This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78NgXDK7yF0jXwqc6PRfB5a3I8s.cer File: 78NgXDK7yF0jXwqc6PRfB5a3I8s.cer (raw, json) Hash identifier: Dp41X7jmatbouXjUOT3+SW9VcT5xyc3imQ6tBIhi/WM= Subject key identifier: EF:C3:60:5C:32:BB:C8:5D:23:5F:0A:9C:E8:F4:5F:07:96:B7:23:CB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ECABAF98B482A90CE3BB4D16E338BC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/39/e62169-486d-4054-b121-f2c8ba021ca8/1/78NgXDK7yF0jXwqc6PRfB5a3I8s.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/39/e62169-486d-4054-b121-f2c8ba021ca8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:32 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.232.148.0/22 IP: 2a0c:ad00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:ab:af:98:b4:82:a9:0c:e3:bb:4d:16:e3:38:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=efc3605c32bbc85d235f0a9ce8f45f0796b723cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:61:c4:b0:44:46:8c:23:ee:93:20:62:b4:46: 6e:4c:48:7b:07:d7:0c:87:1b:bc:ae:25:8c:05:ad: 05:e6:62:e6:f0:27:00:2f:54:6d:2e:ac:66:3a:49: 4c:9a:31:0c:df:48:e8:59:ef:23:e7:d6:07:c5:95: ab:75:90:4d:64:4b:29:81:62:30:d9:37:fe:80:59: c3:37:ce:4a:d6:73:ea:89:74:13:25:57:6c:78:68: 16:14:e1:9f:e4:4a:37:66:e4:1a:4d:88:21:f7:18: b2:c0:9a:ea:4b:be:bf:af:79:ac:78:bf:a7:05:3f: 56:fd:d2:fa:a9:c2:db:9e:10:65:20:4c:c5:c5:9b: ab:52:c2:03:fc:bd:51:a1:ce:68:98:37:63:89:72: ca:42:f8:98:40:d9:42:ff:51:86:e7:35:97:fa:fc: 41:de:85:0d:90:ee:4f:e5:58:44:53:96:76:f1:5d: ba:e7:5c:4a:9a:27:ca:53:b3:ee:da:ad:23:f4:e2: fc:73:12:96:5c:ce:72:ff:e2:a8:f6:44:22:a3:19: b3:57:47:9f:73:17:d4:ab:60:8a:39:9d:97:6d:5f: d3:ce:10:24:67:5d:e6:fa:98:22:87:ec:db:c4:b6: 68:5b:a6:6a:b9:89:43:a2:9d:4b:87:47:21:75:b1: d4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C3:60:5C:32:BB:C8:5D:23:5F:0A:9C:E8:F4:5F:07:96:B7:23:CB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/e62169-486d-4054-b121-f2c8ba021ca8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/e62169-486d-4054-b121-f2c8ba021ca8/1/78NgXDK7yF0jXwqc6PRfB5a3I8s.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.232.148.0/22 IPv6: 2a0c:ad00::/29 Signature Algorithm: sha256WithRSAEncryption 07:3d:bf:0d:7b:2b:28:13:05:31:6e:9b:42:66:f1:b9:96:dc: ed:b3:33:0d:8c:7c:04:71:4e:be:e0:18:ed:f1:29:37:3e:d8: de:9c:74:a2:b0:21:8e:cb:5f:c5:a1:38:79:54:d0:25:ad:2e: 84:09:07:2c:bb:3b:19:02:9f:47:8a:90:eb:2b:71:7e:61:74: a8:c9:af:82:a3:10:b0:a5:bd:98:b3:11:41:df:e9:fd:10:17: d6:4d:14:1f:d4:2d:bc:cc:57:14:54:0c:8f:0e:35:6c:eb:39: 0d:f2:2a:b2:43:d5:0e:2a:31:2e:90:27:b5:2e:17:1f:65:51: 4c:88:9f:89:ba:5b:46:84:fc:1a:76:92:4a:07:a9:ac:f9:08: d3:ae:ff:54:df:7a:02:21:e3:ad:c9:29:0e:2d:fa:1c:fb:f9: a7:78:53:68:1d:15:79:58:95:36:93:18:74:45:c1:7a:c6:16: 00:4b:09:f8:8d:73:44:c1:1d:19:c0:25:de:c7:97:b5:c7:89: 3f:e4:7e:12:b3:86:8c:23:5f:92:f9:75:27:8c:2e:52:3e:1e: e7:18:3d:50:45:6d:d4:db:4b:22:1a:e2:72:85:04:62:30:40: 2b:34:3f:da:5e:1c:51:b2:24:b9:40:e7:79:27:fa:44:d9:b8: 3e:25:ef:a5 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt57KuvmLSCqQzju00W4zi8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZmMzNjA1YzMyYmJjODVkMjM1ZjBhOWNlOGY0NWYwNzk2YjcyM2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWHEsERGjCPukyBitEZuTEh7B9cM hxu8riWMBa0F5mLm8CcAL1RtLqxmOklMmjEM30joWe8j59YHxZWrdZBNZEspgWIw 2Tf+gFnDN85K1nPqiXQTJVdseGgWFOGf5Eo3ZuQaTYgh9xiywJrqS76/r3mseL+n BT9W/dL6qcLbnhBlIEzFxZurUsID/L1Roc5omDdjiXLKQviYQNlC/1GG5zWX+vxB 3oUNkO5P5VhEU5Z28V2651xKmifKU7Pu2q0j9OL8cxKWXM5y/+Ko9kQioxmzV0ef cxfUq2CKOZ2XbV/TzhAkZ13m+pgih+zbxLZoW6ZquYlDop1Lh0chdbHUWwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFO/DYFwyu8hdI18KnOj0XweWtyPLMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM5L2U2MjE2 OS00ODZkLTQwNTQtYjEyMS1mMmM4YmEwMjFjYTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkvZTYyMTY5 LTQ4NmQtNDA1NC1iMTIxLWYyYzhiYTAyMWNhOC8xLzc4TmdYREs3eUYwalh3cWM2 UFJmQjVhM0k4cy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCueiUMA0EAgACMAcDBQMqDK0AMA0GCSqGSIb3 DQEBCwUAA4IBAQAHPb8NeysoEwUxbptCZvG5ltztszMNjHwEcU6+4Bjt8Sk3Ptje nHSisCGOy1/FoTh5VNAlrS6ECQcsuzsZAp9HipDrK3F+YXSoya+CoxCwpb2YsxFB 3+n9EBfWTRQf1C28zFcUVAyPDjVs6zkN8iqyQ9UOKjEukCe1LhcfZVFMiJ+JultG hPwadpJKB6ms+QjTrv9U33oCIeOtySkOLfoc+/mneFNoHRV5WJU2kxh0RcF6xhYA Swn4jXNEwR0ZwCXex5e1x4k/5H4Ss4aMI1+S+XUnjC5SPh7nGD1QRW3U20siGuJy hQRiMEArND/aXhxRsiS5QOd5J/pE2bg+Je+l -----END CERTIFICATE-----Generated at Tue Jan 27 11:14:44 2026 by rpki-client