This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer File: OwmORe9LtdGNvIbFoTX1fry-AF0.cer (raw, json) Hash identifier: VbG26Qc1KUuHCH5TZREnaay3agay6+xr244L5B0GzWk= Subject key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019AE3A21698127C6D4AF0FCF0403C7FF2D5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Wed 03 Dec 2025 09:54:01 +0000 Certificate not after: Wed 01 Jul 2026 00:00:00 +0000 Subordinate resources: AS: 15736 IP: 82.115.56.0/22 IP: 91.147.80.0/22 IP: 91.147.116.0 -- 91.147.127.255 IP: 212.116.224.0/19 IP: 2a02:7b60::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e3:a2:16:98:12:7c:6d:4a:f0:fc:f0:40:3c:7f:f2:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Dec 3 09:54:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:34:c9:87:fb:84:13:4d:73:f2:c4:40:92:15: ad:31:3b:8c:7f:b2:4e:ee:6a:cd:c6:57:11:25:77: 6c:e8:e2:13:5b:56:e9:7a:9b:44:29:37:df:09:74: 78:85:4b:60:8f:c2:84:e3:d1:b1:2c:82:12:a8:ca: ef:46:0b:23:01:56:3c:ab:4d:c7:d1:90:0e:1b:52: 42:29:83:79:de:81:2b:c4:e5:21:87:e8:8b:81:df: 74:f0:a2:47:86:d5:06:e5:0f:af:ec:4b:b7:02:dc: 66:15:ee:df:ce:4f:74:b3:af:8e:4d:9c:dd:83:ae: 9a:8b:08:3b:68:d2:e0:62:f7:a8:d4:38:63:20:29: d6:88:56:cb:7b:19:35:51:39:4f:63:e6:5d:9d:05: d4:b9:36:6d:db:13:dd:cb:45:8e:1b:dc:6e:51:ce: 3a:68:a1:fb:f9:c1:53:aa:21:de:6f:8a:41:b9:b0: 69:88:75:40:88:fd:46:fc:df:0f:71:02:e5:12:0f: 2a:07:d8:21:a7:f6:d5:ee:19:52:3b:68:99:9d:39: a1:4b:38:ae:32:5c:ce:98:2c:a0:16:c2:64:b8:a0: 2b:9a:15:ec:87:da:f9:db:df:7a:70:59:c8:0b:9d: 1f:e0:da:94:98:b5:61:e7:f8:fa:49:df:a5:03:26: d3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.115.56.0/22 91.147.80.0/22 91.147.116.0-91.147.127.255 212.116.224.0/19 IPv6: 2a02:7b60::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 15736 Signature Algorithm: sha256WithRSAEncryption 82:ad:54:10:0b:f7:a9:1a:4e:53:b8:fe:60:e2:61:8b:00:1b: fc:0d:f0:38:ee:2b:40:13:96:c3:15:0f:e8:35:c7:84:95:ca: 12:12:08:36:14:15:59:9f:00:22:b0:5a:c3:57:9a:c6:63:29: b4:05:89:75:6a:25:a9:43:fe:c0:e7:05:a2:ec:d1:b3:c0:a5: ce:d3:47:19:4a:e9:4e:a4:27:81:eb:7c:ec:8d:71:06:04:5e: d7:84:e1:38:16:5a:fc:cb:45:97:1c:00:04:6f:a9:1b:37:52: c4:a1:2c:5e:94:f7:f4:4d:ce:ce:95:6a:2a:12:cf:fc:d4:0e: c6:99:fe:eb:83:a3:ce:18:4d:63:b4:ec:bb:e2:dc:d7:2d:90: 9b:55:cf:da:39:4a:bd:fb:40:64:b5:29:88:ab:9b:2e:1d:4c: 88:fa:e9:a0:13:eb:29:42:34:9a:86:90:69:5b:8e:35:2d:a3: 1d:10:8a:4e:48:3d:ca:20:b9:af:4e:8a:e9:0e:f0:c7:90:ba: c7:79:d4:f7:7e:36:cd:6a:d6:a3:26:a1:0b:cb:da:ff:51:d9: 30:4f:93:5f:f5:1f:d2:60:84:0e:d0:8b:4c:bc:28:c9:ff:f4: c6:03:9d:81:0e:6c:16:b6:9f:7b:e0:56:dc:34:9c:1d:66:c3: 29:c0:df:2f -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgISAZrjohaYEnxtSvD88EA8f/LVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjUxMjAzMDk1NDAxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjA5OGU0NWVmNGJiNWQxOGRiYzg2YzVhMTM1ZjU3ZWJjYmUwMDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zTJh/uEE01z8sRAkhWtMTuMf7JO 7mrNxlcRJXds6OITW1bpeptEKTffCXR4hUtgj8KE49GxLIISqMrvRgsjAVY8q03H 0ZAOG1JCKYN53oErxOUhh+iLgd908KJHhtUG5Q+v7Eu3AtxmFe7fzk90s6+OTZzd g66aiwg7aNLgYveo1DhjICnWiFbLexk1UTlPY+ZdnQXUuTZt2xPdy0WOG9xuUc46 aKH7+cFTqiHeb4pBubBpiHVAiP1G/N8PcQLlEg8qB9ghp/bV7hlSO2iZnTmhSziu MlzOmCygFsJkuKArmhXsh9r52996cFnIC50f4NqUmLVh5/j6Sd+lAybT8QIDAQAB o4ICyDCCAsQwHQYDVR0OBBYEFDsJjkXvS7XRjbyGxaE19X68vgBdMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQyLzk1NGQz MS1mNzRjLTQ2N2ItOTAxMy1lMTJiMTY0MjE1YjkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDIvOTU0ZDMx LWY3NGMtNDY3Yi05MDEzLWUxMmIxNjQyMTViOS8xL093bU9SZTlMdGRHTnZJYkZv VFgxZnJ5LUFGMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEgGCCsGAQUF BwEHAQH/BDkwNzAmBAIAATAgAwQCUnM4AwQCW5NQMAwDBAJbk3QDBAdbkwADBAXU dOAwDQQCAAIwBwMFACoCe2AwGQYIKwYBBQUHAQgBAf8ECjAIoAYwBAICPXgwDQYJ KoZIhvcNAQELBQADggEBAIKtVBAL96kaTlO4/mDiYYsAG/wN8DjuK0ATlsMVD+g1 x4SVyhISCDYUFVmfACKwWsNXmsZjKbQFiXVqJalD/sDnBaLs0bPApc7TRxlK6U6k J4HrfOyNcQYEXteE4TgWWvzLRZccAARvqRs3UsShLF6U9/RNzs6VaioSz/zUDsaZ /uuDo84YTWO07Lvi3NctkJtVz9o5Sr37QGS1KYirmy4dTIj66aAT6ylCNJqGkGlb jjUtox0Qik5IPcogua9OiukO8MeQusd51Pd+Ns1q1qMmoQvL2v9R2TBPk1/1H9Jg hA7Qi0y8KMn/9MYDnYEObBa2n3vgVtw0nB1mwynA3y8= -----END CERTIFICATE-----Generated at Sat Dec 6 07:03:41 2025 by rpki-client