This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4EsooZ2_U0rWHLBJmG5UJMMoTeI.cer File: 4EsooZ2_U0rWHLBJmG5UJMMoTeI.cer (raw, json) Hash identifier: VM/J2pVrqz29pI61u/z/KfNbCyIP84OIPoucubJA3iI= Subject key identifier: E0:4B:28:A1:9D:BF:53:4A:D6:1C:B0:49:98:6E:54:24:C3:28:4D:E2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA6B807C99426072F285A35FF36F4B0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f8/cda8f7-8b87-4c6e-bd56-acf04481064d/1/4EsooZ2_U0rWHLBJmG5UJMMoTeI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f8/cda8f7-8b87-4c6e-bd56-acf04481064d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:20:13 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212495 IP: 2001:678:e98::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:b8:07:c9:94:26:07:2f:28:5a:35:ff:36:f4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:20:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e04b28a19dbf534ad61cb049986e5424c3284de2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cb:a2:2e:ac:bf:89:0e:7e:f9:6d:12:61:1d: df:e4:50:4f:c0:fe:cb:14:d3:c5:eb:81:21:c3:64: 80:d8:c6:69:fd:bb:73:28:98:63:66:e3:4d:e6:4a: 49:5b:0d:6a:b4:fb:90:e6:bb:02:b0:88:84:16:7e: 89:ce:16:c5:ab:91:6a:6f:5c:11:28:68:a8:5e:7e: f2:de:09:a4:ef:98:24:aa:20:d4:a6:d3:6c:8d:d5: 84:58:31:fa:fe:2a:46:0e:ae:86:b5:c0:0c:d8:7b: f6:e4:37:f8:87:d4:44:75:9f:4b:26:6a:f2:2a:73: 1f:31:7f:68:43:51:c2:02:61:b6:52:c9:20:da:4d: ed:51:5b:49:be:7e:9a:87:39:90:c4:f2:6f:8a:f6: 44:be:d9:11:57:bd:d4:e7:0e:a8:fa:04:2a:2c:f6: 47:38:23:c0:07:8a:08:03:2b:cc:23:52:b1:6c:b5: 56:e1:ec:11:dc:f1:69:1f:79:54:3a:57:12:bb:0f: 62:5b:94:d5:65:7f:8c:88:e5:a9:26:22:06:2f:1a: 97:b3:8f:37:b3:e6:ac:72:09:44:b2:bc:22:86:e9: 78:9f:a4:03:56:ce:76:40:c3:b7:f9:c6:3f:2b:b3: 3b:08:5c:34:8d:3e:15:21:5d:de:17:b3:80:9f:02: 68:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4B:28:A1:9D:BF:53:4A:D6:1C:B0:49:98:6E:54:24:C3:28:4D:E2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/cda8f7-8b87-4c6e-bd56-acf04481064d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/cda8f7-8b87-4c6e-bd56-acf04481064d/1/4EsooZ2_U0rWHLBJmG5UJMMoTeI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:e98::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212495 Signature Algorithm: sha256WithRSAEncryption 93:ef:ad:f6:85:d7:e7:6e:bd:db:f8:f9:90:73:6c:21:26:39: 53:cd:a5:63:58:08:28:b8:3b:95:4a:47:28:0f:86:f6:b1:1e: ba:d7:d7:cd:30:8b:9f:b4:9f:ad:dd:d6:a3:c9:b1:f5:81:17: 14:f5:a4:29:a9:cd:bf:f9:c8:a9:ee:82:6f:30:c5:2b:91:32: b7:d9:c8:b3:f6:d8:0d:7a:06:b7:e5:d1:a5:3f:20:55:5f:ba: 1c:e5:99:66:e0:3d:fa:ce:f3:4f:a7:66:ac:1d:b5:65:5e:d8: 77:76:a2:84:a2:97:38:50:e5:34:ff:b1:0e:73:eb:5e:a9:e2: e6:7b:7b:95:cf:39:ae:16:c5:35:67:13:f1:1d:25:eb:19:d7: 9f:4f:35:29:ba:fb:9a:bf:a2:f3:df:11:1b:c6:ce:8f:2e:59: 90:1c:37:eb:d6:e0:35:2d:c6:63:62:d9:6c:2c:b3:f0:4d:31: bf:b3:ed:ac:16:24:53:ba:19:16:71:d9:bb:0f:99:6c:06:e8: 1f:69:cb:a2:c8:42:12:b4:d7:d4:51:d2:3f:b6:e5:00:66:a2: b2:84:64:96:9f:68:80:61:71:e7:16:3e:7a:f7:e5:a6:d9:7d: 49:64:63:63:90:a2:83:59:87:17:31:fd:60:3a:ce:f9:5d:48: 03:53:6c:b7 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt+prgHyZQmBy8oWjX/NvSwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIyMDEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMDRiMjhhMTlkYmY1MzRhZDYxY2IwNDk5ODZlNTQyNGMzMjg0ZGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAncuiLqy/iQ5++W0SYR3f5FBPwP7L FNPF64Ehw2SA2MZp/btzKJhjZuNN5kpJWw1qtPuQ5rsCsIiEFn6JzhbFq5Fqb1wR KGioXn7y3gmk75gkqiDUptNsjdWEWDH6/ipGDq6GtcAM2Hv25Df4h9REdZ9LJmry KnMfMX9oQ1HCAmG2Uskg2k3tUVtJvn6ahzmQxPJvivZEvtkRV73U5w6o+gQqLPZH OCPAB4oIAyvMI1KxbLVW4ewR3PFpH3lUOlcSuw9iW5TVZX+MiOWpJiIGLxqXs483 s+ascglEsrwihul4n6QDVs52QMO3+cY/K7M7CFw0jT4VIV3eF7OAnwJocwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFOBLKKGdv1NK1hywSZhuVCTDKE3iMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y4L2NkYThm Ny04Yjg3LTRjNmUtYmQ1Ni1hY2YwNDQ4MTA2NGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjgvY2RhOGY3 LThiODctNGM2ZS1iZDU2LWFjZjA0NDgxMDY0ZC8xLzRFc29vWjJfVTByV0hMQkpt RzVVSk1Nb1RlSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA6YMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwM+DzANBgkqhkiG9w0BAQsFAAOCAQEAk++t9oXX52692/j5kHNsISY5U82l Y1gIKLg7lUpHKA+G9rEeutfXzTCLn7Sfrd3Wo8mx9YEXFPWkKanNv/nIqe6CbzDF K5Eyt9nIs/bYDXoGt+XRpT8gVV+6HOWZZuA9+s7zT6dmrB21ZV7Yd3aihKKXOFDl NP+xDnPrXqni5nt7lc85rhbFNWcT8R0l6xnXn081Kbr7mr+i898RG8bOjy5ZkBw3 69bgNS3GY2LZbCyz8E0xv7PtrBYkU7oZFnHZuw+ZbAboH2nLoshCErTX1FHSP7bl AGaisoRklp9ogGFx5xY+evflptl9SWRjY5Cig1mHFzH9YDrO+V1IA1Nstw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:05 2026 by rpki-client