This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WBPibXGsW2pgEVbZDODczsWYYkM.cer File: WBPibXGsW2pgEVbZDODczsWYYkM.cer (raw, json) Hash identifier: wdHT9QXoJkMbmODT4atmq587bXtE7iZUxvcbs/0FGeQ= Subject key identifier: 58:13:E2:6D:71:AC:5B:6A:60:11:56:D9:0C:E0:DC:CE:C5:98:62:43 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA57EDA209967A328BC666508E3072D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/12/64ae31-d1c8-4004-a778-06df1dc03367/1/WBPibXGsW2pgEVbZDODczsWYYkM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/12/64ae31-d1c8-4004-a778-06df1dc03367/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:18:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.224.2.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:7e:da:20:99:67:a3:28:bc:66:65:08:e3:07:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5813e26d71ac5b6a601156d90ce0dccec5986243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7f:02:54:75:35:44:75:02:a6:83:1e:a4:98: 6a:0f:4d:6e:72:74:99:27:71:a3:61:6d:d2:0f:de: e0:f5:d5:d4:3c:a3:5c:29:74:22:c2:87:23:c1:a6: d8:8b:f3:3f:af:45:24:0c:57:7d:99:ae:d5:a5:0b: 47:3d:f7:b6:31:3e:8a:87:94:df:ed:2b:f4:2d:6d: 64:19:47:dd:ae:69:50:17:c1:7f:3d:b3:df:ab:3f: 5d:09:eb:0f:7a:ca:79:1f:f3:46:d7:21:33:09:37: 6f:51:9d:6e:46:e4:38:10:a7:72:39:17:75:9a:74: f6:f3:e1:e3:95:fc:ea:6f:99:bc:53:1e:09:df:28: 1d:bf:22:03:1c:44:b5:79:92:77:ea:01:f5:fe:e1: ea:24:cb:78:55:e0:9b:7b:9b:49:23:f2:d5:76:8f: 1c:42:db:ab:52:7c:34:a4:09:0c:a1:6f:ef:16:ed: 4d:a0:c0:10:b2:80:d9:43:e4:0f:1b:69:eb:a0:4e: 7b:28:a5:88:52:1e:68:83:e8:8f:af:ba:c0:69:54: 28:12:c3:3c:eb:ed:47:33:0f:5f:2b:11:71:87:0c: 21:fa:c5:c9:91:68:97:47:8d:c2:a1:fb:41:d0:bd: 36:0a:9b:b3:e8:ac:58:21:3e:0c:04:ee:f2:3a:c7: c6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:13:E2:6D:71:AC:5B:6A:60:11:56:D9:0C:E0:DC:CE:C5:98:62:43 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/64ae31-d1c8-4004-a778-06df1dc03367/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/64ae31-d1c8-4004-a778-06df1dc03367/1/WBPibXGsW2pgEVbZDODczsWYYkM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.224.2.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:e9:aa:c4:37:9d:7d:57:85:e2:77:70:12:02:ea:7e:3b:97: 40:88:98:33:68:e9:3d:d6:18:d5:fa:f2:ab:6b:bc:44:84:c5: be:71:64:2b:13:ef:2a:2b:66:b5:67:00:99:e3:cd:c0:4b:bf: 1e:dd:7f:66:3f:46:d1:6c:b3:5a:68:e4:3a:1c:b2:44:50:77: 1e:55:28:49:a1:21:90:d3:bd:d8:bd:ac:f0:6e:bf:1e:b3:d5: 16:96:39:ef:91:49:e6:70:6b:17:bb:52:51:96:2b:1c:f6:dc: 86:43:56:70:6f:e9:f0:2c:43:d0:f3:6f:27:12:05:95:da:43: bb:8e:2a:bd:bf:cb:ba:1c:cd:10:9a:56:b8:72:b2:9e:62:3c: 50:48:5e:36:37:80:34:60:ff:37:a7:5d:01:e5:fe:3f:44:c1: 42:66:a2:63:da:75:75:59:0d:07:16:5b:b7:6d:94:bf:1e:fc: c6:8f:11:ed:dd:48:6f:42:3c:7a:71:8e:8b:a2:4f:af:0e:46: f1:a6:7f:9e:f9:55:9b:92:3d:0f:3e:09:be:5a:8b:8a:c4:62: dc:4a:d4:a9:f1:56:bc:0a:12:f6:c8:49:8f:5f:c9:7b:91:77: 26:3e:e7:56:b9:7a:ba:43:20:2c:95:34:90:cb:35:27:0d:fd: 45:91:c9:42 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt+pX7aIJlnoyi8ZmUI4wctMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODEzZTI2ZDcxYWM1YjZhNjAxMTU2ZDkwY2UwZGNjZWM1OTg2MjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0n8CVHU1RHUCpoMepJhqD01ucnSZ J3GjYW3SD97g9dXUPKNcKXQiwocjwabYi/M/r0UkDFd9ma7VpQtHPfe2MT6Kh5Tf 7Sv0LW1kGUfdrmlQF8F/PbPfqz9dCesPesp5H/NG1yEzCTdvUZ1uRuQ4EKdyORd1 mnT28+Hjlfzqb5m8Ux4J3ygdvyIDHES1eZJ36gH1/uHqJMt4VeCbe5tJI/LVdo8c QturUnw0pAkMoW/vFu1NoMAQsoDZQ+QPG2nroE57KKWIUh5og+iPr7rAaVQoEsM8 6+1HMw9fKxFxhwwh+sXJkWiXR43CoftB0L02Cpuz6KxYIT4MBO7yOsfG/QIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFFgT4m1xrFtqYBFW2Qzg3M7FmGJDMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEyLzY0YWUz MS1kMWM4LTQwMDQtYTc3OC0wNmRmMWRjMDMzNjcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIvNjRhZTMx LWQxYzgtNDAwNC1hNzc4LTA2ZGYxZGMwMzM2Ny8xL1dCUGliWEdzVzJwZ0VWYlpE T0RjenNXWVlrTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAueACMA0GCSqGSIb3DQEBCwUAA4IBAQA86arE N519V4Xid3ASAup+O5dAiJgzaOk91hjV+vKra7xEhMW+cWQrE+8qK2a1ZwCZ483A S78e3X9mP0bRbLNaaOQ6HLJEUHceVShJoSGQ073Yvazwbr8es9UWljnvkUnmcGsX u1JRlisc9tyGQ1Zwb+nwLEPQ828nEgWV2kO7jiq9v8u6HM0Qmla4crKeYjxQSF42 N4A0YP83p10B5f4/RMFCZqJj2nV1WQ0HFlu3bZS/HvzGjxHt3UhvQjx6cY6Lok+v Dkbxpn+e+VWbkj0PPgm+WouKxGLcStSp8Va8ChL2yEmPX8l7kXcmPudWuXq6QyAs lTSQyzUnDf1FkclC -----END CERTIFICATE-----Generated at Mon Jan 26 04:45:04 2026 by rpki-client