This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EFW6jUmi3R6Rw6rMvPFE8EWT8bM.cer File: EFW6jUmi3R6Rw6rMvPFE8EWT8bM.cer (raw, json) Hash identifier: 3Cd/b0D+JE33tcxRdf1pYENPav8BHI8eRJbfGDC80pM= Subject key identifier: 10:55:BA:8D:49:A2:DD:1E:91:C3:AA:CC:BC:F1:44:F0:45:93:F1:B3 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77587E6E12A71C5352026C208CA3A365 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c4/e1d8f8-dbdd-47a3-8c68-4edaf77a0e5d/1/EFW6jUmi3R6Rw6rMvPFE8EWT8bM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c4/e1d8f8-dbdd-47a3-8c68-4edaf77a0e5d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:17:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51114 IP: 178.250.80.0/21 IP: 2a03:b400::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:7e:6e:12:a7:1c:53:52:02:6c:20:8c:a3:a3:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1055ba8d49a2dd1e91c3aaccbcf144f04593f1b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:af:10:58:27:d5:e6:21:db:51:66:dc:e5:a4: 1c:0d:91:8b:7c:21:39:a9:80:d5:38:f5:6d:43:d4: 88:21:83:b6:7c:72:21:c2:5a:e7:2d:ed:cb:f8:e6: 67:64:b8:d4:ba:4d:6b:be:6f:4d:16:70:28:ac:d0: c9:76:09:4a:17:ec:35:da:5b:a0:16:1c:6b:2b:84: b7:f0:1c:8c:c3:c4:a0:16:d8:dd:92:be:0b:24:21: d5:5e:65:81:9f:78:d2:d8:be:c6:b3:df:d5:69:8d: 51:ba:4b:ed:33:0a:05:8f:d0:4b:83:34:5d:1b:c3: bb:be:81:85:77:07:d2:58:38:13:03:b1:1a:dc:66: 75:e3:b0:53:94:79:34:7e:0f:6c:f7:6d:30:c4:bc: 10:84:6e:d4:d7:34:67:56:21:9d:f6:b9:61:b4:33: 63:7c:66:5f:25:8a:0a:6c:51:63:68:a2:c8:48:89: c9:da:99:b3:bc:6b:3a:b9:8e:6d:14:88:3c:0f:bc: d9:d9:56:ea:37:a5:06:ef:46:01:81:5f:3e:93:3e: 11:18:e4:4d:aa:03:dd:4c:92:fd:c5:6f:b7:32:bb: 26:e1:30:e1:57:7a:c0:f7:a5:31:94:f9:51:36:bf: d5:04:1f:30:4f:5b:13:a1:21:28:7b:7d:2b:b9:a5: 6d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:55:BA:8D:49:A2:DD:1E:91:C3:AA:CC:BC:F1:44:F0:45:93:F1:B3 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e1d8f8-dbdd-47a3-8c68-4edaf77a0e5d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e1d8f8-dbdd-47a3-8c68-4edaf77a0e5d/1/EFW6jUmi3R6Rw6rMvPFE8EWT8bM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.250.80.0/21 IPv6: 2a03:b400::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51114 Signature Algorithm: sha256WithRSAEncryption af:b7:62:d9:c3:52:2c:09:a8:29:50:9a:c5:84:22:4d:98:af: 6a:f8:6d:8a:7a:70:85:e4:94:fe:ec:b6:4c:f4:18:9b:db:f2: 14:d3:5b:02:e4:9c:b1:62:b9:da:e6:94:7e:b1:31:96:f0:1f: a0:27:28:1c:ec:58:30:f5:f6:38:99:8a:40:ef:6e:69:6e:98: fc:2a:89:d3:97:5e:c4:12:91:c1:13:c5:e9:82:0f:73:5c:c9: d9:8b:7e:de:7d:8d:95:b1:1c:02:d3:64:b9:e2:87:68:3c:53: cd:96:15:d2:5d:cd:a2:0a:0b:31:da:af:7c:60:cf:97:28:d7: 53:30:db:1a:b5:57:03:28:84:95:a8:c7:d3:51:fa:0f:89:4a: 76:10:9c:7c:d9:a1:d8:69:da:1c:26:98:c5:0d:69:00:d9:df: f3:40:db:ba:d5:02:2c:79:3e:82:29:4f:45:63:c2:97:f9:b5: 46:9a:28:e7:50:6a:3b:da:33:41:92:46:52:b7:f9:7d:78:ef: c9:43:59:09:2c:e1:21:70:5c:b9:3f:42:5e:7a:25:ff:75:e2: a5:45:7e:3d:8b:98:dc:3b:8c:2d:04:da:25:48:c6:ce:3e:65: 46:a6:fa:a7:4a:cf:be:bf:2e:0f:7c:f6:59:e3:fa:1a:77:39: 44:d7:a0:1c -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3WH5uEqccU1ICbCCMo6NlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMDU1YmE4ZDQ5YTJkZDFlOTFjM2FhY2NiY2YxNDRmMDQ1OTNmMWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5K8QWCfV5iHbUWbc5aQcDZGLfCE5 qYDVOPVtQ9SIIYO2fHIhwlrnLe3L+OZnZLjUuk1rvm9NFnAorNDJdglKF+w12lug FhxrK4S38ByMw8SgFtjdkr4LJCHVXmWBn3jS2L7Gs9/VaY1RukvtMwoFj9BLgzRd G8O7voGFdwfSWDgTA7Ea3GZ147BTlHk0fg9s920wxLwQhG7U1zRnViGd9rlhtDNj fGZfJYoKbFFjaKLISInJ2pmzvGs6uY5tFIg8D7zZ2VbqN6UG70YBgV8+kz4RGORN qgPdTJL9xW+3Mrsm4TDhV3rA96UxlPlRNr/VBB8wT1sToSEoe30ruaVtaQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFBBVuo1Jot0ekcOqzLzxRPBFk/GzMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M0L2UxZDhm OC1kYmRkLTQ3YTMtOGM2OC00ZWRhZjc3YTBlNWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQvZTFkOGY4 LWRiZGQtNDdhMy04YzY4LTRlZGFmNzdhMGU1ZC8xL0VGVzZqVW1pM1I2Unc2ck12 UEZFOEVXVDhiTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQDsvpQMA0EAgACMAcDBQAqA7QAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDHqjANBgkqhkiG9w0BAQsFAAOCAQEAr7di2cNSLAmo KVCaxYQiTZivavhtinpwheSU/uy2TPQYm9vyFNNbAuScsWK52uaUfrExlvAfoCco HOxYMPX2OJmKQO9uaW6Y/CqJ05dexBKRwRPF6YIPc1zJ2Yt+3n2NlbEcAtNkueKH aDxTzZYV0l3NogoLMdqvfGDPlyjXUzDbGrVXAyiElajH01H6D4lKdhCcfNmh2Gna HCaYxQ1pANnf80DbutUCLHk+gilPRWPCl/m1Rpoo51BqO9ozQZJGUrf5fXjvyUNZ CSzhIXBcuT9CXnol/3XipUV+PYuY3DuMLQTaJUjGzj5lRqb6p0rPvr8uD3z2WeP6 Gnc5RNegHA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:08 2026 by rpki-client