This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7P5KCWd7ALvDM_cWeOqoCnG2Kkg.cer File: 7P5KCWd7ALvDM_cWeOqoCnG2Kkg.cer (raw, json) Hash identifier: kFLh9OcWg5b7vW5nWkZfoRtMbmFYN9eczc7K7B6zyX4= Subject key identifier: EC:FE:4A:09:67:7B:00:BB:C3:33:F7:16:78:EA:A8:0A:71:B6:2A:48 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA525A6507246987C58C127227EF562 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ca/a4a4a8-2a93-48ad-b891-ed9302feddcb/1/7P5KCWd7ALvDM_cWeOqoCnG2Kkg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ca/a4a4a8-2a93-48ad-b891-ed9302feddcb/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41745 IP: 2001:67c:263c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:25:a6:50:72:46:98:7c:58:c1:27:22:7e:f5:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ecfe4a09677b00bbc333f71678eaa80a71b62a48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e8:e9:5f:e0:2d:b2:d2:8a:c7:9d:4e:81:0c: 69:1f:89:1b:8d:c7:88:74:23:be:cd:9b:31:3c:ea: 21:28:c2:75:44:7c:8c:84:02:12:53:cc:85:30:2e: cf:16:fd:64:01:70:ee:13:33:5b:11:80:b0:db:00: 1b:cd:fd:26:cd:17:5f:5e:bb:20:e4:4a:be:a1:b3: 73:11:b9:e2:d0:f4:3e:33:05:5d:29:40:a6:20:26: 49:6b:74:b8:90:04:e4:e4:60:b4:50:81:84:72:3e: b8:b7:6c:6f:04:9c:e4:e6:bf:68:7b:c2:ed:2d:a1: 36:19:62:96:76:db:27:7d:aa:c1:6d:78:b6:9d:3b: 12:7a:70:6f:a6:7f:06:aa:93:25:98:dd:b4:d3:8a: 90:e2:6b:3a:79:41:63:ba:41:ba:5b:b0:e4:72:98: 82:a4:60:ff:2c:09:89:83:f5:09:88:78:4f:02:e0: 85:6d:c0:df:67:bd:89:9e:15:4a:74:44:a3:3c:00: d5:bf:ca:1e:91:67:96:51:ad:da:c1:fa:91:2e:1c: d9:99:fa:c0:c5:84:e6:0f:ce:0a:18:e1:83:06:9f: cb:f4:df:56:6b:06:bb:fc:a5:a0:4d:03:37:9c:26: f4:6b:0f:e9:98:3b:5f:6b:3a:fc:fd:54:9a:ef:4a: e4:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:FE:4A:09:67:7B:00:BB:C3:33:F7:16:78:EA:A8:0A:71:B6:2A:48 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a4a4a8-2a93-48ad-b891-ed9302feddcb/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a4a4a8-2a93-48ad-b891-ed9302feddcb/1/7P5KCWd7ALvDM_cWeOqoCnG2Kkg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:263c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41745 Signature Algorithm: sha256WithRSAEncryption 92:69:3f:bc:25:41:d2:93:ec:7d:42:a9:cc:61:d1:60:f0:f4: 1c:9b:22:4f:fc:af:19:33:a4:e0:4b:c1:a2:b8:68:94:48:80: 7d:8b:dc:2e:0e:02:0b:4c:da:c3:f0:cf:7b:03:c9:f7:2a:ef: 5d:fb:09:c8:40:d9:e7:c1:5e:70:ad:d9:44:a3:1c:6e:3d:1b: 9b:76:05:fb:3c:57:08:b8:70:b7:01:ab:5d:80:fc:cd:c6:be: 0f:35:cc:9f:c2:76:dc:a3:52:b6:56:aa:24:d4:72:6e:57:0d: f8:b4:9b:2b:0a:84:d5:0a:6d:9a:b8:5a:bc:9d:0c:6f:b2:6c: 10:4f:70:20:4a:f2:82:68:04:6c:3b:a2:c0:8d:ee:58:3e:ec: 24:b6:00:87:22:e3:58:f1:ea:c8:15:e6:a9:3f:0e:41:6b:e8: f6:b8:41:09:4d:3a:db:8b:6c:c6:7a:41:24:5b:9f:4b:c0:7a: fc:67:a2:0d:0e:76:b8:b1:bf:57:4d:99:eb:9c:f0:6b:56:48: c0:6c:f0:31:c5:56:a0:fa:f7:40:6a:69:94:ca:c0:68:9b:96: fd:a8:95:ee:dc:17:4c:87:83:42:19:75:3b:91:8d:bb:15:54: bb:dd:a8:3b:81:ba:ec:5a:b7:8d:19:a0:2b:e9:92:ac:a6:dc: 0c:00:56:b3 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt7pSWmUHJGmHxYwScifvViMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlY2ZlNGEwOTY3N2IwMGJiYzMzM2Y3MTY3OGVhYTgwYTcxYjYyYTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOjpX+AtstKKx51OgQxpH4kbjceI dCO+zZsxPOohKMJ1RHyMhAISU8yFMC7PFv1kAXDuEzNbEYCw2wAbzf0mzRdfXrsg 5Eq+obNzEbni0PQ+MwVdKUCmICZJa3S4kATk5GC0UIGEcj64t2xvBJzk5r9oe8Lt LaE2GWKWdtsnfarBbXi2nTsSenBvpn8GqpMlmN2004qQ4ms6eUFjukG6W7DkcpiC pGD/LAmJg/UJiHhPAuCFbcDfZ72JnhVKdESjPADVv8oekWeWUa3awfqRLhzZmfrA xYTmD84KGOGDBp/L9N9Wawa7/KWgTQM3nCb0aw/pmDtfazr8/VSa70rkQwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFOz+SglnewC7wzP3FnjqqApxtipIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NhL2E0YTRh OC0yYTkzLTQ4YWQtYjg5MS1lZDkzMDJmZWRkY2IvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2EvYTRhNGE4 LTJhOTMtNDhhZC1iODkxLWVkOTMwMmZlZGRjYi8xLzdQNUtDV2Q3QUx2RE1fY1dl T3FvQ25HMktrZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCY8MBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwCjETANBgkqhkiG9w0BAQsFAAOCAQEAkmk/vCVB0pPsfUKpzGHRYPD0HJsi T/yvGTOk4EvBorholEiAfYvcLg4CC0zaw/DPewPJ9yrvXfsJyEDZ58FecK3ZRKMc bj0bm3YF+zxXCLhwtwGrXYD8zca+DzXMn8J23KNStlaqJNRyblcN+LSbKwqE1Qpt mrhavJ0Mb7JsEE9wIErygmgEbDuiwI3uWD7sJLYAhyLjWPHqyBXmqT8OQWvo9rhB CU0624tsxnpBJFufS8B6/GeiDQ52uLG/V02Z65zwa1ZIwGzwMcVWoPr3QGpplMrA aJuW/aiV7twXTIeDQhl1O5GNuxVUu92oO4G67Fq3jRmgK+mSrKbcDABWsw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:44 2026 by rpki-client