This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xTsinnPOa7GW1lwL7xGVYGV6NyA.cer File: xTsinnPOa7GW1lwL7xGVYGV6NyA.cer (raw, json) Hash identifier: u5lgubfHgriaMjpDjf5o+0SE/kWCBKvMGzTTnb6J5qc= Subject key identifier: C5:3B:22:9E:73:CE:6B:B1:96:D6:5C:0B:EF:11:95:60:65:7A:37:20 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E37DB61B47B7805AE527FCD2D4E7C88 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/xTsinnPOa7GW1lwL7xGVYGV6NyA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201545 IP: 185.69.176.0/22 IP: 2a05:2340::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:db:61:b4:7b:78:05:ae:52:7f:cd:2d:4e:7c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c53b229e73ce6bb196d65c0bef119560657a3720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6d:30:42:17:a4:ae:4d:fb:8c:d1:f0:74:9f: 11:e7:e6:bc:5c:41:e6:28:0b:04:28:96:f0:c3:44: 83:8d:39:5b:5d:db:ff:f2:1b:33:c2:3b:2f:78:3e: 6d:0c:60:0e:5b:cf:0c:08:ba:45:16:97:30:73:70: 6c:f8:3b:6c:97:be:f2:aa:20:69:11:87:8c:37:64: ea:9a:f6:91:87:89:19:87:55:02:32:c2:e7:29:f2: 8d:8c:3b:88:a1:97:95:6b:3a:d0:4e:6d:ef:3d:44: 4a:94:b6:e6:11:8b:94:77:d7:93:41:a3:ac:36:3f: 2f:fa:6f:68:92:a7:e3:d3:67:c3:b9:c8:d3:04:1f: 82:1c:6c:09:09:c7:4e:11:d7:e3:6b:c0:24:d0:a5: 28:2c:73:e7:2c:9e:3d:f8:df:51:fb:39:52:4f:f3: 52:de:df:46:14:1a:80:ba:07:7e:e1:bf:74:0d:1e: aa:0b:63:58:12:e8:90:0b:9d:bd:ff:00:9d:3f:0b: 3e:60:ce:6f:2f:ec:a5:5e:49:37:36:a4:95:58:6d: d4:6f:d7:0a:1d:c7:7e:3a:14:3a:30:a2:8c:7e:eb: ec:6a:cb:9a:02:b4:09:74:d9:41:e0:7e:0d:f6:a0: 5b:4c:bb:33:ca:56:41:33:ef:00:f1:35:be:d8:10: a6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3B:22:9E:73:CE:6B:B1:96:D6:5C:0B:EF:11:95:60:65:7A:37:20 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/xTsinnPOa7GW1lwL7xGVYGV6NyA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.69.176.0/22 IPv6: 2a05:2340::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201545 Signature Algorithm: sha256WithRSAEncryption 57:e7:6b:54:79:75:4c:b2:ac:0d:3d:5c:c1:0b:32:36:d1:9a: e2:e3:00:be:56:d4:19:75:b1:38:34:90:79:ac:d9:df:62:5a: b2:34:45:75:71:7c:1c:6e:7c:10:32:bf:5e:f5:68:c0:ac:fb: 4a:93:0d:39:81:b1:93:c9:cc:ab:89:a1:81:70:b7:ee:b5:d8: 18:0c:eb:72:8b:62:77:3a:dc:df:e3:e5:9e:b4:70:fe:f9:3c: 74:37:49:bc:e6:b5:8d:01:46:9f:aa:f2:46:cd:90:40:84:c9: ba:de:0e:b0:3b:56:af:1d:07:4f:0c:06:40:c8:c6:71:d3:5e: 0c:e7:74:47:07:84:b8:ed:09:d7:7f:3d:4c:fe:28:67:4f:0a: 7d:92:fe:4e:8a:80:85:9e:20:f4:f9:cd:2a:88:38:33:54:18: c9:af:91:86:d0:dd:e6:96:78:b2:da:ab:32:01:05:67:48:8f: 61:8d:3c:b0:fe:9a:8b:88:77:f6:04:19:74:2c:53:c8:7c:b3: c8:ad:51:51:bb:e9:20:e1:82:9e:3b:74:5f:83:87:52:27:16: 63:fc:c5:d8:f1:44:e4:0a:00:09:6b:90:4a:8f:a9:09:57:90: e9:2c:09:c8:21:20:cb:2c:04:c1:a9:0a:64:87:8b:7b:8e:e8: f4:f2:2e:23 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt+N9thtHt4Ba5Sf80tTnyIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTNiMjI5ZTczY2U2YmIxOTZkNjVjMGJlZjExOTU2MDY1N2EzNzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw20wQhekrk37jNHwdJ8R5+a8XEHm KAsEKJbww0SDjTlbXdv/8hszwjsveD5tDGAOW88MCLpFFpcwc3Bs+Dtsl77yqiBp EYeMN2TqmvaRh4kZh1UCMsLnKfKNjDuIoZeVazrQTm3vPURKlLbmEYuUd9eTQaOs Nj8v+m9okqfj02fDucjTBB+CHGwJCcdOEdfja8Ak0KUoLHPnLJ49+N9R+zlST/NS 3t9GFBqAugd+4b90DR6qC2NYEuiQC529/wCdPws+YM5vL+ylXkk3NqSVWG3Ub9cK Hcd+OhQ6MKKMfuvsasuaArQJdNlB4H4N9qBbTLszylZBM+8A8TW+2BCmXwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFMU7Ip5zzmuxltZcC+8RlWBlejcgMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q5L2U5MjY2 Ni00NTI2LTQ3YzEtYjJiYS02MzcyOGIwZmExMDgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkvZTkyNjY2 LTQ1MjYtNDdjMS1iMmJhLTYzNzI4YjBmYTEwOC8xL3hUc2lublBPYTdHVzFsd0w3 eEdWWUdWNk55QS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuUWwMA0EAgACMAcDBQMqBSNAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMTSTANBgkqhkiG9w0BAQsFAAOCAQEAV+drVHl1TLKs DT1cwQsyNtGa4uMAvlbUGXWxODSQeazZ32JasjRFdXF8HG58EDK/XvVowKz7SpMN OYGxk8nMq4mhgXC37rXYGAzrcotidzrc3+PlnrRw/vk8dDdJvOa1jQFGn6ryRs2Q QITJut4OsDtWrx0HTwwGQMjGcdNeDOd0RweEuO0J1389TP4oZ08KfZL+ToqAhZ4g 9PnNKog4M1QYya+RhtDd5pZ4stqrMgEFZ0iPYY08sP6ai4h39gQZdCxTyHyzyK1R UbvpIOGCnjt0X4OHUicWY/zF2PFE5AoACWuQSo+pCVeQ6SwJyCEgyywEwakKZIeL e47o9PIuIw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:35 2026 by rpki-client