This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer File: pOpmDdthAOfTLl02aJp3fKnK-hk.cer (raw, json) Hash identifier: SJnJA2xGY9b4UM7VlgT1wTNNeOIJBZQy/b4cRKbjSHY= Subject key identifier: A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5B80F28AE6E6B0A76C8690E76415DC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:19:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207842 IP: 5.42.96.0/19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:80:f2:8a:e6:e6:b0:a7:6c:86:90:e7:64:15:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a4ea660ddb6100e7d32e5d36689a777ca9cafa19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7b:03:0a:80:2d:40:34:c0:3a:49:d8:a8:98: 4d:c7:22:53:66:dc:96:f7:6c:a8:bc:00:31:36:6a: 80:c6:fc:27:a5:3a:18:bf:71:a0:2a:49:a7:8f:4d: 3a:22:2c:3a:f5:54:e4:25:d4:30:c5:d9:42:ae:ca: 82:31:46:73:63:a9:dc:a0:f1:c6:cd:42:54:5d:50: 21:4e:2e:31:06:ba:c2:92:f6:60:67:51:e4:f2:9b: f9:e6:21:0f:fb:12:20:9c:14:7a:6b:a7:76:ba:f4: 8b:1c:da:cf:f5:81:d6:34:55:d8:72:a0:d5:f8:de: b7:73:13:20:28:51:8b:d6:c0:45:b9:45:a5:0e:2f: 55:c7:5d:ba:2c:50:5a:d6:ef:07:e3:f9:52:ed:2f: be:f7:6f:99:06:54:9c:a8:d8:01:34:ef:ae:f5:4d: 4a:8a:f2:d0:03:4b:a8:03:29:43:71:0c:c6:7a:b7: 0b:bc:5a:ed:ec:6b:98:74:2a:6e:b9:6d:45:8f:53: f2:73:8b:d7:1f:0c:53:97:64:12:30:13:ed:3e:37: 7b:9e:27:6d:ea:c9:98:25:45:69:0a:72:3b:7e:33: c3:60:e5:20:d2:20:59:d9:8d:b1:59:d2:c7:f1:8f: 29:82:28:bd:32:c9:58:9c:1b:8e:ea:fa:89:82:3d: e0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.42.96.0/19 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207842 Signature Algorithm: sha256WithRSAEncryption 40:bf:54:2e:3f:d1:e2:53:78:82:7c:dc:63:0c:28:56:8d:c3: 36:13:38:ab:1d:52:62:9b:11:92:95:8d:d7:93:4c:71:61:b6: 03:7e:70:71:d0:41:62:0f:6e:0b:68:e9:bb:2d:c1:96:4a:c0: 61:f5:65:c0:bd:4c:20:0f:fe:51:6b:8f:2e:46:d0:d6:7e:88: 43:14:4d:b4:f5:00:d8:51:a8:53:5b:cd:17:91:58:1f:00:2a: 31:11:0d:2e:09:37:b5:3b:11:9c:d7:59:09:cf:42:43:b2:ab: 55:0f:44:d9:5e:cb:20:6e:e5:62:d3:a5:71:5e:63:f7:4b:d9: ca:2e:63:eb:ec:77:86:03:da:91:2d:76:6e:02:7c:86:63:49: 90:69:a9:2f:0e:24:67:f3:42:f0:e6:8a:40:ff:b7:4b:f0:c4: 74:46:1c:51:39:bd:71:56:79:a4:b5:27:23:af:eb:db:99:85: aa:ae:e5:b1:86:c3:3f:9d:67:fc:61:76:78:ad:d5:b8:02:ae: b2:d7:ff:5b:3f:e5:93:5e:1a:ba:16:2a:43:8b:03:a2:85:17: 82:6f:db:48:ad:5c:49:9e:48:97:ee:ec:82:08:8e:10:59:82: 0b:2b:36:f9:df:3e:5d:90:d9:27:86:b2:ba:f5:1f:61:f4:9a: e9:06:b9:1d -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt6W4DyiubmsKdshpDnZBXcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNGVhNjYwZGRiNjEwMGU3ZDMyZTVkMzY2ODlhNzc3Y2E5Y2FmYTE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXsDCoAtQDTAOknYqJhNxyJTZtyW 92yovAAxNmqAxvwnpToYv3GgKkmnj006Iiw69VTkJdQwxdlCrsqCMUZzY6ncoPHG zUJUXVAhTi4xBrrCkvZgZ1Hk8pv55iEP+xIgnBR6a6d2uvSLHNrP9YHWNFXYcqDV +N63cxMgKFGL1sBFuUWlDi9Vx126LFBa1u8H4/lS7S++92+ZBlScqNgBNO+u9U1K ivLQA0uoAylDcQzGercLvFrt7GuYdCpuuW1Fj1Pyc4vXHwxTl2QSMBPtPjd7nidt 6smYJUVpCnI7fjPDYOUg0iBZ2Y2xWdLH8Y8pgii9MslYnBuO6vqJgj3gVwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFKTqZg3bYQDn0y5dNmiad3ypyvoZMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQzL2UyMGFh MC0zMzhlLTRmMzMtODZlYS02ZjYyMmZkMThkMzAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMvZTIwYWEw LTMzOGUtNGYzMy04NmVhLTZmNjIyZmQxOGQzMC8xL3BPcG1EZHRoQU9mVExsMDJh SnAzZktuSy1oay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQFBSpgMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMr4jANBgkqhkiG9w0BAQsFAAOCAQEAQL9ULj/R4lN4gnzcYwwoVo3DNhM4qx1S YpsRkpWN15NMcWG2A35wcdBBYg9uC2jpuy3BlkrAYfVlwL1MIA/+UWuPLkbQ1n6I QxRNtPUA2FGoU1vNF5FYHwAqMRENLgk3tTsRnNdZCc9CQ7KrVQ9E2V7LIG7lYtOl cV5j90vZyi5j6+x3hgPakS12bgJ8hmNJkGmpLw4kZ/NC8OaKQP+3S/DEdEYcUTm9 cVZ5pLUnI6/r25mFqq7lsYbDP51n/GF2eK3VuAKustf/Wz/lk14auhYqQ4sDooUX gm/bSK1cSZ5Il+7sggiOEFmCCys2+d8+XZDZJ4ayuvUfYfSa6Qa5HQ== -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:15 2026 by rpki-client