This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7MRfytxMkzrI_04LQ0pb-1Z7ZaE.cer File: 7MRfytxMkzrI_04LQ0pb-1Z7ZaE.cer (raw, json) Hash identifier: Gyn0aD2Yl+TS2FPpi5oRrrYjkiUYjAjNEc0vLyQNo5E= Subject key identifier: EC:C4:5F:CA:DC:4C:93:3A:C8:FF:4E:0B:43:4A:5B:FB:56:7B:65:A1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C1292EEE523431E92723034CEDF016C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3c/8a4285-157e-4c76-bed4-e076f8ccb8b9/1/7MRfytxMkzrI_04LQ0pb-1Z7ZaE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3c/8a4285-157e-4c76-bed4-e076f8ccb8b9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:19:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 15902 IP: 194.42.40.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:92:ee:e5:23:43:1e:92:72:30:34:ce:df:01:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ecc45fcadc4c933ac8ff4e0b434a5bfb567b65a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:d6:53:bf:38:6f:e0:7f:3d:05:5f:50:26:55: 6c:0d:f1:06:24:82:83:3b:b4:30:2e:0b:8c:9c:32: 92:db:04:95:ad:cd:aa:1b:9f:54:39:63:f7:93:3e: 4e:44:80:13:17:12:f7:f6:d2:52:bc:4d:0f:a3:ad: aa:cf:9d:42:0b:a6:9e:49:cd:f2:7e:16:52:1f:24: a4:93:f9:bf:3f:22:64:81:4e:e9:66:08:a4:ed:e2: 50:b0:8a:84:8c:5a:a1:e6:46:99:ad:4b:90:eb:58: f7:79:c9:74:60:ea:e0:96:80:d5:c5:95:f8:36:b2: 31:74:0a:06:1f:cb:cb:d0:a7:03:d6:2a:9b:43:b1: 97:28:e6:1e:6a:e5:ed:82:0c:33:45:bd:f3:35:54: 53:a8:3e:2b:37:95:f0:1f:22:6b:95:7b:8d:0d:89: 93:ba:45:3d:03:41:6c:a0:c3:49:e5:f1:93:28:3e: f4:8d:97:6a:d3:d1:37:cb:16:60:87:f3:41:09:d1: 69:8b:d5:33:b8:39:7b:c1:8f:c9:4c:88:90:76:ee: ba:3d:e4:82:e8:c0:fc:9d:52:b8:5a:af:fb:f6:03: 90:78:d9:eb:57:ed:3e:69:fb:9d:d9:2d:cd:a9:74: 08:3e:15:45:d3:a3:0c:3a:0d:b7:67:1d:3b:26:ba: 0e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C4:5F:CA:DC:4C:93:3A:C8:FF:4E:0B:43:4A:5B:FB:56:7B:65:A1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/8a4285-157e-4c76-bed4-e076f8ccb8b9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/8a4285-157e-4c76-bed4-e076f8ccb8b9/1/7MRfytxMkzrI_04LQ0pb-1Z7ZaE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.42.40.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 15902 Signature Algorithm: sha256WithRSAEncryption 98:09:1a:8a:54:34:6f:89:b8:d8:43:64:f6:c6:14:a4:77:9b: 66:59:9c:13:92:21:39:c9:23:e7:5a:fc:54:d6:1d:a9:ef:4a: cd:70:6f:8c:bb:5e:79:a8:75:94:8b:6e:ec:6d:fe:72:69:ff: 02:73:06:bb:40:32:ff:f4:85:0e:b2:fe:6f:01:e2:7f:ca:1e: 04:50:4a:dc:e3:be:1f:2f:bc:a3:d8:13:28:e9:0a:bb:ee:09: 80:0b:b1:57:9f:4c:3b:db:42:d6:5c:92:5f:73:fe:c2:48:ac: 3f:db:e7:58:fa:a9:23:e6:96:66:b8:b5:44:5e:ef:2f:a8:11: da:76:e0:13:91:87:68:32:c7:51:b0:a5:68:e2:64:35:35:1c: f7:bd:af:e6:39:8e:df:17:27:49:03:f2:f6:f4:c9:80:c3:27: 48:9b:a2:12:f0:48:f8:9f:72:89:39:64:34:32:11:ff:9a:93: 30:e5:80:fc:d7:29:b9:82:b7:ce:29:46:dd:7b:2b:b5:fb:3d: ca:65:05:58:00:83:14:fc:76:5c:73:d9:23:b0:6e:70:dd:43: ff:77:86:94:87:71:36:aa:25:6b:22:b1:4e:e5:e1:72:01:c2: 14:ae:1b:78:6f:4b:c7:16:34:7b:47:35:7e:cf:d1:96:78:a3: 10:9c:53:cc -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt8EpLu5SNDHpJyMDTO3wFsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlY2M0NWZjYWRjNGM5MzNhYzhmZjRlMGI0MzRhNWJmYjU2N2I2NWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAidZTvzhv4H89BV9QJlVsDfEGJIKD O7QwLguMnDKS2wSVrc2qG59UOWP3kz5ORIATFxL39tJSvE0Po62qz51CC6aeSc3y fhZSHySkk/m/PyJkgU7pZgik7eJQsIqEjFqh5kaZrUuQ61j3ecl0YOrgloDVxZX4 NrIxdAoGH8vL0KcD1iqbQ7GXKOYeauXtggwzRb3zNVRTqD4rN5XwHyJrlXuNDYmT ukU9A0FsoMNJ5fGTKD70jZdq09E3yxZgh/NBCdFpi9UzuDl7wY/JTIiQdu66PeSC 6MD8nVK4Wq/79gOQeNnrV+0+afud2S3NqXQIPhVF06MMOg23Zx07JroO4QIDAQAB o4ICnzCCApswHQYDVR0OBBYEFOzEX8rcTJM6yP9OC0NKW/tWe2WhMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNjLzhhNDI4 NS0xNTdlLTRjNzYtYmVkNC1lMDc2ZjhjY2I4YjkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2MvOGE0Mjg1 LTE1N2UtNGM3Ni1iZWQ0LWUwNzZmOGNjYjhiOS8xLzdNUmZ5dHhNa3pySV8wNExR MHBiLTFaN1phRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwiooMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC Aj4eMA0GCSqGSIb3DQEBCwUAA4IBAQCYCRqKVDRvibjYQ2T2xhSkd5tmWZwTkiE5 ySPnWvxU1h2p70rNcG+Mu155qHWUi27sbf5yaf8Ccwa7QDL/9IUOsv5vAeJ/yh4E UErc474fL7yj2BMo6Qq77gmAC7FXn0w720LWXJJfc/7CSKw/2+dY+qkj5pZmuLVE Xu8vqBHaduATkYdoMsdRsKVo4mQ1NRz3va/mOY7fFydJA/L29MmAwydIm6IS8Ej4 n3KJOWQ0MhH/mpMw5YD81ym5grfOKUbdeyu1+z3KZQVYAIMU/HZcc9kjsG5w3UP/ d4aUh3E2qiVrIrFO5eFyAcIUrht4b0vHFjR7RzV+z9GWeKMQnFPM -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:04 2026 by rpki-client