This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8r7tTfIHw2Ca397YDd3ZMW8Km0U.cer File: 8r7tTfIHw2Ca397YDd3ZMW8Km0U.cer (raw, json) Hash identifier: yKs9FyV04uhshCWzclAF88W1mHXQOnE5S3SKeWFxJao= Subject key identifier: F2:BE:ED:4D:F2:07:C3:60:9A:DF:DE:D8:0D:DD:D9:31:6F:0A:9B:45 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E382E094E1A4104A98DEE11D1656D82 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e7/c6bcba-a996-4bb5-ba4a-a46153145cf8/1/8r7tTfIHw2Ca397YDd3ZMW8Km0U.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e7/c6bcba-a996-4bb5-ba4a-a46153145cf8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202619 IP: 94.158.32.0/20 IP: 176.109.176.0/20 IP: 176.109.224.0/19 IP: 185.33.140.0/22 IP: 193.192.36.0/23 IP: 194.246.92.0/22 IP: 2a03:a9c0::/29 IP: 2a0d:ec0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:2e:09:4e:1a:41:04:a9:8d:ee:11:d1:65:6d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f2beed4df207c3609adfded80dddd9316f0a9b45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e4:c1:47:6d:ee:7d:38:e3:97:bf:98:55:a7: 7c:df:16:56:0b:f5:ad:43:5f:6c:25:49:fa:4a:1c: e7:e8:94:bc:c1:8e:d1:1a:c5:92:d4:b7:5a:cf:34: de:f5:98:a8:d4:a8:68:a4:92:d9:c8:1a:6b:f0:33: c2:48:a5:ab:c5:18:4d:8d:18:95:c8:9c:f5:fe:9c: 03:f8:ad:61:9c:cb:3e:bf:02:f8:d1:b3:3a:c8:28: 42:6a:48:ca:d3:b5:7d:86:27:88:65:08:58:18:d3: 6e:82:b9:c3:a2:d6:04:dd:ec:c5:5c:1e:dd:ae:4c: be:ed:3d:0a:88:5b:aa:a5:e2:5a:cf:10:c2:c9:4a: b6:08:56:2a:5b:30:c3:8a:21:b0:53:c3:e5:84:e5: ee:b3:e3:3e:c7:bf:ca:f3:1f:12:50:80:bd:fa:2e: 69:1c:aa:f0:8d:b8:87:f7:93:d2:f1:19:7d:a3:0c: 21:7c:28:bd:c2:49:ac:99:39:1a:87:18:fd:10:b8: 8e:76:5e:c1:21:a1:a2:cf:c3:78:9d:a7:83:09:45: 17:96:2e:3c:8b:ce:1d:78:27:62:51:7a:31:11:25: 6a:6f:aa:2e:1b:84:df:b6:ed:fa:c7:d7:32:be:46: 03:81:0f:f9:97:aa:81:a7:d6:fc:8b:b9:49:cc:48: 77:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BE:ED:4D:F2:07:C3:60:9A:DF:DE:D8:0D:DD:D9:31:6F:0A:9B:45 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c6bcba-a996-4bb5-ba4a-a46153145cf8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c6bcba-a996-4bb5-ba4a-a46153145cf8/1/8r7tTfIHw2Ca397YDd3ZMW8Km0U.