This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EkSUR-va8tRKSYs9rlJaL1In8Yo.cer File: EkSUR-va8tRKSYs9rlJaL1In8Yo.cer (raw, json) Hash identifier: XhHm5r7pFnrmxHEYbWky0Yp/m9FLk8Va4LvAVJldQhs= Subject key identifier: 12:44:94:47:EB:DA:F2:D4:4A:49:8B:3D:AE:52:5A:2F:52:27:F1:8A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED0C23A0F4903BF9A637361707475E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ac/9fb171-11f4-4c5f-83e7-2ed1fde68516/1/EkSUR-va8tRKSYs9rlJaL1In8Yo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ac/9fb171-11f4-4c5f-83e7-2ed1fde68516/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:56 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 209138 IP: 185.167.104.0/22 IP: 2a0f:62c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:0c:23:a0:f4:90:3b:f9:a6:37:36:17:07:47:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=12449447ebdaf2d44a498b3dae525a2f5227f18a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fc:f4:7c:45:11:05:e9:f7:f9:df:07:e0:9e: ff:c7:e4:9e:f2:2b:2d:62:23:f6:7b:6f:42:70:03: b8:b1:98:b6:8a:0f:4b:8d:28:0d:02:54:53:91:f4: 5e:a0:42:79:f2:1b:e8:80:20:47:98:78:c3:dd:81: cc:58:57:77:a6:c6:52:9d:f7:1e:59:b4:18:e5:fc: 5e:8d:42:72:5f:84:8d:50:1b:6f:6e:a1:cf:52:10: 11:e5:62:fc:52:11:fc:85:19:8d:97:b3:06:5b:a3: f8:09:f7:28:4f:14:02:80:93:74:15:43:b8:6a:2e: 74:a4:81:58:c8:96:13:d2:9c:f8:44:5d:46:5a:9e: 9d:eb:44:b7:99:0e:fe:f7:d1:63:65:8c:b9:6c:56: 75:f9:68:97:cc:cf:94:1f:aa:4f:cd:e8:06:bb:f8: b8:37:83:11:42:b9:b2:42:b3:9d:64:e6:73:a9:7e: 03:cb:2f:02:d9:1a:65:62:7e:94:de:75:b6:e9:39: 85:45:f3:e4:b8:39:a6:e2:16:b3:d8:51:5a:bf:00: 72:ae:5d:cd:71:24:ab:03:7d:85:64:a7:3f:20:66: 26:7f:cd:77:e5:fc:06:67:6b:cd:94:48:cb:bd:bd: 78:0d:65:f5:a8:6c:45:61:88:a7:17:8a:fc:72:94: ec:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:44:94:47:EB:DA:F2:D4:4A:49:8B:3D:AE:52:5A:2F:52:27:F1:8A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9fb171-11f4-4c5f-83e7-2ed1fde68516/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9fb171-11f4-4c5f-83e7-2ed1fde68516/1/EkSUR-va8tRKSYs9rlJaL1In8Yo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.167.104.0/22 IPv6: 2a0f:62c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 209138 Signature Algorithm: sha256WithRSAEncryption 42:db:68:00:b5:9c:5d:05:09:a0:d6:0e:86:aa:b8:6e:b5:a8: 69:cd:86:fc:0f:05:16:72:4a:58:30:13:2c:91:4b:15:42:38: c3:82:06:36:ca:4a:86:83:3f:cd:82:f2:3b:e8:49:74:9a:bf: 4d:8c:10:73:6c:90:7b:67:98:78:37:1d:5a:00:79:88:e5:a7: f3:99:f1:cc:4d:42:0d:07:71:eb:8b:60:e4:10:ba:47:a6:c1: 77:f8:84:d1:24:c8:ea:06:54:e0:6f:24:3d:9e:8a:f3:5b:04: cf:2f:f8:be:df:4d:62:dc:2a:5b:1f:08:81:14:e5:ca:04:8a: 20:0d:f2:fe:e4:f9:54:e3:09:bf:d4:be:ed:a7:46:b7:58:76: 87:ae:38:44:76:58:11:59:4c:2d:2a:85:0b:e5:cc:3d:a9:e8: 82:4d:37:7a:a5:5f:1f:b3:a5:eb:91:95:ea:f3:99:16:ff:2c: 0e:5d:16:73:e3:9d:6c:c4:18:08:95:f4:8b:10:22:2c:9e:51: a6:8d:9c:b0:2e:a8:53:ea:8d:76:09:f5:c6:d6:64:6c:cf:e8: 1f:30:a6:9e:e0:4e:5b:b2:50:db:0b:92:24:f4:18:5f:2a:61: cf:cf:49:5f:b7:79:fd:a3:c6:11:5d:fc:2e:ec:a4:67:17:ff: bf:00:ee:ec -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt57QwjoPSQO/mmNzYXB0deMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMjQ0OTQ0N2ViZGFmMmQ0NGE0OThiM2RhZTUyNWEyZjUyMjdmMThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vz0fEURBen3+d8H4J7/x+Se8ist YiP2e29CcAO4sZi2ig9LjSgNAlRTkfReoEJ58hvogCBHmHjD3YHMWFd3psZSnfce WbQY5fxejUJyX4SNUBtvbqHPUhAR5WL8UhH8hRmNl7MGW6P4CfcoTxQCgJN0FUO4 ai50pIFYyJYT0pz4RF1GWp6d60S3mQ7+99FjZYy5bFZ1+WiXzM+UH6pPzegGu/i4 N4MRQrmyQrOdZOZzqX4Dyy8C2RplYn6U3nW26TmFRfPkuDmm4haz2FFavwByrl3N cSSrA32FZKc/IGYmf8135fwGZ2vNlEjLvb14DWX1qGxFYYinF4r8cpTsnwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFBJElEfr2vLUSkmLPa5SWi9SJ/GKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FjLzlmYjE3 MS0xMWY0LTRjNWYtODNlNy0yZWQxZmRlNjg1MTYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMvOWZiMTcx LTExZjQtNGM1Zi04M2U3LTJlZDFmZGU2ODUxNi8xL0VrU1VSLXZhOHRSS1NZczly bEphTDFJbjhZby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuadoMA0EAgACMAcDBQMqD2LAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMw8jANBgkqhkiG9w0BAQsFAAOCAQEAQttoALWcXQUJ oNYOhqq4brWoac2G/A8FFnJKWDATLJFLFUI4w4IGNspKhoM/zYLyO+hJdJq/TYwQ c2yQe2eYeDcdWgB5iOWn85nxzE1CDQdx64tg5BC6R6bBd/iE0STI6gZU4G8kPZ6K 81sEzy/4vt9NYtwqWx8IgRTlygSKIA3y/uT5VOMJv9S+7adGt1h2h644RHZYEVlM LSqFC+XMPanogk03eqVfH7Ol65GV6vOZFv8sDl0Wc+OdbMQYCJX0ixAiLJ5Rpo2c sC6oU+qNdgn1xtZkbM/oHzCmnuBOW7JQ2wuSJPQYXyphz89JX7d5/aPGEV38Luyk Zxf/vwDu7A== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:38 2026 by rpki-client