This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xlg_WMcRCtTMYJ9P-3yrL4DINYE.cer File: xlg_WMcRCtTMYJ9P-3yrL4DINYE.cer (raw, json) Hash identifier: ngBkB+5i+Vg5M4T7yhiTdzFjcJWkzkf6epjp3UQUCj4= Subject key identifier: C6:58:3F:58:C7:11:0A:D4:CC:60:9F:4F:FB:7C:AB:2F:80:C8:35:81 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA438A9465471EDFD2DC32BCA980E84 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/xlg_WMcRCtTMYJ9P-3yrL4DINYE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:18:38 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 15659 IP: 80.202.0.0/16 IP: 84.48.0.0/18 IP: 84.49.0.0/16 IP: 89.10.0.0 -- 89.11.127.255 IP: 195.5.183.0/24 IP: 213.145.160.0/19 IP: 213.187.160.0/19 IP: 217.13.0.0/19 IP: 2a04:980::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:38:a9:46:54:71:ed:fd:2d:c3:2b:ca:98:0e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c6583f58c7110ad4cc609f4ffb7cab2f80c83581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2c:d9:56:65:e2:0a:b8:6e:a9:c1:87:c9:ee: 2b:86:d5:97:90:9d:3c:a1:8f:4e:e4:9d:d2:26:96: 51:41:60:10:84:e3:a5:8c:d0:88:e4:5f:7f:37:00: 93:21:e8:7f:0e:07:76:ca:d7:bf:e4:b7:2c:b7:f5: a4:96:f0:49:60:cc:0c:be:ad:a6:76:ec:da:4a:dd: 72:9e:d4:5b:a9:25:8f:a1:de:06:b8:7f:b6:13:3f: b2:e8:07:c0:28:51:af:a4:b5:46:2e:f1:ab:aa:20: e4:5d:78:ba:2f:5a:01:83:02:92:2a:c1:c9:fb:d4: 65:52:79:ee:52:2d:f3:7b:a7:8f:dc:b3:ec:f7:94: 90:04:ad:45:84:26:d3:a5:8e:01:6d:25:1c:27:91: 2f:0d:e2:c0:f5:68:fc:ef:35:f7:7f:fa:08:02:a1: 2f:b7:bf:fe:4d:ea:af:1c:bc:d3:ff:3d:e6:aa:c6: a0:14:95:f5:13:e9:e2:b9:8b:d7:06:df:f9:b3:0f: 5e:b0:ed:ba:50:f8:3c:d2:20:d3:0a:78:17:0f:b0: 4c:8d:4a:66:7b:23:ea:ff:dd:5f:3f:e6:09:cf:7a: 60:69:d1:26:78:dc:19:9b:0a:d5:61:be:5a:9b:2b: e7:6b:22:57:06:7a:58:40:38:9d:3c:01:03:fd:13: 75:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:58:3F:58:C7:11:0A:D4:CC:60:9F:4F:FB:7C:AB:2F:80:C8:35:81 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/xlg_WMcRCtTMYJ9P-3yrL4DINYE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.202.0.0/16 84.48.0.0/18 84.49.0.0/16 89.10.0.0-89.11.127.255 195.5.183.0/24 213.145.160.0/19 213.187.160.0/19 217.13.0.0/19 IPv6: 2a04:980::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 15659 Signature Algorithm: sha256WithRSAEncryption 0e:f5:7e:cf:9e:c1:46:54:8c:78:c3:25:2e:45:cb:61:29:95: