This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xvw4sqEAOV-puZGa15LnrLLbLgc.cer File: xvw4sqEAOV-puZGa15LnrLLbLgc.cer (raw, json) Hash identifier: fLqLxD/PxWlpRJbgFg5V1iCqdFbVYlsbQz6gs0sqhug= Subject key identifier: C6:FC:38:B2:A1:00:39:5F:A9:B9:91:9A:D7:92:E7:AC:B2:DB:2E:07 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA4C5AD34A350C84C6EEE833B6CB00D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/af/99800d-151f-4e30-9fd8-a89a7028d429/1/xvw4sqEAOV-puZGa15LnrLLbLgc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/af/99800d-151f-4e30-9fd8-a89a7028d429/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:18:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215936 IP: 2001:67c:d54::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:c5:ad:34:a3:50:c8:4c:6e:ee:83:3b:6c:b0:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c6fc38b2a100395fa9b9919ad792e7acb2db2e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:37:3e:0c:ad:80:96:ee:c3:d0:70:95:bb:44: da:e5:48:e0:df:8d:4e:7c:85:85:7f:8d:c7:90:ce: 10:78:84:ba:98:db:62:af:df:9c:69:5b:09:c7:13: 2c:ee:7d:13:e4:98:9f:2a:ec:b4:53:ec:d7:32:43: f9:07:0c:40:a6:f6:df:3e:59:c4:0f:0c:52:37:6a: 2f:9d:61:55:a9:f2:79:6c:1c:47:b8:44:5c:59:60: 58:c1:d0:ef:ed:93:b5:ec:41:cd:a1:ed:11:e3:60: c8:cd:e5:62:d2:cf:50:60:66:29:fb:a7:cd:1a:a4: 7a:e8:31:9b:f2:7f:92:05:51:e5:f8:51:a6:59:65: 52:38:6f:03:26:65:a1:7d:4b:cb:30:ed:98:d3:ea: ae:25:6d:03:53:1c:64:e6:5e:f3:78:f5:f6:76:ec: c2:7f:a2:0d:c5:13:db:f9:0a:33:6b:81:fd:17:7b: d0:92:6d:df:1a:de:f7:79:9a:f8:66:cb:75:53:eb: f5:ef:7b:3b:19:8c:b8:44:da:7e:89:19:cc:a8:5a: fa:72:ce:49:69:41:2d:cf:b5:e2:7a:83:cd:60:a2: 9d:d9:90:44:2f:cb:f3:89:61:6b:73:44:9c:4c:d4: 81:20:66:19:d6:32:d3:6c:40:51:b1:9d:b4:cd:a8: 5f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:FC:38:B2:A1:00:39:5F:A9:B9:91:9A:D7:92:E7:AC:B2:DB:2E:07 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/99800d-151f-4e30-9fd8-a89a7028d429/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/99800d-151f-4e30-9fd8-a89a7028d429/1/xvw4sqEAOV-puZGa15LnrLLbLgc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:d54::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215936 Signature Algorithm: sha256WithRSAEncryption b1:62:6d:49:f6:dc:16:72:7c:83:14:a6:43:55:b9:72:3e:9e: 50:21:34:6f:c4:42:41:4b:39:69:93:10:3c:4f:fe:a4:35:ed: 29:92:fb:4a:97:56:5a:d7:ea:0b:59:cd:92:a0:ff:66:a2:c0: 22:ab:0e:9a:be:01:dc:0f:a3:f2:8c:6a:8f:bf:12:d9:61:8e: ff:f2:30:21:d4:f0:09:eb:9e:0b:52:25:ae:8d:df:98:0c:c3: bb:3e:6e:10:f0:f6:e6:97:d8:c4:8e:ba:f0:4f:2c:30:3b:55: f0:8f:37:72:cc:9b:6a:b9:1d:c8:bb:f7:20:b4:5e:55:06:6e: af:69:33:ef:ef:e7:51:e1:1b:fc:4a:11:ed:b0:34:96:af:45: 1f:42:4a:8e:d7:fc:f9:e4:27:8a:3a:7b:9c:f2:c4:69:02:0d: 7c:20:39:c5:28:d6:21:08:68:96:4f:ee:e8:dc:0a:d3:b1:19: 09:29:4c:be:7e:55:85:c7:35:22:fd:3a:19:bd:cb:e4:af:e8: ec:a5:73:7b:b9:c8:f7:39:59:58:21:be:38:6a:91:f5:9e:93: 6f:2a:15:d0:80:36:6b:8e:a1:88:89:95:a9:9f:c1:dd:b7:fe: fa:d9:41:95:e3:3f:9b:be:36:3b:a9:80:78:eb:33:4b:2b:8e: 55:cb:54:21 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt+pMWtNKNQyExu7oM7bLANMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNmZjMzhiMmExMDAzOTVmYTliOTkxOWFkNzkyZTdhY2IyZGIyZTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjc+DK2Alu7D0HCVu0Ta5Ujg341O fIWFf43HkM4QeIS6mNtir9+caVsJxxMs7n0T5JifKuy0U+zXMkP5BwxApvbfPlnE DwxSN2ovnWFVqfJ5bBxHuERcWWBYwdDv7ZO17EHNoe0R42DIzeVi0s9QYGYp+6fN GqR66DGb8n+SBVHl+FGmWWVSOG8DJmWhfUvLMO2Y0+quJW0DUxxk5l7zePX2duzC f6INxRPb+Qoza4H9F3vQkm3fGt73eZr4Zst1U+v173s7GYy4RNp+iRnMqFr6cs5J aUEtz7XieoPNYKKd2ZBEL8vziWFrc0ScTNSBIGYZ1jLTbEBRsZ20zahfjQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFMb8OLKhADlfqbmRmteS56yy2y4HMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FmLzk5ODAw ZC0xNTFmLTRlMzAtOWZkOC1hODlhNzAyOGQ0MjkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvOTk4MDBk LTE1MWYtNGUzMC05ZmQ4LWE4OWE3MDI4ZDQyOS8xL3h2dzRzcUVBT1YtcHVaR2Ex NUxuckxMYkxnYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA1UMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwNLgDANBgkqhkiG9w0BAQsFAAOCAQEAsWJtSfbcFnJ8gxSmQ1W5cj6eUCE0 b8RCQUs5aZMQPE/+pDXtKZL7SpdWWtfqC1nNkqD/ZqLAIqsOmr4B3A+j8oxqj78S 2WGO//IwIdTwCeueC1Ilro3fmAzDuz5uEPD25pfYxI668E8sMDtV8I83csybarkd yLv3ILReVQZur2kz7+/nUeEb/EoR7bA0lq9FH0JKjtf8+eQnijp7nPLEaQINfCA5 xSjWIQholk/u6NwK07EZCSlMvn5Vhcc1Iv06Gb3L5K/o7KVze7nI9zlZWCG+OGqR 9Z6TbyoV0IA2a46hiImVqZ/B3bf++tlBleM/m742O6mAeOszSyuOVctUIQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:46:48 2026 by rpki-client