This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EceeiifN6ZEb19pjhzxcxVjb1TE.cer File: EceeiifN6ZEb19pjhzxcxVjb1TE.cer (raw, json) Hash identifier: eNkTsRVTvUvJ7PlK13g0y60Q5oAJPWiyjRKbdPqj9BU= Subject key identifier: 11:C7:9E:8A:27:CD:E9:91:1B:D7:DA:63:87:3C:5C:C5:58:DB:D5:31 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C8025B5389C46E2BE0CDE0D4C9BDFA9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ca/414e5a-52f8-4845-b1bb-b9930510d0a0/1/EceeiifN6ZEb19pjhzxcxVjb1TE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ca/414e5a-52f8-4845-b1bb-b9930510d0a0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212684 IP: 91.192.9.0/24 IP: 107.150.165.0/24 IP: 2a06:39c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:25:b5:38:9c:46:e2:be:0c:de:0d:4c:9b:df:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11c79e8a27cde9911bd7da63873c5cc558dbd531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3f:87:d1:18:95:c9:61:85:ab:dd:f5:da:7e: 81:32:04:09:d3:ff:73:cb:44:5e:79:da:9f:d1:5d: 25:77:82:9e:19:c8:ce:b6:97:79:b6:f1:93:f5:c1: 12:cb:5f:bb:ec:3c:57:21:67:c5:ec:67:19:26:07: 27:18:4a:02:5a:81:74:c6:76:bb:2b:5e:bc:a1:2e: db:b1:7e:1d:64:0d:50:02:4a:23:b7:85:06:8c:a3: a8:78:b9:59:0d:a9:c7:c8:46:42:d5:49:b8:43:0f: eb:7d:5d:d0:d7:65:b5:75:2b:2b:b5:50:64:fd:b3: f8:dc:9f:99:ef:ff:2f:c8:ad:09:b5:b8:1a:90:9b: 4d:d3:75:8a:e0:00:01:a4:20:d7:73:9f:a3:89:dd: 91:2b:ae:a8:05:42:7a:f7:90:2f:6d:f9:c6:36:32: 58:e1:69:32:63:c9:21:5f:0b:29:54:a4:9e:e4:01: 18:c3:70:71:cc:28:5c:90:11:03:37:47:16:c8:2a: e2:de:7d:b9:e6:9a:2e:69:9e:26:0d:aa:84:d3:f5: 36:ea:78:57:a4:f2:1e:bb:b4:37:34:04:16:42:9e: 92:ff:c3:92:9d:5e:94:41:6c:24:76:8d:6d:e0:1a: bf:73:e2:ab:a0:8a:cd:cd:10:67:98:03:c2:67:e1: c1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C7:9E:8A:27:CD:E9:91:1B:D7:DA:63:87:3C:5C:C5:58:DB:D5:31 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/414e5a-52f8-4845-b1bb-b9930510d0a0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/414e5a-52f8-4845-b1bb-b9930510d0a0/1/EceeiifN6ZEb19pjhzxcxVjb1TE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.192.9.0/24 107.150.165.0/24 IPv6: 2a06:39c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212684 Signature Algorithm: sha256WithRSAEncryption 72:4b:9b:9c:47:a3:b2:1c:88:be:ff:ee:ea:bc:dc:53:f2:22: 20:14:03:07:b1:a4:d4:88:e5:e8:8a:07:51:b1:2b:6f:22:bd: 20:48:7a:fa:8a:9f:ff:f0:f9:11:61:bb:40:80:9c:38:7d:0f: f0:1e:14:de:95:c8:0b:15:bc:85:d7:e5:52:ef:93:aa:75:f7: b6:ff:99:bb:d8:87:36:48:46:c9:9a:82:99:57:c0:97:85:1e: 2f:4a:14:39:4f:8b:f9:54:98:9c:43:eb:da:11:06:92:f2:b7: 6e:bc:b4:df:dd:21:20:fa:7e:13:d0:6a:61:30:de:ef:56:91: 38:dc:32:7b:8b:41:30:90:be:df:27:db:76:2a:f1:99:c6:c5: 6e:c9:80:ff:2f:7a:cb:89:34:f5:12:9e:e4:26:38:ce:66:93: 13:fc:25:56:2b:04:4d:cd:28:7d:e8:31:d3:c0:be:e0:5d:c4: 71:c7:75:97:e9:54:59:58:3d:6b:3f:85:7a:57:af:33:f9:80: 11:b1:d6:5a:96:57:6b:93:b8:f1:d0:f9:f0:77:89:e8:eb:ac: 3e:a7:3d:21:cc:a4:ee:37:73:85:07:24:60:27:52:45:d8:57: e4:26:e5:28:da:2f:c2:68:24:d7:7f:29:7e:0c:6c:5c:e1:79: 76:01:75:2e -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt8gCW1OJxG4r4M3g1Mm9+pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMWM3OWU4YTI3Y2RlOTkxMWJkN2RhNjM4NzNjNWNjNTU4ZGJkNTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuz+H0RiVyWGFq9312n6BMgQJ0/9z y0Reedqf0V0ld4KeGcjOtpd5tvGT9cESy1+77DxXIWfF7GcZJgcnGEoCWoF0xna7 K168oS7bsX4dZA1QAkojt4UGjKOoeLlZDanHyEZC1Um4Qw/rfV3Q12W1dSsrtVBk /bP43J+Z7/8vyK0JtbgakJtN03WK4AABpCDXc5+jid2RK66oBUJ695AvbfnGNjJY 4WkyY8khXwspVKSe5AEYw3BxzChckBEDN0cWyCri3n255pouaZ4mDaqE0/U26nhX pPIeu7Q3NAQWQp6S/8OSnV6UQWwkdo1t4Bq/c+KroIrNzRBnmAPCZ+HBQQIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFBHHnoonzemRG9faY4c8XMVY29UxMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NhLzQxNGU1 YS01MmY4LTQ4NDUtYjFiYi1iOTkzMDUxMGQwYTAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2EvNDE0ZTVh LTUyZjgtNDg0NS1iMWJiLWI5OTMwNTEwZDBhMC8xL0VjZWVpaWZONlpFYjE5cGpo enhjeFZqYjFURS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAW8AJAwQAa5alMA0EAgACMAcDBQMqBjnAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwM+zDANBgkqhkiG9w0BAQsFAAOCAQEAckub nEejshyIvv/u6rzcU/IiIBQDB7Gk1Ijl6IoHUbErbyK9IEh6+oqf//D5EWG7QICc OH0P8B4U3pXICxW8hdflUu+TqnX3tv+Zu9iHNkhGyZqCmVfAl4UeL0oUOU+L+VSY nEPr2hEGkvK3bry0390hIPp+E9BqYTDe71aRONwye4tBMJC+3yfbdirxmcbFbsmA /y96y4k09RKe5CY4zmaTE/wlVisETc0ofegx08C+4F3Eccd1l+lUWVg9az+Felev M/mAEbHWWpZXa5O48dD58HeJ6OusPqc9Icyk7jdzhQckYCdSRdhX5CblKNovwmgk 138pfgxsXOF5dgF1Lg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:47 2026 by rpki-client