This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2eeOhm6SBNAab1LTn9hP8JALIdQ.cer File: 2eeOhm6SBNAab1LTn9hP8JALIdQ.cer (raw, json) Hash identifier: KeerdmfdQDawAxzFIvacDWiYvsLE+X7FF5DhOFC1xs0= Subject key identifier: D9:E7:8E:86:6E:92:04:D0:1A:6F:52:D3:9F:D8:4F:F0:90:0B:21:D4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F84A8A8A7C78038BE9759987BAB4041 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/2eeOhm6SBNAab1LTn9hP8JALIdQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:22:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 56816 IP: 91.228.16.0/23 IP: 91.228.20.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:a8:a8:a7:c7:80:38:be:97:59:98:7b:ab:40:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:22:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d9e78e866e9204d01a6f52d39fd84ff0900b21d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:66:4a:5e:18:81:a8:5e:28:13:9a:8a:2f:6c: 99:d5:ff:d3:e8:5b:76:95:77:fc:5f:6b:48:9d:78: 16:d7:d6:93:f3:b0:42:19:cb:18:24:d6:17:86:e7: 55:96:5b:8e:a7:eb:7e:32:e9:03:79:9e:97:72:5c: 62:f7:b6:25:95:b7:8a:15:ed:bd:a3:a2:c0:b9:ba: a4:27:80:42:fa:cf:52:35:b4:42:42:72:8a:d3:44: 57:43:c0:0d:1e:61:a2:b0:e8:4a:60:7c:83:11:37: b0:62:b6:3f:71:45:fc:fa:61:95:d3:70:09:6e:a6: 53:f2:5e:5e:ca:81:fc:55:88:a8:61:27:ab:ea:a9: c0:39:91:e7:f2:08:7d:de:d3:e6:3f:28:a0:23:3c: 91:a8:3d:a8:67:0f:15:13:31:5d:97:cf:0a:8d:a8: 39:ef:7f:2b:a2:61:d7:61:d3:a6:e8:2b:bb:a7:3d: 5f:d0:7f:f7:97:7b:ca:72:15:c0:a5:f1:f4:66:b6: ad:4d:5f:6b:26:b5:2e:8d:8a:50:96:a2:95:8b:fe: ec:b6:77:09:67:2d:a9:b9:8d:c7:59:db:7f:16:aa: 14:8e:fb:8c:ab:bf:e1:e4:4d:4d:22:54:49:bb:8d: ca:20:ce:1a:85:57:b8:1a:cd:43:86:ca:de:ef:8a: 3c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E7:8E:86:6E:92:04:D0:1A:6F:52:D3:9F:D8:4F:F0:90:0B:21:D4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/2eeOhm6SBNAab1LTn9hP8JALIdQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.228.16.0/23 91.228.20.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 56816 Signature Algorithm: sha256WithRSAEncryption a5:43:6c:ec:0b:8b:89:81:ef:2e:0c:c6:15:8e:0a:62:c4:a1: 42:0c:73:d0:14:73:18:50:f4:b2:24:b7:96:a4:5d:36:c5:08: ab:b0:7d:48:60:15:d0:77:f3:01:0d:67:6f:0d:62:69:63:f2: f2:45:c6:3b:98:8f:ec:df:16:93:e5:36:17:d8:db:55:9a:8e: cb:43:b7:d7:ca:2a:e2:c6:4b:5e:08:67:22:47:c0:db:01:3a: df:2d:af:ae:17:15:88:20:67:17:8b:a9:c0:8a:9a:b8:9c:58: fa:6c:b0:4a:1b:12:72:a5:1f:e5:14:a8:99:84:6a:93:39:a6: 1c:a5:21:c6:4f:97:93:7a:15:b0:03:32:2a:28:8b:c7:fe:33: 2c:5b:a5:a0:d0:59:ce:12:08:b7:84:26:f6:f0:1f:b0:fc:72: 49:c5:58:b9:2b:7f:cc:76:4e:d7:ce:fa:e7:df:d3:b3:8d:d7: 65:27:12:d7:6c:e4:a6:77:67:e8:2a:b5:35:f8:b5:1a:ac:64: fa:03:f8:9e:42:8a:a1:16:a6:bd:50:de:f1:84:42:77:ac:71: a6:f6:26:52:91:12:da:9c:2a:fe:65:8b:e5:6e:ee:3d:91:85: 72:f6:01:4d:60:d9:4c:a6:e4:e2:7d:6c:e6:04:28:50:b8:22: 25:12:95:67 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt/hKiop8eAOL6XWZh7q0BBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMjM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOWU3OGU4NjZlOTIwNGQwMWE2ZjUyZDM5ZmQ4NGZmMDkwMGIyMWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGZKXhiBqF4oE5qKL2yZ1f/T6Ft2 lXf8X2tInXgW19aT87BCGcsYJNYXhudVlluOp+t+MukDeZ6Xclxi97YllbeKFe29 o6LAubqkJ4BC+s9SNbRCQnKK00RXQ8ANHmGisOhKYHyDETewYrY/cUX8+mGV03AJ bqZT8l5eyoH8VYioYSer6qnAOZHn8gh93tPmPyigIzyRqD2oZw8VEzFdl88Kjag5 738romHXYdOm6Cu7pz1f0H/3l3vKchXApfH0ZratTV9rJrUujYpQlqKVi/7stncJ Zy2puY3HWdt/FqoUjvuMq7/h5E1NIlRJu43KIM4ahVe4Gs1Dhsre74o8jQIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFNnnjoZukgTQGm9S05/YT/CQCyHUMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhjLzMyOTE1 Yi05ZWExLTRjNjQtOGZmMS1kNzZkNjYyN2ZiMmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGMvMzI5MTVi LTllYTEtNGM2NC04ZmYxLWQ3NmQ2NjI3ZmIyZS8xLzJlZU9obTZTQk5BYWIxTFRu OWhQOEpBTElkUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQBW+QQAwQBW+QUMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwDd8DANBgkqhkiG9w0BAQsFAAOCAQEApUNs7AuLiYHvLgzGFY4KYsSh Qgxz0BRzGFD0siS3lqRdNsUIq7B9SGAV0HfzAQ1nbw1iaWPy8kXGO5iP7N8Wk+U2 F9jbVZqOy0O318oq4sZLXghnIkfA2wE63y2vrhcViCBnF4upwIqauJxY+mywShsS cqUf5RSomYRqkzmmHKUhxk+Xk3oVsAMyKiiLx/4zLFuloNBZzhIIt4Qm9vAfsPxy ScVYuSt/zHZO187659/Ts43XZScS12zkpndn6Cq1Nfi1Gqxk+gP4nkKKoRamvVDe 8YRCd6xxpvYmUpES2pwq/mWL5W7uPZGFcvYBTWDZTKbk4n1s5gQoULgiJRKVZw== -----END CERTIFICATE-----Generated at Mon Jan 26 23:47:33 2026 by rpki-client