgyLzJlZWQ3 MS00NjY1LTQ5NDgtYTNjNS1iMmE3MTNkMmVhYjIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIvMmVlZDcx LTQ2NjUtNDk0OC1hM2M1LWIyYTcxM2QyZWFiMi8xL3dRbUtHUVc3MHpnVk00S1Bh M19TSnhjRU1lOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGCCsGAQUF BwEHAQH/BEswSTA4BAIAATAyMAwDBABPhMMDBANPhMADBAJWb5ADBARt5nADBAJ6 ZnQDBAC5cWkDBAC5cWsDBATKpMAwDQQCAAIwBwMFAyoDw0AwHwYIKwYBBQUHAQgB Af8EEDAOoAwwCgIDAN/sAgMDOjkwDQYJKoZIhvcNAQELBQADggEBAF7jM2FG9SS9 idjaoZsfOPPuUgQupFZgvO4+7V3cnz9WvalsnC7kpoCBqXo+SooocMvz+AEiJs8X 6yVUiPJdP77tEze1D6Zj2LKwwXhTAnZ2xWUModzdBBvNgk4SqZzjwKZPh1ggUZPr ejRygIBzV578a/Uwqj5kgAqJL3zutqP35nRk7/qvvQOdX8DighWfQD5pSFNOQ9wp wPh2nqzMCxKxnl5pOMy7bASVUVKwVrC71b1RM1mC4aCbdtyzqysLAv+nKCODnttP kPkRADRsjtWUOcVUN7tICe6QEig8RdBT7NlSo6Ice/wey1JAhZdgk8nAQMcTyday 4J2u+RJchzk= -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:10 2026 by rpki-client