c5:17:a9:8b:50:fe:4f:65:33:da:f3:64:13:36:e6:07:9f:b0: 56:4a:30:e3:6b:ca:b6:a4:f6:81:50:bc:2e:d4:b5:75:e8:ac: 1c:77:bb:29:46:07:2b:ee:1b:75:17:62:bc:0b:ba:f8:b8:5d: 53:27:57:53:90:8f:d0:1a:f6:2c:22:4d:70:7f:81:6a:0f:eb: 9b:4a:39:df:34:dc:e5:04:e3:eb:10:0d:a4:2b:15:17:9e:ef: 96:fe:49:b5:f2:a2:e0:92:fd:7e:fa:08:c1:60:aa:59:ec:6c: 66:4a:d6:c1:80:0d:ac:57:5a:89:8f:e1:e2:b2:58:1b:3f:9f: 2f:7b:1d:8f:a8:7f:52:87:64:f5:5b:5d:89:e2:6c:dc:27:97: e2:77:81:35:7d:89:cb:b9:ff:0c:7d:a9:4f:62:8b:08:21:2a: fa:16:78:c6:a4:8e:68:80:a5:d1:32:79:6c:bc:b7:25:14:a1: a1:bd:04:22:2b:a0:0f:48:c4:80:3f:ab:6f:03:c3:50:c5:03: 9c:25:28:3e:b6:18:98:76:1a:e7:93:aa:1e:26:09:b7:09:c3: de:7b:9f:d5:98:d7:17:02:02:7c:89:78:00:12:a6:f4:4a:66: bf:8a:8f:74 -----BEGIN CERTIFICATE----- MIIF0TCCBLmgAwIBAgISAZt7pDipRlRx7f0twyvKmA6EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNjU4M2Y1OGM3MTEwYWQ0Y2M2MDlmNGZmYjdjYWIyZjgwYzgzNTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CzZVmXiCrhuqcGHye4rhtWXkJ08 oY9O5J3SJpZRQWAQhOOljNCI5F9/NwCTIeh/Dgd2yte/5Lcst/WklvBJYMwMvq2m duzaSt1yntRbqSWPod4GuH+2Ez+y6AfAKFGvpLVGLvGrqiDkXXi6L1oBgwKSKsHJ +9RlUnnuUi3ze6eP3LPs95SQBK1FhCbTpY4BbSUcJ5EvDeLA9Wj87zX3f/oIAqEv t7/+TeqvHLzT/z3mqsagFJX1E+niuYvXBt/5sw9esO26UPg80iDTCngXD7BMjUpm eyPq/91fP+YJz3pgadEmeNwZmwrVYb5amyvnayJXBnpYQDidPAED/RN1IwIDAQAB o4IC3TCCAtkwHQYDVR0OBBYEFMZYP1jHEQrUzGCfT/t8qy+AyDWBMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYxLzhkMGNh ZS1lYzEzLTQ1ZmItOWFmYy0zZDU5M2ViZTUyMjAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEvOGQwY2Fl LWVjMTMtNDVmYi05YWZjLTNkNTkzZWJlNTIyMC8xL3hsZ19XTWNSQ3RUTVlKOVAt M3lyTDRESU5ZRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GCCsGAQUF BwEHAQH/BE4wTDA7BAIAATA1AwMAUMoDBAZUMAADAwBUMTALAwMBWQoDBAdZCwAD BADDBbcDBAXVkaADBAXVu6ADBAXZDQAwDQQCAAIwBwMFAyoECYAwGQYIKwYBBQUH AQgBAf8ECjAIoAYwBAICPSswDQYJKoZIhvcNAQELBQADggEBAA71fs+ewUZUjHjD JS5Fy2EplcUXqYtQ/k9lM9rzZBM25gefsFZKMONryrak9oFQvC7UtXXorBx3uylG ByvuG3UXYrwLuvi4XVMnV1OQj9Aa9iwiTXB/gWoP65tKOd803OUE4+sQDaQrFRee 75b+SbXyouCS/X76CMFgqlnsbGZK1sGADaxXWomP4eKyWBs/ny97HY+of1KHZPVb XYnibNwnl+J3gTV9icu5/wx9qU9iiwghKvoWeMakjmiApdEyeWy8tyUUoaG9BCIr oA9IxIA/q28Dw1DFA5wlKD62GJh2GueTqh4mCbcJw957n9WY1xcCAnyJeAASpvRK Zr+Kj3Q= -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:03 2026 by rpki-client