This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9X3FmWyBeMDeLqIEme696t5AI-s.cer File: 9X3FmWyBeMDeLqIEme696t5AI-s.cer (raw, json) Hash identifier: BgAdaQ8GaIHaq6CNvcpGl2e88lGZa3c8pw1rj/w0vjQ= Subject key identifier: F5:7D:C5:99:6C:81:78:C0:DE:2E:A2:04:99:EE:BD:EA:DE:40:23:EB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ECC311623595D02C83DAEF35E7F297 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/9X3FmWyBeMDeLqIEme696t5AI-s.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:38 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 59755 IP: 185.71.8.0/22 IP: 2a03:37a0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c3:11:62:35:95:d0:2c:83:da:ef:35:e7:f2:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f57dc5996c8178c0de2ea20499eebdeade4023eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:aa:7d:96:a2:78:38:0b:ec:29:35:fd:e8:5f: bd:bb:7e:ce:4c:fc:9a:5d:da:fd:26:3a:04:e9:1e: 02:41:97:48:c8:a4:c7:c1:3b:88:44:ce:73:9c:79: ee:de:a4:0e:ce:bd:1b:b1:df:f1:b6:9d:48:fd:c3: a4:3a:e2:63:93:33:1a:b6:89:72:38:50:32:11:51: e2:b8:f5:08:23:3b:3e:ba:6f:3b:22:9d:11:a3:fa: 98:cf:67:75:79:0f:20:70:23:d0:a0:71:08:58:18: 8d:f4:e8:6c:17:a9:6b:f8:f3:64:be:3e:dd:0d:1f: bc:0e:b5:ae:7f:a7:a6:dd:e8:8a:12:da:40:98:87: 56:d0:86:32:5f:04:de:b9:b3:48:31:2d:e0:33:90: 23:f9:55:27:11:e3:a5:77:b3:a9:a5:a8:ae:97:af: fa:9d:c2:d0:ef:02:cc:47:5c:08:43:af:9d:4b:bb: 36:af:5c:74:77:f4:a0:7d:54:4c:79:77:c0:b8:f0: 52:15:89:d7:fc:0b:46:0d:14:b0:20:b1:fa:f7:ff: 95:f5:00:80:85:81:a1:f6:4b:1a:51:76:de:61:12: fa:b9:37:df:8c:5e:76:a0:19:88:9c:6c:29:fe:49: 3d:b5:7c:b9:5d:41:53:65:2c:4d:13:c3:fb:2e:db: a9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7D:C5:99:6C:81:78:C0:DE:2E:A2:04:99:EE:BD:EA:DE:40:23:EB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/9X3FmWyBeMDeLqIEme696t5AI-s.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.71.8.0/22 IPv6: 2a03:37a0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 59755 Signature Algorithm: sha256WithRSAEncryption a7:ca:26:9d:97:41:28:08:4a:cb:aa:2d:b9:ab:3a:32:b6:8c: e3:18:0a:6a:5f:68:5a:46:6e:73:b0:bc:5f:64:4e:76:ef:32: 8f:11:4f:30:e0:6b:41:17:a7:aa:52:6c:89:b1:ad:36:6c:21: 2c:af:5f:be:0e:4b:47:b7:11:e1:83:a4:af:7d:75:41:41:be: 43:30:03:c2:99:1d:e2:5a:86:85:93:77:6f:d2:f2:ac:cd:53: 33:08:25:a4:2c:77:ab:2e:39:56:b7:0e:d2:c1:f6:7d:b9:c6: 20:01:d9:f4:78:72:10:5a:40:c9:98:65:13:21:2a:4c:b3:80: 9f:aa:36:84:d0:e3:3c:97:5a:2b:66:5f:a9:72:97:70:28:2f: 4e:ad:bd:81:00:5f:22:33:41:18:22:fb:3f:2d:a9:b9:c6:ed: 6b:f1:3f:e9:07:cd:96:3a:7d:4e:6c:97:c3:09:fb:d9:d7:ce: 5b:92:56:8a:35:c5:11:2b:80:98:be:84:a6:32:b6:1c:aa:0f: 5c:05:b6:66:b8:f9:b1:4c:d4:b1:e9:81:d3:17:74:24:ba:8f: fb:51:73:11:c2:e3:9e:f1:cf:4d:aa:66:cf:0b:c6:7a:fe:e8: dd:d0:1e:2a:ff:77:cb:b4:34:82:74:4a:95:8d:cd:13:fe:34: 9e:15:aa:a8 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt57MMRYjWV0CyD2u815/KXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNTdkYzU5OTZjODE3OGMwZGUyZWEyMDQ5OWVlYmRlYWRlNDAyM2ViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoap9lqJ4OAvsKTX96F+9u37OTPya Xdr9JjoE6R4CQZdIyKTHwTuIRM5znHnu3qQOzr0bsd/xtp1I/cOkOuJjkzMatoly OFAyEVHiuPUIIzs+um87Ip0Ro/qYz2d1eQ8gcCPQoHEIWBiN9OhsF6lr+PNkvj7d DR+8DrWuf6em3eiKEtpAmIdW0IYyXwTeubNIMS3gM5Aj+VUnEeOld7Oppaiul6/6 ncLQ7wLMR1wIQ6+dS7s2r1x0d/SgfVRMeXfAuPBSFYnX/AtGDRSwILH69/+V9QCA hYGh9ksaUXbeYRL6uTffjF52oBmInGwp/kk9tXy5XUFTZSxNE8P7LtupTQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFPV9xZlsgXjA3i6iBJnuvereQCPrMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgzLzY3ZTNh Yy1jMzMyLTRkMTMtODNlZi1jN2IxMGQ1MDVjZmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMvNjdlM2Fj LWMzMzItNGQxMy04M2VmLWM3YjEwZDUwNWNmZS8xLzlYM0ZtV3lCZU1EZUxxSUVt ZTY5NnQ1QUktcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuUcIMA0EAgACMAcDBQAqAzegMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDpazANBgkqhkiG9w0BAQsFAAOCAQEAp8omnZdBKAhK y6otuas6MraM4xgKal9oWkZuc7C8X2ROdu8yjxFPMOBrQRenqlJsibGtNmwhLK9f vg5LR7cR4YOkr311QUG+QzADwpkd4lqGhZN3b9LyrM1TMwglpCx3qy45VrcO0sH2 fbnGIAHZ9HhyEFpAyZhlEyEqTLOAn6o2hNDjPJdaK2ZfqXKXcCgvTq29gQBfIjNB GCL7Py2pucbta/E/6QfNljp9TmyXwwn72dfOW5JWijXFESuAmL6EpjK2HKoPXAW2 Zrj5sUzUsemB0xd0JLqP+1FzEcLjnvHPTapmzwvGev7o3dAeKv93y7Q0gnRKlY3N E/40nhWqqA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:20 2026 by rpki-client