This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W0tFLb_UxwS9qcwqTpFfRxkqf3E.cer File: W0tFLb_UxwS9qcwqTpFfRxkqf3E.cer (raw, json) Hash identifier: 40pemC1DrdZvWuaDtlL0wLAJH8vAU/tUW8A1XpnIbMQ= Subject key identifier: 5B:4B:45:2D:BF:D4:C7:04:BD:A9:CC:2A:4E:91:5F:47:19:2A:7F:71 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7FF236763AD4DD42C37F3368911CA20E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b0/87ac4b-aa25-428f-a368-e58edc42f04c/1/W0tFLb_UxwS9qcwqTpFfRxkqf3E.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b0/87ac4b-aa25-428f-a368-e58edc42f04c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 18:22:18 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204617 IP: 2001:67c:a0c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:36:76:3a:d4:dd:42:c3:7f:33:68:91:1c:a2:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 18:22:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5b4b452dbfd4c704bda9cc2a4e915f47192a7f71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:18:f7:c6:bd:3d:d1:ff:e9:b9:c1:09:4b:91: 37:43:73:f8:03:cc:a1:2f:f6:ae:8d:25:e9:97:5b: 18:97:c8:61:a8:20:3c:65:b7:ff:b2:db:de:2a:ba: 1f:1e:1d:7a:87:e0:03:c8:97:65:5d:75:e4:f7:ce: 3f:c9:95:a4:c8:2d:e7:74:18:50:f2:90:c1:9b:fb: c3:5d:1a:38:3a:84:97:7d:73:2a:29:2c:4a:0d:cb: 61:fb:f1:d5:5c:ae:17:9d:08:7a:28:e3:2f:b5:6c: eb:56:de:7b:51:73:a0:a3:12:78:9d:0e:d2:e7:92: 77:6b:a1:19:1f:34:0d:61:ab:b3:9b:5c:d5:6c:22: 17:cb:52:9d:04:3e:35:3c:a4:8c:f5:c7:1e:c0:34: a0:4d:6b:10:c4:4d:4a:77:f7:c6:08:f9:c7:80:66: 0e:d1:08:1f:9e:5a:15:fc:86:cf:6b:b7:a1:88:a4: 22:f3:7a:48:e3:8f:12:3c:d2:a7:f1:ce:28:17:5b: 27:69:a1:12:3b:6c:82:92:62:41:84:c4:87:87:1c: c9:8d:2c:10:15:a8:47:00:56:cb:b2:be:52:d7:e1: 1c:db:f7:fa:5c:4a:f1:1f:c6:b7:cf:c4:c6:b0:c5: d9:52:b3:48:31:2e:02:7c:b1:54:b8:fb:b5:fa:c8: 8d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:4B:45:2D:BF:D4:C7:04:BD:A9:CC:2A:4E:91:5F:47:19:2A:7F:71 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/87ac4b-aa25-428f-a368-e58edc42f04c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/87ac4b-aa25-428f-a368-e58edc42f04c/1/W0tFLb_UxwS9qcwqTpFfRxkqf3E.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:a0c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204617 Signature Algorithm: sha256WithRSAEncryption 5a:24:71:8e:51:8d:14:67:c5:76:e1:a7:f3:26:c2:fe:97:ba: 38:5e:99:53:f2:36:74:7b:0e:3a:61:bd:d9:7c:11:1e:ac:bf: 5a:52:a6:98:d1:f6:2a:36:24:bb:e0:b1:bf:e5:3c:d9:b5:45: 94:60:4c:ca:74:9d:ee:8c:7a:fd:5f:1f:10:de:bd:5d:7f:a8: a2:6d:ac:cb:76:28:6f:78:59:dc:90:8c:10:04:97:4b:b6:fb: 0e:72:98:96:10:36:d9:a2:f0:99:85:6f:fc:e2:f9:b2:91:c9: f5:79:56:11:3e:e6:c7:c4:95:58:0d:60:97:a2:b7:55:c3:7d: da:55:00:f6:51:5d:5f:cb:1c:3c:0f:b7:83:16:1b:b1:e5:5e: fc:a6:b0:b9:b8:a1:c3:24:18:07:4b:70:08:27:e9:37:9c:88: 3f:23:d8:3c:45:a2:4f:ae:a7:08:d0:4b:c3:8f:b6:f8:07:c1: 2c:1a:5c:f1:29:40:c1:39:30:a9:b7:06:b2:dc:06:fb:07:db: 54:2d:24:e7:35:75:c4:6f:91:e9:cd:b1:dd:7d:32:d9:3a:00: 3d:e8:6c:65:2d:4b:89:df:55:6c:78:c2:25:07:f5:30:9b:25: a0:4f:27:e1:1c:f2:60:f8:72:dc:5c:7e:1d:10:ef:ce:f8:64: 14:f3:c8:3f -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt/8jZ2OtTdQsN/M2iRHKIOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTgyMjE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YjRiNDUyZGJmZDRjNzA0YmRhOWNjMmE0ZTkxNWY0NzE5MmE3ZjcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBj3xr090f/pucEJS5E3Q3P4A8yh L/aujSXpl1sYl8hhqCA8Zbf/stveKrofHh16h+ADyJdlXXXk984/yZWkyC3ndBhQ 8pDBm/vDXRo4OoSXfXMqKSxKDcth+/HVXK4XnQh6KOMvtWzrVt57UXOgoxJ4nQ7S 55J3a6EZHzQNYauzm1zVbCIXy1KdBD41PKSM9ccewDSgTWsQxE1Kd/fGCPnHgGYO 0QgfnloV/IbPa7ehiKQi83pI448SPNKn8c4oF1snaaESO2yCkmJBhMSHhxzJjSwQ FahHAFbLsr5S1+Ec2/f6XErxH8a3z8TGsMXZUrNIMS4CfLFUuPu1+siNPwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFFtLRS2/1McEvanMKk6RX0cZKn9xMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IwLzg3YWM0 Yi1hYTI1LTQyOGYtYTM2OC1lNThlZGM0MmYwNGMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAvODdhYzRi LWFhMjUtNDI4Zi1hMzY4LWU1OGVkYzQyZjA0Yy8xL1cwdEZMYl9VeHdTOXFjd3FU cEZmUnhrcWYzRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAoMMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMfSTANBgkqhkiG9w0BAQsFAAOCAQEAWiRxjlGNFGfFduGn8ybC/pe6OF6Z U/I2dHsOOmG92XwRHqy/WlKmmNH2KjYku+Cxv+U82bVFlGBMynSd7ox6/V8fEN69 XX+oom2sy3Yob3hZ3JCMEASXS7b7DnKYlhA22aLwmYVv/OL5spHJ9XlWET7mx8SV WA1gl6K3VcN92lUA9lFdX8scPA+3gxYbseVe/KawubihwyQYB0twCCfpN5yIPyPY PEWiT66nCNBLw4+2+AfBLBpc8SlAwTkwqbcGstwG+wfbVC0k5zV1xG+R6c2x3X0y 2ToAPehsZS1Lid9VbHjCJQf1MJsloE8n4RzyYPhy3Fx+HRDvzvhkFPPIPw== -----END CERTIFICATE-----Generated at Sun Jan 25 18:14:17 2026 by rpki-client