This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7_yKbzxEuO3Rd_5RpZmRWLjc-Bk.cer File: 7_yKbzxEuO3Rd_5RpZmRWLjc-Bk.cer (raw, json) Hash identifier: f2PLwIQZA7jzuvUUNNjj7IGq2AVcUo58eUTFdUTSP/c= Subject key identifier: EF:FC:8A:6F:3C:44:B8:ED:D1:77:FE:51:A5:99:91:58:B8:DC:F8:19 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7835183EE23AE49909CD8C6D22ED11E2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/ad26ba-0314-4ff9-a39d-6dd9387141a8/1/7_yKbzxEuO3Rd_5RpZmRWLjc-Bk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/ad26ba-0314-4ff9-a39d-6dd9387141a8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:24 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43864 IP: 91.200.112.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:18:3e:e2:3a:e4:99:09:cd:8c:6d:22:ed:11:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=effc8a6f3c44b8edd177fe51a5999158b8dcf819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:22:ff:62:4d:85:bc:4a:32:d2:03:c7:77:51: 92:be:f1:a3:40:a9:e7:38:6f:b9:8b:8a:7e:ec:b3: 5b:10:6e:a7:db:26:82:8c:73:43:e3:ea:0e:ca:a0: 5e:52:0b:a2:f5:e3:65:14:cc:3f:cf:80:83:40:7d: 58:0d:43:d5:d6:c3:da:53:c2:d8:f7:b8:cf:4b:83: 67:5f:c9:bb:bb:9f:ce:ef:8f:3b:54:d3:3b:0a:30: b7:c0:0a:aa:a9:97:c2:d9:74:47:fe:23:18:d1:d2: 52:c4:9d:bd:2d:a9:d5:39:dc:8b:be:49:81:d3:6a: 3d:0e:ba:c0:fc:54:ac:45:81:e5:88:80:6d:c9:58: 70:d3:10:1e:de:97:21:6a:25:3b:14:29:66:f3:85: d5:66:a9:36:e3:63:49:23:35:ae:cb:26:65:55:12: 22:c0:9e:f9:d9:c5:68:5a:ef:86:0c:ac:34:f7:5f: fe:dd:9b:fd:7c:1c:17:dd:e5:d3:4c:b6:d6:e6:aa: 9e:32:2d:b3:ba:13:a4:d3:79:aa:50:37:49:77:b2: e5:21:45:6e:a6:8c:d6:98:fa:e8:57:d8:27:22:9d: 9c:5b:cd:8d:21:d3:66:50:cf:df:79:fe:97:a9:13: 11:3f:47:dc:0f:33:51:20:06:bb:ad:4b:da:c2:d4: b3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:FC:8A:6F:3C:44:B8:ED:D1:77:FE:51:A5:99:91:58:B8:DC:F8:19 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ad26ba-0314-4ff9-a39d-6dd9387141a8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ad26ba-0314-4ff9-a39d-6dd9387141a8/1/7_yKbzxEuO3Rd_5RpZmRWLjc-Bk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.200.112.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43864 Signature Algorithm: sha256WithRSAEncryption 82:e7:c5:65:db:bd:60:dd:81:fb:df:0d:59:75:ef:ba:92:38: a3:b7:e7:b1:2a:96:69:16:76:dd:eb:0a:c9:29:99:37:9d:70: 31:7b:a3:a3:55:2d:27:56:5d:9c:23:3c:68:2d:ba:91:a7:a5: d4:b3:f7:43:8f:89:8c:57:a8:51:0d:ac:ea:f6:b6:fe:f8:ba: e3:2f:42:26:84:55:bb:30:b1:71:cf:94:fa:ff:db:df:8d:e5: 82:34:ed:14:3f:8a:e2:91:c7:b9:3a:b7:48:1f:96:4c:fb:75: ff:3f:39:80:b6:a1:0a:68:46:08:7e:27:21:65:f0:14:5a:98: df:39:5f:99:d6:c7:50:7b:03:ee:74:6e:e7:42:31:a5:11:bb: bc:4c:7e:f6:95:55:25:6a:b0:83:ff:c7:cc:f5:dd:5a:1f:df: 8a:31:44:0f:ec:b0:90:1e:b6:f7:f0:c9:93:2f:6a:5a:7a:ba: 19:db:63:c1:d8:85:14:65:26:47:bd:7a:88:30:a9:88:81:cb: e4:91:10:81:55:70:9a:47:aa:b7:e3:2b:1b:bd:d5:a6:43:b4: 79:1f:7e:b7:b2:83:9c:1c:cb:9c:95:86:c2:e4:93:aa:29:4c: b4:40:c4:b9:96:95:8d:6c:de:3e:85:02:ea:91:7f:ba:4e:6a: 4e:6f:7c:b5 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4NRg+4jrkmQnNjG0i7RHiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZmZjOGE2ZjNjNDRiOGVkZDE3N2ZlNTFhNTk5OTE1OGI4ZGNmODE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnSL/Yk2FvEoy0gPHd1GSvvGjQKnn OG+5i4p+7LNbEG6n2yaCjHND4+oOyqBeUgui9eNlFMw/z4CDQH1YDUPV1sPaU8LY 97jPS4NnX8m7u5/O7487VNM7CjC3wAqqqZfC2XRH/iMY0dJSxJ29LanVOdyLvkmB 02o9DrrA/FSsRYHliIBtyVhw0xAe3pchaiU7FClm84XVZqk242NJIzWuyyZlVRIi wJ752cVoWu+GDKw091/+3Zv9fBwX3eXTTLbW5qqeMi2zuhOk03mqUDdJd7LlIUVu pozWmProV9gnIp2cW82NIdNmUM/fef6XqRMRP0fcDzNRIAa7rUvawtSzTwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFO/8im88RLjt0Xf+UaWZkVi43PgZMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI2L2FkMjZi YS0wMzE0LTRmZjktYTM5ZC02ZGQ5Mzg3MTQxYTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYvYWQyNmJh LTAzMTQtNGZmOS1hMzlkLTZkZDkzODcxNDFhOC8xLzdfeUtienhFdU8zUmRfNVJw Wm1SV0xqYy1Cay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCW8hwMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCrWDANBgkqhkiG9w0BAQsFAAOCAQEAgufFZdu9YN2B+98NWXXvupI4o7fnsSqW aRZ23esKySmZN51wMXujo1UtJ1ZdnCM8aC26kael1LP3Q4+JjFeoUQ2s6va2/vi6 4y9CJoRVuzCxcc+U+v/b343lgjTtFD+K4pHHuTq3SB+WTPt1/z85gLahCmhGCH4n IWXwFFqY3zlfmdbHUHsD7nRu50IxpRG7vEx+9pVVJWqwg//HzPXdWh/fijFED+yw kB629/DJky9qWnq6GdtjwdiFFGUmR716iDCpiIHL5JEQgVVwmkeqt+MrG73VpkO0 eR9+t7KDnBzLnJWGwuSTqilMtEDEuZaVjWzePoUC6pF/uk5qTm98tQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:23 2026 by rpki-client