This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hW8MkAc6-47N5-g0Cc6r25O0Gk4.cer File: hW8MkAc6-47N5-g0Cc6r25O0Gk4.cer (raw, json) Hash identifier: 0CLQ+dI2OUbNx+5bmWq/QPci4Zae1A+KobRuopiWWw0= Subject key identifier: 85:6F:0C:90:07:3A:FB:8E:CD:E7:E8:34:09:CE:AB:DB:93:B4:1A:4E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7759541341E9B8351ACA631DFC4663D8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/hW8MkAc6-47N5-g0Cc6r25O0Gk4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:21 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 21276 AS: 207640 IP: 45.138.44.0/22 IP: 93.187.111.0/24 IP: 185.110.92.0/22 IP: 195.69.140.0/22 IP: 2a14:5400::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:54:13:41:e9:b8:35:1a:ca:63:1d:fc:46:63:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=856f0c90073afb8ecde7e83409ceabdb93b41a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c8:f7:b6:99:55:4a:3d:ba:40:b2:e0:7f:43: 63:d7:09:7a:d3:7f:fd:70:e3:44:b2:5e:62:bc:bf: 9f:da:ca:51:9a:bd:40:98:24:4b:6a:b2:a7:a4:ef: 0b:0a:f2:45:9d:77:46:ee:a4:8b:77:da:1b:2f:9d: d1:2a:6a:08:c5:5a:17:31:cd:ba:b7:58:fe:14:c3: f4:4a:a9:48:08:4f:43:89:21:53:b4:15:e5:f4:81: 98:99:1a:ae:c3:6f:1c:d5:57:74:48:43:41:b9:b0: d2:5b:59:4f:97:2e:32:73:46:33:67:b5:20:32:57: 4a:91:42:9e:99:14:bc:b8:12:e1:24:f4:61:c4:17: 7c:2d:a2:25:85:af:cd:de:ff:71:c7:50:03:70:b8: 93:30:91:57:c4:78:60:ec:af:b1:b4:f8:14:87:52: 72:ba:62:b0:8e:9d:f1:e5:83:93:89:64:14:37:f9: 2d:76:2d:c5:02:02:95:04:39:af:f4:3c:26:7f:55: 01:aa:92:2c:31:37:59:24:ed:18:16:d5:81:8e:ba: ee:14:3f:fb:0a:e7:c1:7e:07:05:f7:4d:a9:c5:6f: d5:3b:d6:52:e4:a3:91:0b:59:10:e3:58:ef:ce:4c: 51:c7:e5:e0:a7:20:83:98:eb:8a:cd:c4:f6:de:fa: 8c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:6F:0C:90:07:3A:FB:8E:CD:E7:E8:34:09:CE:AB:DB:93:B4:1A:4E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/hW8MkAc6-47N5-g0Cc6r25O0Gk4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.138.44.0/22 93.187.111.0/24 185.110.92.0/22 195.69.140.0/22 IPv6: 2a14:5400::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 21276 207640 Signature Algorithm: sha256WithRSAEncryption 1f:16:f6:27:c8:ea:65:53:35:5f:7e:ab:eb:28:f7:12:5f:99: 9b:24:75:d7:d9:60:52:92:cd:93:a9:8e:2f:5d:aa:3c:cc:ff: 76:d5:93:c0:56:bb:3a:39:48:72:6f:14:94:d6:d2:e8:8a:82: df:26:01:d0:df:5d:4b:c1:96:fe:a2:5d:7b:42:3f:e7:f4:0d: c9:7f:58:cb:9f:14:74:47:1d:02:f7:4c:0e:1b:a5:66:91:31: c3:33:2f:00:54:23:0a:03:f8:a4:e1:db:5d:04:bf:19:be:d8: 0e:13:f7:c3:e8:6b:8c:9a:29:c0:e8:ab:c0:ad:f2:c9:e0:8d: bc:9e:89:be:fe:be:1d:c2:7f:23:10:32:d1:22:38:fd:d5:ac: c9:8f:b0:65:88:22:6a:37:f1:aa:67:55:46:d2:43:f5:3a:a3: a0:67:8d:3f:69:69:36:46:5d:ac:33:5b:52:94:1d:16:90:90: 80:4b:45:6a:e8:39:80:86:60:ac:96:03:ed:43:15:a0:9a:6f: f3:96:ea:a0:2a:1f:2f:96:90:95:50:bb:e6:b0:bb:22:93:a7: 6c:9c:29:62:a2:a2:a3:38:a4:81:51:79:e3:e9:42:bf:97:4c: 30:41:b8:a1:b8:a4:9b:e6:fc:f4:6b:c7:9b:2a:57:ce:58:1c: 16:e4:1c:c3 -----BEGIN CERTIFICATE----- MIIFuTCCBKGgAwIBAgISAZt3WVQTQem4NRrKYx38RmPYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTZmMGM5MDA3M2FmYjhlY2RlN2U4MzQwOWNlYWJkYjkzYjQxYTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMj3tplVSj26QLLgf0Nj1wl603/9 cONEsl5ivL+f2spRmr1AmCRLarKnpO8LCvJFnXdG7qSLd9obL53RKmoIxVoXMc26 t1j+FMP0SqlICE9DiSFTtBXl9IGYmRquw28c1Vd0SENBubDSW1lPly4yc0YzZ7Ug MldKkUKemRS8uBLhJPRhxBd8LaIlha/N3v9xx1ADcLiTMJFXxHhg7K+xtPgUh1Jy umKwjp3x5YOTiWQUN/ktdi3FAgKVBDmv9Dwmf1UBqpIsMTdZJO0YFtWBjrruFD/7 CufBfgcF902pxW/VO9ZS5KORC1kQ41jvzkxRx+XgpyCDmOuKzcT23vqMwwIDAQAB o4ICxTCCAsEwHQYDVR0OBBYEFIVvDJAHOvuOzefoNAnOq9uTtBpOMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhjLzIwNDI2 OC02MDc4LTRiNTMtOTRkMi00NGZkZTk2YjhhZWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGMvMjA0MjY4 LTYwNzgtNGI1My05NGQyLTQ0ZmRlOTZiOGFlYy8xL2hXOE1rQWM2LTQ3TjUtZzBD YzZyMjVPMEdrNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQCLYosAwQAXbtvAwQCuW5cAwQCw0WMMA0EAgAC MAcDBQMqFFQAMB4GCCsGAQUFBwEIAQH/BA8wDaALMAkCAlMcAgMDKxgwDQYJKoZI hvcNAQELBQADggEBAB8W9ifI6mVTNV9+q+so9xJfmZskddfZYFKSzZOpji9dqjzM /3bVk8BWuzo5SHJvFJTW0uiKgt8mAdDfXUvBlv6iXXtCP+f0Dcl/WMufFHRHHQL3 TA4bpWaRMcMzLwBUIwoD+KTh210Evxm+2A4T98Poa4yaKcDoq8Ct8sngjbyeib7+ vh3CfyMQMtEiOP3VrMmPsGWIImo38apnVUbSQ/U6o6BnjT9paTZGXawzW1KUHRaQ kIBLRWroOYCGYKyWA+1DFaCab/OW6qAqHy+WkJVQu+awuyKTp2ycKWKioqM4pIFR eePpQr+XTDBBuKG4pJvm/PRrx5sqV85YHBbkHMM= -----END CERTIFICATE-----Generated at Mon Jan 26 05:56:42 2026 by rpki-client