This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xAqOocjcM7gpD-vTTkU4vZWXROg.cer File: xAqOocjcM7gpD-vTTkU4vZWXROg.cer (raw, json) Hash identifier: m6Jw964npcts/BPtuCNnPn+ua07CY6hZdnJx2wpt22M= Subject key identifier: C4:0A:8E:A1:C8:DC:33:B8:29:0F:EB:D3:4E:45:38:BD:95:97:44:E8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB441256FFACF044C31FDB602D0F2F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 91.216.105.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:44:12:56:ff:ac:f0:44:c3:1f:db:60:2d:0f:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c40a8ea1c8dc33b8290febd34e4538bd959744e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:0b:c4:8e:2e:bf:da:0a:70:5c:34:2a:4c: aa:a4:fc:fa:26:c9:fc:45:0a:c9:f2:47:29:c8:42: b4:a1:fb:59:2c:1c:6d:07:87:50:55:2e:6e:21:ab: f4:75:70:bc:3e:15:9f:90:66:b0:e6:69:49:92:a1: 96:bd:9c:da:90:b2:d3:ba:e5:f0:cf:f1:5a:4f:29: 4d:77:9f:31:b6:22:dc:01:f2:e3:a8:06:16:8f:35: fc:72:ac:00:0e:0e:cd:89:a5:37:cd:9b:38:b8:d5: 2b:98:42:86:2d:9b:86:a9:e7:76:a9:3b:39:fb:0e: 73:66:27:8d:3e:3d:a1:77:67:55:f5:68:d6:ff:a4: ec:b4:ba:3d:31:04:53:98:bb:eb:ce:b4:be:0d:79: 19:f7:dc:30:ca:26:df:48:6d:2d:82:aa:a0:74:af: ab:16:6a:d7:28:57:61:5d:15:21:a8:6a:7c:97:cc: f8:06:c7:06:1e:c4:a6:62:ee:b6:fb:51:33:d7:b9: 33:59:0a:a3:9a:1d:a5:13:18:c7:a7:c6:9c:fc:d6: 3f:db:9e:fd:1a:c3:08:be:35:51:ad:e2:af:b3:03: a6:ef:6a:66:99:38:fb:04:a9:8a:28:34:b6:da:08: f4:57:a8:e5:62:d4:01:3d:a0:f3:5c:1a:42:5e:74: c6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:0A:8E:A1:C8:DC:33:B8:29:0F:EB:D3:4E:45:38:BD:95:97:44:E8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.105.0/24 Signature Algorithm: sha256WithRSAEncryption 52:f7:4f:0f:9e:af:ff:2e:da:14:f2:7e:dc:11:74:95:e4:86: 19:f8:14:a4:7d:4e:93:9a:4e:8e:09:66:8a:5f:01:7c:50:95: 4b:82:ff:3e:db:6a:ef:2d:14:80:d3:16:40:bc:6a:e9:da:7d: aa:fd:5a:fd:fb:c4:4f:95:f1:22:2d:96:87:b1:c9:00:60:07: fc:8a:b2:10:81:05:6c:01:c9:b0:7e:81:0f:32:7e:5e:ec:bd: 0a:55:0f:77:11:07:ad:c5:ce:22:c5:24:4f:9f:59:72:09:00: 79:bf:ca:c9:7f:d9:f6:5b:9a:be:db:b9:24:86:5f:8f:36:70: fc:79:60:1c:63:92:7e:37:1f:73:a2:6c:a2:59:c9:0c:9c:6f: 3d:8c:75:73:0e:a6:3a:ed:00:16:a7:8c:30:8f:3c:1e:59:f6: f3:5f:a6:72:5b:db:47:98:c0:99:da:bf:41:f4:77:cc:43:8b: fa:46:93:29:1c:58:40:dd:e4:b7:ae:f4:88:52:0e:1f:ea:c3: bf:2e:6e:ea:37:c3:e6:8f:c4:34:b9:55:96:50:59:53:3a:d5: 70:eb:9d:7a:ec:3d:0c:2c:8f:33:a9:25:94:d7:9a:3a:11:77: ce:06:9e:3d:7d:75:0d:b5:78:16:ff:69:55:1a:98:10:3a:8e: fc:93:8b:fc -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt260QSVv+s8ETDH9tgLQ8vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDBhOGVhMWM4ZGMzM2I4MjkwZmViZDM0ZTQ1MzhiZDk1OTc0NGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv60LxI4uv9oKcFw0KkyqpPz6Jsn8 RQrJ8kcpyEK0oftZLBxtB4dQVS5uIav0dXC8PhWfkGaw5mlJkqGWvZzakLLTuuXw z/FaTylNd58xtiLcAfLjqAYWjzX8cqwADg7NiaU3zZs4uNUrmEKGLZuGqed2qTs5 +w5zZieNPj2hd2dV9WjW/6TstLo9MQRTmLvrzrS+DXkZ99wwyibfSG0tgqqgdK+r FmrXKFdhXRUhqGp8l8z4BscGHsSmYu62+1Ez17kzWQqjmh2lExjHp8ac/NY/2579 GsMIvjVRreKvswOm72pmmTj7BKmKKDS22gj0V6jlYtQBPaDzXBpCXnTG4wIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFMQKjqHI3DO4KQ/r005FOL2Vl0ToMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U2L2U5OGJm Ny1jNWM4LTQ1NjEtOTdlOC1lMTMxNjBhYzNlMjMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTYvZTk4YmY3 LWM1YzgtNDU2MS05N2U4LWUxMzE2MGFjM2UyMy8xL3hBcU9vY2pjTTdncEQtdlRU a1U0dlpXWFJPZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9hpMA0GCSqGSIb3DQEBCwUAA4IBAQBS908P nq//LtoU8n7cEXSV5IYZ+BSkfU6Tmk6OCWaKXwF8UJVLgv8+22rvLRSA0xZAvGrp 2n2q/Vr9+8RPlfEiLZaHsckAYAf8irIQgQVsAcmwfoEPMn5e7L0KVQ93EQetxc4i xSRPn1lyCQB5v8rJf9n2W5q+27kkhl+PNnD8eWAcY5J+Nx9zomyiWckMnG89jHVz DqY67QAWp4wwjzweWfbzX6ZyW9tHmMCZ2r9B9HfMQ4v6RpMpHFhA3eS3rvSIUg4f 6sO/Lm7qN8Pmj8Q0uVWWUFlTOtVw65167D0MLI8zqSWU15o6EXfOBp49fXUNtXgW /2lVGpgQOo78k4v8 -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:00 2026 by rpki-client