This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hwNNK1ky3RSR3n__McfYOvcyBuI.cer File: hwNNK1ky3RSR3n__McfYOvcyBuI.cer (raw, json) Hash identifier: wQYZ8zmeezt1se7kWaBrQ1YF7nOIxBwXQ2xCpkMu4QM= Subject key identifier: 87:03:4D:2B:59:32:DD:14:91:DE:7F:FF:31:C7:D8:3A:F7:32:06:E2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C11B02FE05D6E98BBAA5239F1C120D8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/70cc54-a748-45ed-99ac-39ff26152aa4/1/hwNNK1ky3RSR3n__McfYOvcyBuI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/70cc54-a748-45ed-99ac-39ff26152aa4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:18:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216471 IP: 193.36.94.0/24 IP: 2a13:aa40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:b0:2f:e0:5d:6e:98:bb:aa:52:39:f1:c1:20:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=87034d2b5932dd1491de7fff31c7d83af73206e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:93:a1:28:0f:73:f1:03:16:72:7e:22:68:74: 73:6a:2b:ce:10:6f:c7:8a:3c:7b:b9:b3:91:39:36: bd:d2:57:a4:b4:24:3c:87:4e:3d:f4:84:30:97:65: 01:c7:bd:05:8e:8b:6c:d0:7c:87:6f:6f:d4:f1:63: 33:67:43:37:f4:5a:a4:c0:4b:16:04:bc:e6:84:fd: 1a:b2:28:14:a3:d8:ff:79:de:ad:a9:a4:74:54:99: f7:e0:b0:4b:6c:9e:69:91:65:e9:8a:da:24:b6:b1: b4:21:0f:87:b8:cc:34:e0:19:39:c4:fe:a7:12:22: df:4c:88:c4:02:53:80:01:27:c7:75:c0:40:fc:38: 01:32:be:c1:b3:dd:99:76:92:f6:7d:7a:4f:f0:39: 5b:5b:8e:30:7b:d0:88:b3:1f:fe:72:88:cb:80:e8: dc:86:7f:cf:2d:53:dd:e6:2a:63:17:3a:72:f9:3e: 64:b4:df:cc:16:d4:a2:be:be:73:ef:70:9e:04:d4: 67:57:84:a2:ab:84:47:e2:d3:93:ea:ff:e0:68:08: 7c:7a:5f:df:20:ad:41:37:9f:c7:17:ab:05:c2:61: a4:02:d1:30:a5:a2:c3:6d:d8:66:35:f6:62:06:34: 56:c0:ed:c9:22:dd:fb:3e:c5:64:90:a2:fc:01:fd: 9d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:03:4D:2B:59:32:DD:14:91:DE:7F:FF:31:C7:D8:3A:F7:32:06:E2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/70cc54-a748-45ed-99ac-39ff26152aa4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/70cc54-a748-45ed-99ac-39ff26152aa4/1/hwNNK1ky3RSR3n__McfYOvcyBuI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.36.94.0/24 IPv6: 2a13:aa40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 216471 Signature Algorithm: sha256WithRSAEncryption 33:ae:8f:5f:e2:fb:ca:0b:ef:7b:be:04:f7:cf:a8:a7:b4:62: ba:45:25:15:0a:fc:c8:0c:a4:ae:69:68:81:2f:12:58:84:b2: 1f:e2:e8:be:b8:d3:54:8e:ac:a9:69:f9:37:18:23:ac:41:77: 12:47:aa:4c:34:5b:00:7c:9d:8c:66:2e:91:26:72:5f:d1:7a: 05:b5:7c:b8:69:cd:76:fe:c1:d2:5b:23:1a:88:f5:cf:45:17: 32:2d:dc:1e:a8:89:67:0f:06:02:c1:fa:be:a7:66:35:f1:b5: 6b:68:e8:a7:ca:72:bf:7e:6c:19:de:58:17:a1:a0:3a:6b:79: 80:63:e3:19:65:fc:3d:bc:1e:f0:5e:39:66:49:29:70:01:0e: 30:4e:3e:86:86:a5:98:20:31:2e:d3:31:ee:6d:41:81:12:ba: c3:ea:2c:dc:a2:28:96:64:70:91:1b:b4:34:5f:cb:a5:58:d5: 8b:2b:87:2a:65:25:96:97:1c:24:68:a5:4c:b9:49:18:f3:37: 57:37:1e:9b:42:ef:42:83:aa:26:fa:8f:05:89:59:8c:3a:19: 89:67:6d:a1:4d:ac:1b:28:82:4f:a6:50:ea:76:78:4d:26:1e: fd:ba:78:e8:c1:ca:71:31:20:48:fa:39:2b:85:8f:58:57:fc: a7:69:47:e6 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt8EbAv4F1umLuqUjnxwSDYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzAzNGQyYjU5MzJkZDE0OTFkZTdmZmYzMWM3ZDgzYWY3MzIwNmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpOhKA9z8QMWcn4iaHRzaivOEG/H ijx7ubOROTa90lektCQ8h0499IQwl2UBx70Fjots0HyHb2/U8WMzZ0M39FqkwEsW BLzmhP0asigUo9j/ed6tqaR0VJn34LBLbJ5pkWXpitoktrG0IQ+HuMw04Bk5xP6n EiLfTIjEAlOAASfHdcBA/DgBMr7Bs92ZdpL2fXpP8DlbW44we9CIsx/+cojLgOjc hn/PLVPd5ipjFzpy+T5ktN/MFtSivr5z73CeBNRnV4Siq4RH4tOT6v/gaAh8el/f IK1BN5/HF6sFwmGkAtEwpaLDbdhmNfZiBjRWwO3JIt37PsVkkKL8Af2diQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFIcDTStZMt0Ukd5//zHH2Dr3MgbiMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5LzcwY2M1 NC1hNzQ4LTQ1ZWQtOTlhYy0zOWZmMjYxNTJhYTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvNzBjYzU0 LWE3NDgtNDVlZC05OWFjLTM5ZmYyNjE1MmFhNC8xL2h3Tk5LMWt5M1JTUjNuX19N Y2ZZT3ZjeUJ1SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwSReMA0EAgACMAcDBQMqE6pAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNNlzANBgkqhkiG9w0BAQsFAAOCAQEAM66PX+L7ygvv e74E98+op7RiukUlFQr8yAykrmlogS8SWISyH+LovrjTVI6sqWn5NxgjrEF3Ekeq TDRbAHydjGYukSZyX9F6BbV8uGnNdv7B0lsjGoj1z0UXMi3cHqiJZw8GAsH6vqdm NfG1a2jop8pyv35sGd5YF6GgOmt5gGPjGWX8Pbwe8F45ZkkpcAEOME4+hoalmCAx LtMx7m1BgRK6w+os3KIolmRwkRu0NF/LpVjViyuHKmUllpccJGilTLlJGPM3Vzce m0LvQoOqJvqPBYlZjDoZiWdtoU2sGyiCT6ZQ6nZ4TSYe/bp46MHKcTEgSPo5K4WP WFf8p2lH5g== -----END CERTIFICATE-----Generated at Mon Jan 26 04:48:17 2026 by rpki-client