This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96i3CqEAabVRWpyzwUm4hbehKDQ.cer File: 96i3CqEAabVRWpyzwUm4hbehKDQ.cer (raw, json) Hash identifier: kmoRXxEzxKTh+Jti0FHgSnpEuY2hJmnUp6Acf1C4ZIY= Subject key identifier: F7:A8:B7:0A:A1:00:69:B5:51:5A:9C:B3:C1:49:B8:85:B7:A1:28:34 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5AC9D2AD435876F7EB73DF06748A3C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/48aeaf-9545-4d4b-9cda-9d0743370495/1/96i3CqEAabVRWpyzwUm4hbehKDQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/48aeaf-9545-4d4b-9cda-9d0743370495/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 50807 IP: 78.40.16.0/21 IP: 91.193.104.0/23 IP: 195.149.121.0/24 IP: 2a07:4240::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:c9:d2:ad:43:58:76:f7:eb:73:df:06:74:8a:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f7a8b70aa10069b5515a9cb3c149b885b7a12834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ea:16:3a:f0:9d:1e:de:6b:00:f8:d5:67:33: 52:e1:62:21:07:1a:19:80:95:e4:f7:34:a5:c9:06: 71:fc:8b:45:db:bc:17:2e:9c:20:4a:2a:68:e6:9e: cb:7d:9e:2d:af:59:45:b7:2c:30:71:25:4a:6e:4d: b8:85:d4:9e:05:09:d3:d8:87:b6:c5:f4:5e:a4:af: a3:9d:0a:e6:7d:dd:b4:d3:da:61:63:f1:d1:26:6d: a3:cc:a8:e8:6c:65:66:d2:6d:87:ed:fa:22:7d:48: d1:85:57:1e:ef:56:60:c8:8f:12:53:5c:5e:1b:d4: 5d:7c:db:59:f8:19:c4:24:c9:69:49:6d:24:02:f0: ce:5c:d6:83:08:ce:38:1c:df:65:f8:7b:65:e4:c6: 45:22:4d:15:27:3c:54:e0:e7:a6:a8:88:17:57:28: 45:dc:44:8d:30:b7:93:5c:77:52:2c:e6:2d:63:71: cc:d7:0b:e3:52:06:c6:59:44:a5:82:ba:10:1d:56: 0b:5a:70:97:f3:4d:1a:9f:ec:52:9b:59:e2:a0:0d: 6e:6d:34:7a:d9:ce:3f:28:c8:37:cc:d4:a2:76:20: 59:7c:a6:a8:04:1e:58:65:86:2f:1f:13:e7:ce:f0: 94:c5:87:fc:02:14:0f:fb:bc:8a:ef:f8:d0:67:84: 15:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A8:B7:0A:A1:00:69:B5:51:5A:9C:B3:C1:49:B8:85:B7:A1:28:34 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/48aeaf-9545-4d4b-9cda-9d0743370495/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/48aeaf-9545-4d4b-9cda-9d0743370495/1/96i3CqEAabVRWpyzwUm4hbehKDQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.40.16.0/21 91.193.104.0/23 195.149.121.0/24 IPv6: 2a07:4240::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 50807 Signature Algorithm: sha256WithRSAEncryption 00:95:f4:bb:84:d1:c9:7e:e9:c2:07:c3:fd:02:fe:e0:1c:70: 40:08:6a:25:a4:81:ec:93:8c:f4:47:f0:4a:4a:b7:30:1e:ac: c5:57:e7:4d:47:c2:13:c8:26:25:86:84:7e:05:0d:b4:2a:d5: 28:aa:41:da:4c:36:de:05:85:dd:db:05:be:14:0f:0b:4e:d7: 5e:b7:59:a6:42:fe:b2:99:5f:5b:b3:a3:4f:03:55:a6:6a:48: 40:70:29:41:04:b8:60:1c:0b:0e:a7:63:25:89:e9:51:f4:7e: b4:51:c9:36:c9:02:1d:4d:a2:d5:a1:e3:6c:e9:51:29:94:76: 3e:22:3f:c9:f3:fd:e0:b0:91:3d:c9:8d:ac:57:cf:36:96:b1: 68:e6:d6:c5:49:10:48:26:d9:d1:cb:ef:4e:aa:a3:ab:ae:cb: 36:3f:5f:ed:b9:e3:05:05:80:42:bc:43:3f:cc:2e:30:ff:7b: 3f:d2:a2:50:db:de:cc:b9:13:d3:e7:e6:d0:e5:9e:a2:02:c6: e4:f1:e6:3d:89:53:19:58:74:9a:45:ff:25:59:60:55:6c:94: e7:3b:81:eb:d1:4c:eb:46:d4:44:b1:32:f1:8e:6d:4a:06:09: 44:17:34:54:22:1e:0e:56:62:2d:ca:c5:9e:94:e4:2b:ac:3d: 81:04:55:8e -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZt6WsnSrUNYdvfrc98GdIo8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmN2E4YjcwYWExMDA2OWI1NTE1YTljYjNjMTQ5Yjg4NWI3YTEyODM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+oWOvCdHt5rAPjVZzNS4WIhBxoZ gJXk9zSlyQZx/ItF27wXLpwgSipo5p7LfZ4tr1lFtywwcSVKbk24hdSeBQnT2Ie2 xfRepK+jnQrmfd2009phY/HRJm2jzKjobGVm0m2H7foifUjRhVce71ZgyI8SU1xe G9RdfNtZ+BnEJMlpSW0kAvDOXNaDCM44HN9l+Htl5MZFIk0VJzxU4OemqIgXVyhF 3ESNMLeTXHdSLOYtY3HM1wvjUgbGWUSlgroQHVYLWnCX800an+xSm1nioA1ubTR6 2c4/KMg3zNSidiBZfKaoBB5YZYYvHxPnzvCUxYf8AhQP+7yK7/jQZ4QVGwIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFPeotwqhAGm1UVqcs8FJuIW3oSg0MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU1LzQ4YWVh Zi05NTQ1LTRkNGItOWNkYS05ZDA3NDMzNzA0OTUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUvNDhhZWFm LTk1NDUtNGQ0Yi05Y2RhLTlkMDc0MzM3MDQ5NS8xLzk2aTNDcUVBYWJWUldweXp3 VW00aGJlaEtEUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQDTigQAwQBW8FoAwQAw5V5MA0EAgACMAcDBQMq B0JAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDGdzANBgkqhkiG9w0BAQsFAAOC AQEAAJX0u4TRyX7pwgfD/QL+4BxwQAhqJaSB7JOM9EfwSkq3MB6sxVfnTUfCE8gm JYaEfgUNtCrVKKpB2kw23gWF3dsFvhQPC07XXrdZpkL+splfW7OjTwNVpmpIQHAp QQS4YBwLDqdjJYnpUfR+tFHJNskCHU2i1aHjbOlRKZR2PiI/yfP94LCRPcmNrFfP NpaxaObWxUkQSCbZ0cvvTqqjq67LNj9f7bnjBQWAQrxDP8wuMP97P9KiUNvezLkT 0+fm0OWeogLG5PHmPYlTGVh0mkX/JVlgVWyU5zuB69FM60bURLEy8Y5tSgYJRBc0 VCIeDlZiLcrFnpTkK6w9gQRVjg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:42 2026 by rpki-client