This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7-H8ahWWWTTFM5PW7RiYTGulb1Y.cer File: 7-H8ahWWWTTFM5PW7RiYTGulb1Y.cer (raw, json) Hash identifier: ascc8BT/qKhkF+tiXDt7+q8MCe+DswjG35QVaSXeTiE= Subject key identifier: EF:E1:FC:6A:15:96:59:34:C5:33:93:D6:ED:18:98:4C:6B:A5:6F:56 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A227FBDE3E9AF59D0CEBFDB00E18C8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7f/63b5ec-c2c9-4f68-8d47-4d19937e2f20/1/7-H8ahWWWTTFM5PW7RiYTGulb1Y.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7f/63b5ec-c2c9-4f68-8d47-4d19937e2f20/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:17:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 194.6.243.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:27:fb:de:3e:9a:f5:9d:0c:eb:fd:b0:0e:18:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=efe1fc6a15965934c53393d6ed18984c6ba56f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:c3:7c:4a:75:dc:d7:40:6c:bc:b8:17:7a:a0: 12:15:1f:52:6b:fb:16:18:5d:a0:9d:ce:49:fb:d2: 14:54:98:10:85:fb:ee:ea:be:ba:aa:3a:e5:ab:69: 45:fe:ef:20:c8:e1:b2:8f:04:43:63:d6:60:d5:c5: 79:31:d9:f6:91:98:35:ee:3d:e8:94:a4:a5:70:3a: 51:d6:bd:86:12:3d:0c:53:b1:8b:e6:59:11:cf:f0: fa:ec:86:e7:cd:5b:18:73:01:f6:d0:49:b9:f8:65: 44:4d:a1:66:83:22:a2:45:7f:3c:aa:7b:39:0e:ae: b2:2b:c8:d9:c7:c2:24:26:9d:72:a4:25:a0:f8:bf: 3e:aa:75:0b:a6:93:a8:85:2d:27:ce:ab:a2:59:21: 6f:5b:e5:5a:59:01:5d:16:7e:56:07:d9:8d:2c:2d: a0:67:e8:df:c5:10:f4:86:ac:f2:6e:67:ff:b0:64: df:c2:95:fe:3f:45:c6:f9:15:34:fb:c5:b2:bd:69: de:a3:44:f8:3e:77:ee:d2:2f:98:82:89:9d:ad:7f: e9:b4:22:d7:b3:ed:37:5a:eb:42:18:0f:76:78:4d: 98:11:c2:e0:54:51:83:67:eb:a3:f6:11:3b:ac:25: cf:ef:af:45:4e:95:97:ca:d2:ee:ab:97:97:46:bb: 49:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E1:FC:6A:15:96:59:34:C5:33:93:D6:ED:18:98:4C:6B:A5:6F:56 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/63b5ec-c2c9-4f68-8d47-4d19937e2f20/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/63b5ec-c2c9-4f68-8d47-4d19937e2f20/1/7-H8ahWWWTTFM5PW7RiYTGulb1Y.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.6.243.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:f4:04:08:31:bd:12:ec:f7:24:e6:27:bb:37:c0:4f:e2:01: 1b:51:fd:3e:1c:f2:d3:f2:a7:8e:03:b0:5d:5e:2e:f6:3a:3b: c7:78:4e:b0:ee:9c:31:f9:c0:c8:ac:2f:56:c9:6f:39:84:b3: d4:72:80:13:28:e7:fb:e2:8e:36:ab:59:c0:aa:bf:2f:bc:6f: 97:c3:21:13:ae:34:69:d4:db:99:da:ee:2d:29:38:b1:42:ab: 02:72:98:44:f0:2d:d2:f0:66:98:a5:51:7c:c5:83:7e:1c:9a: a2:a0:4d:fe:ba:c8:c7:f9:bc:db:34:54:77:c5:c6:14:bf:40: 6b:5a:26:27:0c:96:c3:3e:9c:82:7b:fc:d0:0e:2e:80:2d:03: e9:29:12:10:95:d3:ad:86:62:c0:78:3e:06:7b:2d:80:33:de: cf:70:60:46:35:58:1e:a4:4e:0a:5e:6b:ec:aa:ff:68:d8:7d: 6c:10:5b:69:8b:b5:4e:aa:7b:8b:eb:5b:97:15:e0:8b:30:f6: 55:49:7c:aa:9f:42:ea:58:f0:37:89:e2:6e:79:39:93:6c:22: 03:00:c1:cf:56:b7:68:75:cf:44:f8:a6:c4:f7:3c:f4:7d:65: 1a:bb:14:97:49:9e:fa:4b:81:86:a7:f8:97:a5:90:ac:5e:f4: f1:63:e3:f1 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt4oif73j6a9Z0M6/2wDhjIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZmUxZmM2YTE1OTY1OTM0YzUzMzkzZDZlZDE4OTg0YzZiYTU2ZjU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+MN8SnXc10BsvLgXeqASFR9Sa/sW GF2gnc5J+9IUVJgQhfvu6r66qjrlq2lF/u8gyOGyjwRDY9Zg1cV5Mdn2kZg17j3o lKSlcDpR1r2GEj0MU7GL5lkRz/D67IbnzVsYcwH20Em5+GVETaFmgyKiRX88qns5 Dq6yK8jZx8IkJp1ypCWg+L8+qnULppOohS0nzquiWSFvW+VaWQFdFn5WB9mNLC2g Z+jfxRD0hqzybmf/sGTfwpX+P0XG+RU0+8WyvWneo0T4Pnfu0i+YgomdrX/ptCLX s+03WutCGA92eE2YEcLgVFGDZ+uj9hE7rCXP769FTpWXytLuq5eXRrtJbQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFO/h/GoVllk0xTOT1u0YmExrpW9WMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdmLzYzYjVl Yy1jMmM5LTRmNjgtOGQ0Ny00ZDE5OTM3ZTJmMjAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2YvNjNiNWVj LWMyYzktNGY2OC04ZDQ3LTRkMTk5MzdlMmYyMC8xLzctSDhhaFdXV1RURk01UFc3 UmlZVEd1bGIxWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwgbzMA0GCSqGSIb3DQEBCwUAA4IBAQBe9AQI Mb0S7Pck5ie7N8BP4gEbUf0+HPLT8qeOA7BdXi72OjvHeE6w7pwx+cDIrC9WyW85 hLPUcoATKOf74o42q1nAqr8vvG+XwyETrjRp1NuZ2u4tKTixQqsCcphE8C3S8GaY pVF8xYN+HJqioE3+usjH+bzbNFR3xcYUv0BrWiYnDJbDPpyCe/zQDi6ALQPpKRIQ ldOthmLAeD4Gey2AM97PcGBGNVgepE4KXmvsqv9o2H1sEFtpi7VOqnuL61uXFeCL MPZVSXyqn0LqWPA3ieJueTmTbCIDAMHPVrdodc9E+KbE9zz0fWUauxSXSZ76S4GG p/iXpZCsXvTxY+Px -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:31 2026 by rpki-client