This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/F9vVrPH5x10YofdQMRFMSPCyM2M.cer File: F9vVrPH5x10YofdQMRFMSPCyM2M.cer (raw, json) Hash identifier: JIOTtFrZh7GsYyhPFfFVKkkAag/Go8pizFbMGRHx6FQ= Subject key identifier: 17:DB:D5:AC:F1:F9:C7:5D:18:A1:F7:50:31:11:4C:48:F0:B2:33:63 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F8468E6CC9775DE0E522F667E258915 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8a/29199f-f6cc-448a-bfd4-581db87c821e/1/F9vVrPH5x10YofdQMRFMSPCyM2M.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8a/29199f-f6cc-448a-bfd4-581db87c821e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:22:22 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 25156 IP: 45.14.152.0/22 IP: 85.89.128.0/19 IP: 85.116.224.0/19 IP: 2a00:65c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:68:e6:cc:97:75:de:0e:52:2f:66:7e:25:89:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:22:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=17dbd5acf1f9c75d18a1f75031114c48f0b23363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bb:dc:90:a3:40:37:5c:5f:43:f1:8e:bd:ec: db:8c:16:ea:4e:44:93:c8:0d:e1:8f:2f:f9:fb:ed: 98:58:93:b6:1b:9a:e7:ae:b8:06:0f:32:93:27:d5: f9:90:f3:4c:c5:28:2d:e1:10:aa:36:41:7f:e4:9e: c6:54:66:c2:b0:ea:39:59:05:db:f1:f3:06:01:08: f7:1f:6c:44:b6:fd:ee:ef:3c:07:f8:9a:17:cd:1d: ce:71:3d:da:fb:1e:d6:14:54:05:56:a9:e2:9d:f3: 1f:38:7a:0d:99:e5:51:27:65:3f:c6:09:a5:fb:a9: 49:3f:79:3a:bb:90:7a:fd:22:81:e9:1a:2f:84:c6: b5:14:0d:8d:bd:77:31:ad:69:60:31:69:06:68:00: 47:71:90:00:96:57:dc:8a:24:56:10:a0:cd:2f:14: d8:80:3e:5f:13:8c:0b:ef:a1:49:11:ff:ab:1e:c5: 45:23:bd:cd:ab:97:96:ed:5c:3c:1e:5f:e4:12:99: 21:73:ea:c0:63:3b:65:10:4c:9a:d1:8b:4d:2c:d8: d8:f7:52:be:da:cf:ac:57:38:b8:71:0c:32:ae:46: 75:ad:95:32:d8:df:9c:54:1b:58:36:00:65:7b:83: a8:36:a7:6a:b1:13:3e:6c:cf:9f:19:36:1c:3c:62: d6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:DB:D5:AC:F1:F9:C7:5D:18:A1:F7:50:31:11:4C:48:F0:B2:33:63 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/29199f-f6cc-448a-bfd4-581db87c821e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/29199f-f6cc-448a-bfd4-581db87c821e/1/F9vVrPH5x10YofdQMRFMSPCyM2M.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.14.152.0/22 85.89.128.0/19 85.116.224.0/19 IPv6: 2a00:65c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 25156 Signature Algorithm: sha256WithRSAEncryption a9:d0:25:78:21:eb:44:92:07:d8:ec:73:8a:ec:d3:74:03:b7: f4:de:bf:e5:1b:e1:ea:6c:1d:77:fe:18:74:dd:50:64:b2:43: 9e:1f:e4:13:60:66:59:18:e6:0b:a4:6d:b6:bd:54:a2:0c:45: 4b:0e:ab:2c:c0:ab:bb:42:05:a6:0c:51:05:16:a0:04:02:ba: 8e:75:3e:f8:05:de:c7:85:00:75:97:eb:cd:bb:9e:34:83:93: 63:45:7e:72:b0:e5:31:2d:6e:0a:50:d4:ed:54:f3:4c:d9:5a: 20:ce:16:58:e4:bb:a8:36:ba:7b:be:4a:c3:e5:2c:fb:a4:5a: 1e:26:ab:ff:8d:62:1b:8a:ed:fb:51:4d:66:4e:68:ff:62:b4: 54:b5:cf:86:78:69:ef:9c:d5:e5:73:f3:db:29:86:a2:f1:26: 31:b3:6c:ca:ee:4c:e3:47:56:25:04:e8:ab:1b:d8:8d:ad:a0: 88:1a:b8:74:b3:b3:d3:ca:5a:87:94:b6:91:52:a0:6c:28:1f: 9f:4f:55:d5:c8:8d:d9:15:5f:7e:3d:e6:c3:d4:03:0d:3a:49: ac:88:5f:f5:41:18:9c:8e:96:55:75:23:8e:fb:1c:e0:6a:72: 1d:66:e2:f0:cd:d1:71:82:60:77:62:3f:56:58:39:77:70:02: f9:28:ad:d6 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt/hGjmzJd13g5SL2Z+JYkVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMjIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxN2RiZDVhY2YxZjljNzVkMThhMWY3NTAzMTExNGM0OGYwYjIzMzYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLvckKNAN1xfQ/GOvezbjBbqTkST yA3hjy/5++2YWJO2G5rnrrgGDzKTJ9X5kPNMxSgt4RCqNkF/5J7GVGbCsOo5WQXb 8fMGAQj3H2xEtv3u7zwH+JoXzR3OcT3a+x7WFFQFVqninfMfOHoNmeVRJ2U/xgml +6lJP3k6u5B6/SKB6RovhMa1FA2NvXcxrWlgMWkGaABHcZAAllfciiRWEKDNLxTY gD5fE4wL76FJEf+rHsVFI73Nq5eW7Vw8Hl/kEpkhc+rAYztlEEya0YtNLNjY91K+ 2s+sVzi4cQwyrkZ1rZUy2N+cVBtYNgBle4OoNqdqsRM+bM+fGTYcPGLWTQIDAQAB o4ICujCCArYwHQYDVR0OBBYEFBfb1azx+cddGKH3UDERTEjwsjNjMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhhLzI5MTk5 Zi1mNmNjLTQ0OGEtYmZkNC01ODFkYjg3YzgyMWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGEvMjkxOTlm LWY2Y2MtNDQ4YS1iZmQ0LTU4MWRiODdjODIxZS8xL0Y5dlZyUEg1eDEwWW9mZFFN UkZNU1BDeU0yTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQCLQ6YAwQFVVmAAwQFVXTgMA0EAgACMAcDBQAq AGXAMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAmJEMA0GCSqGSIb3DQEBCwUAA4IB AQCp0CV4IetEkgfY7HOK7NN0A7f03r/lG+HqbB13/hh03VBkskOeH+QTYGZZGOYL pG22vVSiDEVLDqsswKu7QgWmDFEFFqAEArqOdT74Bd7HhQB1l+vNu540g5NjRX5y sOUxLW4KUNTtVPNM2VogzhZY5LuoNrp7vkrD5Sz7pFoeJqv/jWIbiu37UU1mTmj/ YrRUtc+GeGnvnNXlc/PbKYai8SYxs2zK7kzjR1YlBOirG9iNraCIGrh0s7PTylqH lLaRUqBsKB+fT1XVyI3ZFV9+PebD1AMNOkmsiF/1QRicjpZVdSOO+xzganIdZuLw zdFxgmB3Yj9WWDl3cAL5KK3W -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:16 2026 by rpki-client