This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EWYPCgX8TPczIjCFLZ14vXrC8ks.cer File: EWYPCgX8TPczIjCFLZ14vXrC8ks.cer (raw, json) Hash identifier: l0ZeuAbH3H0llOQ/hGPr7aY0dlkuINBpLnw6O7rXHik= Subject key identifier: 11:66:0F:0A:05:FC:4C:F7:33:22:30:85:2D:9D:78:BD:7A:C2:F2:4B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910C88BB717233D197C6CDB0847F7D9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/EWYPCgX8TPczIjCFLZ14vXrC8ks.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:21 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211713 IP: 185.93.24.0/22 IP: 2a03:8e20::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:c8:8b:b7:17:23:3d:19:7c:6c:db:08:47:f7:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11660f0a05fc4cf7332230852d9d78bd7ac2f24b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1c:58:f8:2f:30:63:a3:36:7b:f1:20:09:6c: fd:11:e7:dd:81:15:75:5c:87:4c:d4:b0:30:8f:97: 60:8b:f1:39:12:37:4e:25:49:b5:87:01:0d:43:75: ef:65:64:42:42:fc:df:0a:39:0b:00:ab:b0:bc:4d: 5f:00:ee:d0:56:e2:26:c6:2a:3c:0f:b5:e0:5c:d0: a6:85:24:7e:11:79:a2:38:70:9f:b6:fe:a1:f2:e9: b9:9f:cb:47:a1:fe:88:19:cb:89:d6:57:a5:e7:aa: f0:99:9d:b2:04:c1:5f:c1:85:d2:93:e9:e5:4e:cc: c7:fd:e6:a5:d4:31:89:a7:10:8e:57:01:9d:59:cd: 66:aa:ba:46:28:e9:ef:a0:b4:2b:25:51:b9:a9:23: 5a:82:e2:7f:ce:76:78:f0:d6:1b:31:16:40:83:f8: 60:15:5d:18:1c:8a:68:5d:3c:74:74:99:3b:70:0f: 9e:a6:cb:5d:c3:1c:75:c2:80:93:cc:14:4b:81:ba: 0e:af:1f:94:1c:bf:18:86:84:87:89:f1:14:8e:04: bc:aa:92:4c:de:02:b3:77:ba:40:38:67:5a:43:3b: 7b:29:07:41:06:0c:79:f3:c0:30:e3:fa:6d:9c:f4: 0d:fd:18:c3:1a:6f:e0:f6:a0:a7:52:19:22:4f:4f: 8b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:66:0F:0A:05:FC:4C:F7:33:22:30:85:2D:9D:78:BD:7A:C2:F2:4B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/EWYPCgX8TPczIjCFLZ14vXrC8ks.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.93.24.0/22 IPv6: 2a03:8e20::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211713 Signature Algorithm: sha256WithRSAEncryption 92:1d:93:a8:61:d2:fb:8f:7b:e9:d2:ff:7f:8f:7f:8c:d4:c3: a6:59:33:bb:a6:c8:02:4b:12:6c:18:95:f3:e5:bc:bf:b8:67: 22:cd:06:bf:56:e0:b6:4e:17:ac:fd:e7:95:49:d6:ae:b9:80: 5a:35:aa:ef:6e:46:0c:1b:5d:f8:81:0a:9e:73:45:a6:1b:09: ce:28:b5:57:5d:68:ed:84:fb:87:f5:a5:fd:6d:e1:84:0d:9f: 42:de:ff:01:24:29:14:a1:06:a6:cd:1d:ea:49:5a:cd:1c:de: f9:b7:88:d7:c0:2c:5f:5c:1b:67:e8:36:01:52:42:08:cc:96: bb:60:ef:6f:49:90:25:ae:29:c0:a0:f6:1e:54:4b:31:7e:bd: 4c:31:ca:b0:34:8e:99:33:c3:27:37:48:e9:9b:53:50:38:c8: f4:ca:f0:ae:bf:58:70:85:9e:b9:9f:25:06:de:64:80:bd:db: 1e:63:00:2b:78:60:db:01:c0:23:43:50:56:83:ef:01:c8:84: 03:93:f2:fe:ca:82:3b:f2:c7:de:c2:67:19:ad:c3:84:5f:99: e7:cf:9c:15:84:b4:fb:f3:03:84:0f:df:1c:66:b2:3d:e7:ec: 1c:6a:5f:94:d3:76:6b:f9:92:1b:51:8e:09:29:78:82:91:1e: a4:14:b6:f7 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5EMiLtxcjPRl8bNsIR/fZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTY2MGYwYTA1ZmM0Y2Y3MzMyMjMwODUyZDlkNzhiZDdhYzJmMjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRxY+C8wY6M2e/EgCWz9EefdgRV1 XIdM1LAwj5dgi/E5EjdOJUm1hwENQ3XvZWRCQvzfCjkLAKuwvE1fAO7QVuImxio8 D7XgXNCmhSR+EXmiOHCftv6h8um5n8tHof6IGcuJ1lel56rwmZ2yBMFfwYXSk+nl TszH/eal1DGJpxCOVwGdWc1mqrpGKOnvoLQrJVG5qSNaguJ/znZ48NYbMRZAg/hg FV0YHIpoXTx0dJk7cA+epstdwxx1woCTzBRLgboOrx+UHL8YhoSHifEUjgS8qpJM 3gKzd7pAOGdaQzt7KQdBBgx588Aw4/ptnPQN/RjDGm/g9qCnUhkiT0+L8wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFBFmDwoF/Ez3MyIwhS2deL16wvJLMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg1LzgxYjJj Ny1mNDU0LTQxMTktODk0YS03YTA2ZmYwMDI1MTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODUvODFiMmM3 LWY0NTQtNDExOS04OTRhLTdhMDZmZjAwMjUxNy8xL0VXWVBDZ1g4VFBjeklqQ0ZM WjE0dlhyQzhrcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuV0YMA0EAgACMAcDBQAqA44gMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM7ATANBgkqhkiG9w0BAQsFAAOCAQEAkh2TqGHS+497 6dL/f49/jNTDplkzu6bIAksSbBiV8+W8v7hnIs0Gv1bgtk4XrP3nlUnWrrmAWjWq 725GDBtd+IEKnnNFphsJzii1V11o7YT7h/Wl/W3hhA2fQt7/ASQpFKEGps0d6kla zRze+beI18AsX1wbZ+g2AVJCCMyWu2Dvb0mQJa4pwKD2HlRLMX69TDHKsDSOmTPD JzdI6ZtTUDjI9Mrwrr9YcIWeuZ8lBt5kgL3bHmMAK3hg2wHAI0NQVoPvAciEA5Py /sqCO/LH3sJnGa3DhF+Z58+cFYS0+/MDhA/fHGayPefsHGpflNN2a/mSG1GOCSl4 gpEepBS29w== -----END CERTIFICATE-----Generated at Mon Feb 9 22:34:58 2026 by rpki-client