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.158.32.0/20 176.109.176.0/20 176.109.224.0/19 185.33.140.0/22 193.192.36.0/23 194.246.92.0/22 IPv6: 2a03:a9c0::/29 2a0d:ec0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202619 Signature Algorithm: sha256WithRSAEncryption 1c:df:01:13:cd:6e:c4:38:df:3c:e6:d9:6d:fb:4f:fa:3a:20: 55:18:52:7d:5f:73:49:bc:aa:a8:bc:7a:17:59:af:b8:9c:41: d5:85:50:74:55:2b:a9:78:d0:d0:95:c5:c7:2e:32:ed:b3:b2: 3f:68:8d:84:21:d7:98:18:3f:ad:e0:95:70:f5:04:02:63:ca: 5b:55:40:cf:9c:54:f1:19:45:bf:28:1a:9c:a3:53:18:f6:1c: fe:b7:36:a3:4c:1f:6f:f1:1b:d5:7b:68:9a:77:a1:d6:3b:cb: cb:d7:0e:de:93:7a:a6:07:6e:1e:83:c3:5a:81:53:ee:03:4f: 02:9a:dd:28:ef:5a:ad:27:c9:0c:26:38:07:c4:01:17:1e:54: 5a:55:ed:2f:48:f4:81:4b:2b:2f:ec:f5:f1:f1:5d:ae:19:cf: 6b:4a:a8:39:14:3b:20:d9:6c:68:98:8d:6b:ac:b4:6b:34:b7: d4:4e:78:b0:bc:47:2f:17:84:6a:88:90:bb:47:17:0b:f9:8e: 9a:6b:78:ee:c9:30:df:74:88:2e:3e:ad:5a:8d:44:de:47:c0: 77:c9:43:cb:ee:4b:a0:7e:b7:bd:fd:4c:b1:a3:4c:04:82:45: 3a:b8:db:5e:e9:7d:ef:95:1c:a0:e3:3e:75:47:e1:be:39:a3: 6c:5c:1b:9d -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgISAZt+OC4JThpBBKmN7hHRZW2CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMmJlZWQ0ZGYyMDdjMzYwOWFkZmRlZDgwZGRkZDkzMTZmMGE5YjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+TBR23ufTjjl7+YVad83xZWC/Wt Q19sJUn6Shzn6JS8wY7RGsWS1LdazzTe9Zio1KhopJLZyBpr8DPCSKWrxRhNjRiV yJz1/pwD+K1hnMs+vwL40bM6yChCakjK07V9hieIZQhYGNNugrnDotYE3ezFXB7d rky+7T0KiFuqpeJazxDCyUq2CFYqWzDDiiGwU8PlhOXus+M+x7/K8x8SUIC9+i5p HKrwjbiH95PS8Rl9owwhfCi9wkmsmTkahxj9ELiOdl7BIaGiz8N4naeDCUUXli48 i84deCdiUXoxESVqb6ouG4Tftu36x9cyvkYDgQ/5l6qBp9b8i7lJzEh3ewIDAQAB o4IC1DCCAtAwHQYDVR0OBBYEFPK+7U3yB8Ngmt/e2A3d2TFvCptFMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U3L2M2YmNi YS1hOTk2LTRiYjUtYmE0YS1hNDYxNTMxNDVjZjgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcvYzZiY2Jh LWE5OTYtNGJiNS1iYTRhLWE0NjE1MzE0NWNmOC8xLzhyN3RUZklIdzJDYTM5N1lE ZDNaTVc4S20wVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFMGCCsGAQUF BwEHAQH/BEQwQjAqBAIAATAkAwQEXp4gAwQEsG2wAwQFsG3gAwQCuSGMAwQBwcAk AwQCwvZcMBQEAgACMA4DBQMqA6nAAwUDKg0OwDAaBggrBgEFBQcBCAEB/wQLMAmg BzAFAgMDF3swDQYJKoZIhvcNAQELBQADggEBABzfARPNbsQ43zzm2W37T/o6IFUY Un1fc0m8qqi8ehdZr7icQdWFUHRVK6l40NCVxccuMu2zsj9ojYQh15gYP63glXD1 BAJjyltVQM+cVPEZRb8oGpyjUxj2HP63NqNMH2/xG9V7aJp3odY7y8vXDt6TeqYH bh6Dw1qBU+4DTwKa3SjvWq0nyQwmOAfEARceVFpV7S9I9IFLKy/s9fHxXa4Zz2tK qDkUOyDZbGiYjWustGs0t9ROeLC8Ry8XhGqIkLtHFwv5jppreO7JMN90iC4+rVqN RN5HwHfJQ8vuS6B+t739TLGjTASCRTq4217pfe+VHKDjPnVH4b45o2xcG50= -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:08 2026 by rpki-client