This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/we5gO3itcrp4VWgsorgGrA5-mP0.cer File: we5gO3itcrp4VWgsorgGrA5-mP0.cer (raw, json) Hash identifier: ja6wPTmApU9rSTaDbAzJeZa6fRQvPhZF8C545AKVOPw= Subject key identifier: C1:EE:60:3B:78:AD:72:BA:78:55:68:2C:A2:B8:06:AC:0E:7E:98:FD Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC7D753CE2A62C09D407B20865B7C2A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1c/9b6d9b-8541-44bc-961a-cee5be87a46b/1/we5gO3itcrp4VWgsorgGrA5-mP0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1c/9b6d9b-8541-44bc-961a-cee5be87a46b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:17:55 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 37.60.192.0/21 IP: 85.90.64.0/19 IP: 185.33.68.0/22 IP: 2001:4d60::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:d7:53:ce:2a:62:c0:9d:40:7b:20:86:5b:7c:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c1ee603b78ad72ba7855682ca2b806ac0e7e98fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c8:22:b6:5a:6d:1b:43:4c:0e:dc:96:64:f3: 01:99:89:b6:ca:df:a6:50:aa:6a:c0:31:bb:80:5f: 4c:7d:13:98:ec:7d:02:c4:a5:16:90:2f:d4:f2:c4: 6d:59:7b:c9:5f:3d:2a:79:c4:74:3a:cc:a7:0e:9f: 16:f3:ff:73:78:7c:81:8f:7a:e8:95:c6:a3:4f:4b: 8f:a4:f2:70:df:82:e8:12:1f:b7:a0:11:cc:2f:76: 0e:9b:fb:ed:95:62:66:e2:20:aa:86:54:7e:97:74: b4:cc:83:d0:a7:fb:2f:5b:cb:b9:37:5c:f0:23:1b: 8c:94:6c:91:e0:9e:f3:b3:35:ef:09:56:26:e8:91: fb:e6:38:47:79:37:58:1f:28:a6:75:23:6e:05:f4: 89:b5:7f:35:59:65:d3:57:61:0f:d5:85:07:ac:ef: e8:04:61:d8:f4:09:e3:ec:99:34:1b:76:59:34:23: de:f2:47:04:81:cc:35:04:38:19:1d:7a:43:9b:c8: 8b:93:ff:14:c5:7b:7c:96:cb:d9:40:4e:91:84:2b: 66:14:37:d9:62:c3:be:f8:ed:60:1a:b2:5f:5f:c9: 93:d1:4a:ac:0f:01:60:82:ef:66:e3:94:a2:5a:ed: 13:92:1f:6c:7b:67:a2:48:49:48:5d:db:0b:80:7f: fa:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:EE:60:3B:78:AD:72:BA:78:55:68:2C:A2:B8:06:AC:0E:7E:98:FD X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9b6d9b-8541-44bc-961a-cee5be87a46b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9b6d9b-8541-44bc-961a-cee5be87a46b/1/we5gO3itcrp4VWgsorgGrA5-mP0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.60.192.0/21 85.90.64.0/19 185.33.68.0/22 IPv6: 2001:4d60::/32 Signature Algorithm: sha256WithRSAEncryption 13:ba:b5:44:3b:bc:f8:47:2e:3a:5b:45:96:15:b8:63:83:c8: ad:03:d6:87:16:08:a7:24:21:cf:2d:ce:97:ba:53:bd:82:0a: 81:75:d9:bf:7c:8f:d4:e9:4a:72:74:72:0f:e1:57:46:16:58: 2a:b4:f0:e7:f0:49:18:9b:16:a0:be:0c:d8:59:df:a9:4e:38: 16:a0:dd:02:37:b4:af:ff:41:34:92:af:98:bd:e4:7f:2b:8b: a6:b3:1b:37:f5:d2:0e:8a:c0:27:09:d9:27:67:33:54:97:40: c9:a9:e5:45:e2:e0:9e:31:83:28:95:48:bf:ff:3d:36:67:d9: 65:31:c5:5b:34:c2:d2:a5:4f:c0:95:94:7e:98:70:6c:53:5f: d8:f9:76:94:48:88:9b:5f:03:e7:73:e1:16:62:2a:58:4b:11: ca:31:78:db:3f:1b:2f:d6:bd:65:d4:07:3e:31:c8:23:4f:86: df:4d:47:4e:af:ce:15:c4:01:88:93:b3:02:43:0d:ee:60:b2: 49:90:2b:23:58:04:43:24:08:d5:bc:44:ee:63:66:c8:92:e7: a1:a1:d5:0d:2d:37:38:27:43:a1:dd:d1:c4:f1:b7:44:a7:46: 85:7d:65:c3:77:9f:73:62:ed:a4:1d:a5:03:04:ce:b1:c8:d2: aa:55:2b:f2 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt6x9dTzipiwJ1AeyCGW3wqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMWVlNjAzYjc4YWQ3MmJhNzg1NTY4MmNhMmI4MDZhYzBlN2U5OGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4cgitlptG0NMDtyWZPMBmYm2yt+m UKpqwDG7gF9MfROY7H0CxKUWkC/U8sRtWXvJXz0qecR0OsynDp8W8/9zeHyBj3ro lcajT0uPpPJw34LoEh+3oBHML3YOm/vtlWJm4iCqhlR+l3S0zIPQp/svW8u5N1zw IxuMlGyR4J7zszXvCVYm6JH75jhHeTdYHyimdSNuBfSJtX81WWXTV2EP1YUHrO/o BGHY9Anj7Jk0G3ZZNCPe8kcEgcw1BDgZHXpDm8iLk/8UxXt8lsvZQE6RhCtmFDfZ YsO++O1gGrJfX8mT0UqsDwFggu9m45SiWu0Tkh9se2eiSElIXdsLgH/68QIDAQAB o4ICnzCCApswHQYDVR0OBBYEFMHuYDt4rXK6eFVoLKK4BqwOfpj9MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjLzliNmQ5 Yi04NTQxLTQ0YmMtOTYxYS1jZWU1YmU4N2E0NmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMvOWI2ZDli LTg1NDEtNDRiYy05NjFhLWNlZTViZTg3YTQ2Yi8xL3dlNWdPM2l0Y3JwNFZXZ3Nv cmdHckE1LW1QMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQDJTzAAwQFVVpAAwQCuSFEMA0EAgACMAcDBQAg AU1gMA0GCSqGSIb3DQEBCwUAA4IBAQATurVEO7z4Ry46W0WWFbhjg8itA9aHFgin JCHPLc6XulO9ggqBddm/fI/U6UpydHIP4VdGFlgqtPDn8EkYmxagvgzYWd+pTjgW oN0CN7Sv/0E0kq+YveR/K4umsxs39dIOisAnCdknZzNUl0DJqeVF4uCeMYMolUi/ /z02Z9llMcVbNMLSpU/AlZR+mHBsU1/Y+XaUSIibXwPnc+EWYipYSxHKMXjbPxsv 1r1l1Ac+McgjT4bfTUdOr84VxAGIk7MCQw3uYLJJkCsjWARDJAjVvETuY2bIkueh odUNLTc4J0Oh3dHE8bdEp0aFfWXDd59zYu2kHaUDBM6xyNKqVSvy -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:46 2026 by rpki-client