This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f9GumzY4vNa_bW1-fhlAvg0w0o.cer File: 9f9GumzY4vNa_bW1-fhlAvg0w0o.cer (raw, json) Hash identifier: h7R7G17hKSDUArZOZ5p4kEvB0Tx+JXJqVD0jllXfOUQ= Subject key identifier: F5:FF:46:BA:6C:D8:E2:F3:5A:FD:B5:B5:F9:F8:65:02:F8:34:C3:4A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA4E891AF056FBDFE6438D40A03DB91 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c2/1fde04-587b-4085-b585-6ad20a2eacb8/1/9f9GumzY4vNa_bW1-fhlAvg0w0o.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c2/1fde04-587b-4085-b585-6ad20a2eacb8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:18:15 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 15915 IP: 185.140.64.0/22 IP: 213.194.128.0/18 IP: 213.195.64.0/18 IP: 2a01:1a0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:e8:91:af:05:6f:bd:fe:64:38:d4:0a:03:db:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f5ff46ba6cd8e2f35afdb5b5f9f86502f834c34a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:41:5d:58:20:62:3b:4b:01:19:5d:37:06:fc: e5:57:f0:53:35:6a:eb:62:d9:d6:49:20:32:33:3e: 6b:fd:4c:40:25:fc:ee:f2:a3:72:36:6f:fc:db:9f: b4:77:3b:8f:f7:9b:df:58:90:35:4e:aa:d7:29:4a: 48:bb:25:97:33:5e:8a:78:e0:00:50:5d:39:40:ca: a9:43:88:35:21:1a:78:be:db:5b:ba:e0:f2:74:1e: 97:65:31:61:42:e8:74:5f:f5:e8:36:38:14:40:0d: 1f:d8:3e:5d:2f:87:17:cd:05:5f:13:08:cf:36:53: 0e:d1:4b:10:67:d5:9a:0c:e5:52:0c:28:47:dc:7e: be:d5:41:13:44:38:ae:b1:2f:f6:6c:ff:45:75:de: 38:35:ea:3d:75:07:a6:4a:ab:d2:03:d3:37:03:8c: be:f6:9c:67:2d:e4:b8:b0:19:ba:24:4e:4b:18:d5: 41:1a:47:6e:34:e5:40:3e:f5:6c:b2:97:62:5f:83: 81:d7:5e:7a:db:d1:ac:eb:8c:22:0c:ea:94:b4:ea: 6a:a0:43:05:4f:c5:d1:7f:ff:fd:41:f6:cd:f4:56: 04:11:bd:28:63:66:94:b1:b7:57:1c:43:ba:83:a6: 66:44:6e:73:dc:df:a1:26:b9:a9:4a:93:6d:c5:b1: c9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:FF:46:BA:6C:D8:E2:F3:5A:FD:B5:B5:F9:F8:65:02:F8:34:C3:4A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1fde04-587b-4085-b585-6ad20a2eacb8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1fde04-587b-4085-b585-6ad20a2eacb8/1/9f9GumzY4vNa_bW1-fhlAvg0w0o.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.140.64.0/22 213.194.128.0/18 213.195.64.0/18 IPv6: 2a01:1a0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 15915 Signature Algorithm: sha256WithRSAEncryption 76:ff:1d:1c:0a:4d:a5:cf:f1:89:79:c0:ee:f3:cb:09:0c:b8: 84:dc:aa:0b:c1:f6:fa:54:cd:01:6f:d1:8f:e9:4f:ef:71:f4: 37:80:3a:93:8c:2c:a7:a5:51:e9:d0:5c:0e:f8:01:f2:17:be: 03:55:d8:7d:85:da:80:ed:d1:ed:f4:b9:90:bb:f3:de:6b:20: ac:45:9a:30:12:96:9b:71:13:98:07:96:76:6b:62:14:f1:28: 64:5f:1d:e5:26:a5:bb:92:45:94:fa:20:0b:a7:d7:fc:f9:27: b6:9a:36:de:e4:a8:5e:83:61:e9:59:14:c2:3b:33:07:ee:5f: 25:e7:75:47:8c:f8:fb:5b:ef:5f:fd:0a:96:7b:2b:86:28:76: e2:e3:2e:66:b0:7a:48:71:11:99:42:d7:31:0c:c2:d4:5a:fc: 16:ad:25:7b:25:dc:e9:43:29:f0:e1:c0:1e:01:13:dd:8d:37: c4:65:73:86:29:c0:be:b8:a7:48:4c:89:e6:10:15:c8:d8:5b: e8:ae:dc:0e:38:97:ee:74:22:97:dd:e9:d1:af:d7:96:c1:22: 39:96:d0:a8:d2:34:0d:cb:a0:1a:ad:b1:87:f6:f7:0e:56:93: 10:29:9d:d7:28:a8:37:14:55:ed:e9:ad:54:e1:cd:31:9b:84: 79:21:dc:73 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt+pOiRrwVvvf5kONQKA9uRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNWZmNDZiYTZjZDhlMmYzNWFmZGI1YjVmOWY4NjUwMmY4MzRjMzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkFdWCBiO0sBGV03BvzlV/BTNWrr YtnWSSAyMz5r/UxAJfzu8qNyNm/825+0dzuP95vfWJA1TqrXKUpIuyWXM16KeOAA UF05QMqpQ4g1IRp4vttbuuDydB6XZTFhQuh0X/XoNjgUQA0f2D5dL4cXzQVfEwjP NlMO0UsQZ9WaDOVSDChH3H6+1UETRDiusS/2bP9Fdd44Neo9dQemSqvSA9M3A4y+ 9pxnLeS4sBm6JE5LGNVBGkduNOVAPvVsspdiX4OB115629Gs64wiDOqUtOpqoEMF T8XRf//9QfbN9FYEEb0oY2aUsbdXHEO6g6ZmRG5z3N+hJrmpSpNtxbHJJQIDAQAB o4ICujCCArYwHQYDVR0OBBYEFPX/Rrps2OLzWv21tfn4ZQL4NMNKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2MyLzFmZGUw NC01ODdiLTQwODUtYjU4NS02YWQyMGEyZWFjYjgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIvMWZkZTA0 LTU4N2ItNDA4NS1iNTg1LTZhZDIwYTJlYWNiOC8xLzlmOUd1bXpZNHZOYV9iVzEt ZmhsQXZnMHcwby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQCuYxAAwQG1cKAAwQG1cNAMA0EAgACMAcDBQMq AQGgMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAj4rMA0GCSqGSIb3DQEBCwUAA4IB AQB2/x0cCk2lz/GJecDu88sJDLiE3KoLwfb6VM0Bb9GP6U/vcfQ3gDqTjCynpVHp 0FwO+AHyF74DVdh9hdqA7dHt9LmQu/PeayCsRZowEpabcROYB5Z2a2IU8ShkXx3l JqW7kkWU+iALp9f8+Se2mjbe5Kheg2HpWRTCOzMH7l8l53VHjPj7W+9f/QqWeyuG KHbi4y5msHpIcRGZQtcxDMLUWvwWrSV7JdzpQynw4cAeARPdjTfEZXOGKcC+uKdI TInmEBXI2FvortwOOJfudCKX3enRr9eWwSI5ltCo0jQNy6AarbGH9vcOVpMQKZ3X KKg3FFXt6a1U4c0xm4R5Idxz -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:35 2026 by rpki-client