This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/F7zvn6HzsThCEzqtT3tAHtyY4Eg.cer File: F7zvn6HzsThCEzqtT3tAHtyY4Eg.cer (raw, json) Hash identifier: jxSs2TjAtuAUuAiFJNlynLCzmag4ks3xgT5Cwruct+A= Subject key identifier: 17:BC:EF:9F:A1:F3:B1:38:42:13:3A:AD:4F:7B:40:1E:DC:98:E0:48 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7F027092CCB8549F8449B35D27BBBB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e8/b3d8c4-37fb-40e8-82de-f8419fe5872b/1/F7zvn6HzsThCEzqtT3tAHtyY4Eg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e8/b3d8c4-37fb-40e8-82de-f8419fe5872b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:17:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41790 IP: 195.8.220.0/23 IP: 2001:67c:2374::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:02:70:92:cc:b8:54:9f:84:49:b3:5d:27:bb:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=17bcef9fa1f3b13842133aad4f7b401edc98e048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8f:95:2a:c6:d8:d2:28:b9:1d:27:e2:c7:45: 35:4c:32:36:0a:c2:21:da:5f:fb:51:e8:d6:20:9b: 0b:ef:c7:b9:15:8b:57:e4:e7:b6:22:6f:cb:c7:22: 27:3c:80:82:b7:31:a6:40:76:3d:40:2d:68:48:f6: 73:aa:4b:0d:33:01:e5:96:eb:e2:a8:21:7b:ab:78: 3f:ba:7c:c6:2a:5e:fa:08:5a:b8:76:d7:03:e8:e8: df:61:e3:f1:cd:7a:24:fb:0b:0f:a7:ad:83:b7:fc: 4c:88:91:68:93:d7:a6:aa:a5:b4:11:cc:50:f6:ed: d5:0b:ce:09:20:b5:ab:ef:48:1f:39:96:60:0e:33: 82:8b:b6:fc:0f:26:2e:cc:08:45:32:c3:72:7e:f6: a0:60:07:ca:e6:7a:d2:81:c6:c2:f7:da:89:1f:b0: e8:80:6d:52:2e:61:75:44:0c:b0:e9:b6:b4:d0:21: 82:d0:34:54:69:23:b5:43:30:96:44:bc:87:37:50: 29:12:3f:18:60:44:bb:9b:6b:a0:83:f8:76:c7:05: 60:ef:e6:39:82:47:b7:c4:6e:48:bf:ae:cd:64:73: 92:ae:ff:6e:91:66:f6:5d:16:97:da:43:eb:5a:b8: 6f:ff:f9:63:b0:6c:ee:00:e0:d9:1d:5b:42:19:ae: 32:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:BC:EF:9F:A1:F3:B1:38:42:13:3A:AD:4F:7B:40:1E:DC:98:E0:48 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/b3d8c4-37fb-40e8-82de-f8419fe5872b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/b3d8c4-37fb-40e8-82de-f8419fe5872b/1/F7zvn6HzsThCEzqtT3tAHtyY4Eg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.8.220.0/23 IPv6: 2001:67c:2374::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41790 Signature Algorithm: sha256WithRSAEncryption 1b:58:a1:9f:d0:d0:dd:76:bc:84:3a:36:70:88:7c:e6:53:50: 1a:f4:c6:a4:a3:30:96:2f:df:5c:e4:b3:5b:87:c3:d7:8d:fd: 03:ea:80:e5:9b:ff:01:9b:54:0d:5f:34:bf:2a:04:66:d2:98: 57:69:03:23:c0:b6:c9:0d:37:46:4a:23:40:c1:24:20:06:ac: ac:3f:c4:84:43:53:b0:aa:a1:06:87:fb:a5:57:94:d3:30:73: 2b:1f:bf:e5:76:d3:b1:8d:14:20:d4:c0:10:02:52:9e:17:a4: 76:ce:20:6c:29:0b:05:9e:25:e1:8b:fe:63:5d:63:f6:a3:68: 3c:99:b2:07:ca:69:3d:9e:d8:8b:d9:f2:33:e2:da:69:f8:30: ec:97:30:ca:43:12:7d:0f:36:59:66:26:47:65:f4:6b:60:83: 26:f5:f0:82:11:e4:11:ab:e1:d3:4c:cd:31:7b:44:cd:ef:cb: 6f:18:37:ee:51:78:81:2f:a6:7f:83:c8:48:f6:3b:5d:80:4a: ed:f2:55:1e:71:22:05:f1:8e:78:56:1d:be:33:26:2d:a3:c9: 96:56:94:41:93:22:6c:9e:ff:ae:41:c8:a2:38:a4:ba:9c:8a: 55:05:2a:5a:c1:ee:22:8c:ce:30:84:8b:75:85:9d:db:9b:8a: c3:96:59:36 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt8fwJwksy4VJ+ESbNdJ7u7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxN2JjZWY5ZmExZjNiMTM4NDIxMzNhYWQ0ZjdiNDAxZWRjOThlMDQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuY+VKsbY0ii5HSfix0U1TDI2CsIh 2l/7UejWIJsL78e5FYtX5Oe2Im/LxyInPICCtzGmQHY9QC1oSPZzqksNMwHlluvi qCF7q3g/unzGKl76CFq4dtcD6OjfYePxzXok+wsPp62Dt/xMiJFok9emqqW0EcxQ 9u3VC84JILWr70gfOZZgDjOCi7b8DyYuzAhFMsNyfvagYAfK5nrSgcbC99qJH7Do gG1SLmF1RAyw6ba00CGC0DRUaSO1QzCWRLyHN1ApEj8YYES7m2ugg/h2xwVg7+Y5 gke3xG5Iv67NZHOSrv9ukWb2XRaX2kPrWrhv//ljsGzuAODZHVtCGa4y3QIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFBe875+h87E4QhM6rU97QB7cmOBIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U4L2IzZDhj NC0zN2ZiLTQwZTgtODJkZS1mODQxOWZlNTg3MmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTgvYjNkOGM0 LTM3ZmItNDBlOC04MmRlLWY4NDE5ZmU1ODcyYi8xL0Y3enZuNkh6c1RoQ0V6cXRU M3RBSHR5WTRFZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQBwwjcMA8EAgACMAkDBwAgAQZ8I3QwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAKM+MA0GCSqGSIb3DQEBCwUAA4IBAQAbWKGf0NDd dryEOjZwiHzmU1Aa9MakozCWL99c5LNbh8PXjf0D6oDlm/8Bm1QNXzS/KgRm0phX aQMjwLbJDTdGSiNAwSQgBqysP8SEQ1OwqqEGh/ulV5TTMHMrH7/ldtOxjRQg1MAQ AlKeF6R2ziBsKQsFniXhi/5jXWP2o2g8mbIHymk9ntiL2fIz4tpp+DDslzDKQxJ9 DzZZZiZHZfRrYIMm9fCCEeQRq+HTTM0xe0TN78tvGDfuUXiBL6Z/g8hI9jtdgErt 8lUecSIF8Y54Vh2+MyYto8mWVpRBkyJsnv+uQciiOKS6nIpVBSpawe4ijM4whIt1 hZ3bm4rDllk2 -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:45 2026 by rpki-client