This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72eEaVdKzAPXguYygf9E-qqz-Ec.cer File: 72eEaVdKzAPXguYygf9E-qqz-Ec.cer (raw, json) Hash identifier: 8ILAghwoDdcngFigaqki6f1uxlulwsRhjosRQEorWfg= Subject key identifier: EF:67:84:69:57:4A:CC:03:D7:82:E6:32:81:FF:44:FA:AA:B3:F8:47 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E3789A6AD413EC9F233B257BA51466C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/72eEaVdKzAPXguYygf9E-qqz-Ec.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:18:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207440 AS: 208037 AS: 209231 IP: 2.56.140.0/22 IP: 86.110.204.0/22 IP: 89.232.172.0/22 IP: 185.161.236.0/22 IP: 185.251.36.0/24 IP: 2a09:c540::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:89:a6:ad:41:3e:c9:f2:33:b2:57:ba:51:46:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ef678469574acc03d782e63281ff44faaab3f847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:22:d9:5b:da:8c:d0:51:ba:7f:8e:f9:b4:48: 28:c6:3c:4a:a0:c8:27:5e:71:d3:7d:b2:d1:1e:3b: c9:6a:d7:c2:65:0f:c4:6e:f9:86:14:24:da:5c:7f: 1d:e2:34:b2:6e:6f:60:62:f9:0d:e3:42:ed:37:c5: 23:cf:04:20:85:9a:2f:62:5e:5f:12:0d:3e:8f:83: 45:4a:07:07:bd:af:4a:3e:56:8e:50:c2:7b:be:67: 9b:e4:c5:19:6d:44:b3:b6:89:88:ec:f7:ba:ea:f8: 0c:33:50:c7:fd:66:fd:f1:bf:ce:d8:ec:82:db:d7: de:c8:e0:d8:42:24:f7:f9:f6:d9:1f:ab:42:16:b2: d1:7e:ed:fc:e0:0b:3f:f5:38:bb:ee:c2:ec:d7:5a: 1f:7f:01:04:01:85:03:d6:02:34:c8:0c:b2:45:d4: 70:b4:42:18:bb:27:10:3b:ef:44:bd:cb:e5:de:29: fe:14:db:4b:55:7e:3f:3d:c8:14:dd:96:9c:35:24: 32:89:f0:88:4e:4a:d5:92:c7:f1:a4:e5:d9:71:1d: a4:04:34:ac:68:85:52:31:a2:02:f3:0e:63:cf:15: cb:a2:65:11:ba:ae:cf:e6:e1:18:7b:45:3a:f4:34: 3c:30:ec:87:20:02:e8:dd:8d:23:13:27:f6:a9:f2: 69:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:67:84:69:57:4A:CC:03:D7:82:E6:32:81:FF:44:FA:AA:B3:F8:47 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/72eEaVdKzAPXguYygf9E-qqz-Ec.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.140.0/22 86.110.204.0/22 89.232.172.0/22 185.161.236.0/22 185.251.36.0/24 IPv6: 2a09:c540::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207440 208037 209231 Signature Algorithm: sha256WithRSAEncryption ac:ee:49:a5:32:b5:06:60:90:10:be:3d:b3:1e:f7:6a:8d:00: 51:d4:6d:3a:05:ce:f6:79:02:64:32:68:30:43:7c:74:84:dd: 1d:a9:cb:ef:52:43:05:09:fe:85:e6:78:e9:19:77:8c:fa:ad: 5c:67:69:41:14:01:3a:b6:23:4c:9a:ac:b3:7c:34:c7:24:e9: b7:ef:d7:02:a6:c9:ec:81:fc:60:da:47:95:52:d0:49:80:d2: 6b:2b:67:2c:ea:5c:af:6b:22:27:4b:f0:a9:9c:1e:e4:de:7f: 85:2a:a7:b6:44:e6:6e:74:35:d6:ce:e8:fd:4a:86:8f:c4:9c: e9:0b:47:c2:b5:16:0b:e0:80:9e:d1:e3:3f:3c:4a:28:c8:52: e3:d3:44:18:3e:1b:4f:de:eb:70:a6:73:e6:71:10:01:40:20: a0:da:8c:65:81:58:a0:07:e1:0e:4c:96:43:2d:a6:1a:8f:11: d9:67:31:79:db:3d:a5:96:87:8f:c8:16:42:fd:39:0e:11:d5: 5d:7a:98:51:80:fc:0b:a0:ff:89:58:a2:8a:ba:7c:68:1d:2c: 99:1b:23:37:e9:b0:2e:c7:64:94:a9:c0:29:f4:f6:fa:2b:28: bf:d4:37:89:26:d4:94:6b:53:6f:af:1e:3c:36:55:62:ca:86: c7:28:a6:6b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgISAZt+N4mmrUE+yfIzsle6UUZsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjY3ODQ2OTU3NGFjYzAzZDc4MmU2MzI4MWZmNDRmYWFhYjNmODQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSLZW9qM0FG6f475tEgoxjxKoMgn XnHTfbLRHjvJatfCZQ/EbvmGFCTaXH8d4jSybm9gYvkN40LtN8UjzwQghZovYl5f Eg0+j4NFSgcHva9KPlaOUMJ7vmeb5MUZbUSztomI7Pe66vgMM1DH/Wb98b/O2OyC 29feyODYQiT3+fbZH6tCFrLRfu384As/9Ti77sLs11offwEEAYUD1gI0yAyyRdRw tEIYuycQO+9Evcvl3in+FNtLVX4/PcgU3ZacNSQyifCITkrVksfxpOXZcR2kBDSs aIVSMaIC8w5jzxXLomURuq7P5uEYe0U69DQ8MOyHIALo3Y0jEyf2qfJpJQIDAQAB o4IC0TCCAs0wHQYDVR0OBBYEFO9nhGlXSswD14LmMoH/RPqqs/hHMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM4L2I0Njcz Yi0yMTBiLTRlNWEtODc2YS1kYzA1OWU2OWIxZDAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzgvYjQ2NzNi LTIxMGItNGU1YS04NzZhLWRjMDU5ZTY5YjFkMC8xLzcyZUVhVmRLekFQWGd1WXln ZjlFLXFxei1FYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUF BwEHAQH/BDcwNTAkBAIAATAeAwQCAjiMAwQCVm7MAwQCWeisAwQCuaHsAwQAufsk MA0EAgACMAcDBQAqCcVAMCQGCCsGAQUFBwEIAQH/BBUwE6ARMA8CAwMqUAIDAyyl AgMDMU8wDQYJKoZIhvcNAQELBQADggEBAKzuSaUytQZgkBC+PbMe92qNAFHUbToF zvZ5AmQyaDBDfHSE3R2py+9SQwUJ/oXmeOkZd4z6rVxnaUEUATq2I0yarLN8NMck 6bfv1wKmyeyB/GDaR5VS0EmA0msrZyzqXK9rIidL8KmcHuTef4Uqp7ZE5m50NdbO 6P1Kho/EnOkLR8K1FgvggJ7R4z88SijIUuPTRBg+G0/e63Cmc+ZxEAFAIKDajGWB WKAH4Q5MlkMtphqPEdlnMXnbPaWWh4/IFkL9OQ4R1V16mFGA/Aug/4lYooq6fGgd LJkbIzfpsC7HZJSpwCn09vorKL/UN4km1JRrU2+vHjw2VWLKhscopms= -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:34 2026 by rpki-client