This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FGKkl-_gvJK37ZJSnrvjnLGdMwo.cer File: FGKkl-_gvJK37ZJSnrvjnLGdMwo.cer (raw, json) Hash identifier: kKv1EIHU5h8D6rKoBkxUUNAlQiS8r8mhhcfJZYTg7lk= Subject key identifier: 14:62:A4:97:EF:E0:BC:92:B7:ED:92:52:9E:BB:E3:9C:B1:9D:33:0A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA5880EF60535C71FC15A5E188DC25B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e0/be1171-1202-4df8-8c30-d36935ebc6ad/1/FGKkl-_gvJK37ZJSnrvjnLGdMwo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e0/be1171-1202-4df8-8c30-d36935ebc6ad/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:18:56 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 34767 IP: 80.75.240.0/20 IP: 185.53.180.0/22 IP: 2a00:7a80::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:88:0e:f6:05:35:c7:1f:c1:5a:5e:18:8d:c2:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1462a497efe0bc92b7ed92529ebbe39cb19d330a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b9:bb:98:0e:3a:dc:b4:5e:af:70:83:ec:94: 23:93:f0:15:b5:8a:a7:24:b0:70:24:f0:2a:a9:9a: ec:e0:b2:f4:b0:21:72:be:44:95:0d:a7:a8:ae:22: c6:10:77:a9:9a:bd:b0:27:c7:a1:d0:b6:14:15:57: 1e:91:5d:5b:c8:1e:ff:b6:41:b5:ca:44:ba:19:a4: 0e:c0:9f:2a:23:fb:69:a7:63:65:e2:2e:82:2f:db: 66:5f:d6:00:85:4b:a2:7c:be:2e:7c:77:7c:8c:d4: 06:fe:63:97:24:92:76:16:0b:e5:01:87:26:95:0d: 83:50:cb:c0:2e:8d:d0:56:71:44:e5:df:b2:d2:f4: 65:22:90:54:0a:8c:f0:00:82:18:0e:27:c6:d4:11: 37:87:84:c5:64:f8:21:15:bd:8b:68:ca:ba:d9:46: 2e:36:8b:d4:e8:c9:44:74:c8:44:14:e3:8b:66:1d: a6:d9:bd:9e:87:62:5b:a3:58:c4:a4:e0:f5:ed:08: c5:a4:c2:43:bc:98:f8:80:c7:b5:b0:7e:3f:64:6c: 13:96:ef:e6:74:89:8b:3b:76:6b:b5:68:1b:26:9b: 86:83:02:ed:0c:e0:ec:96:5a:6c:5b:30:4b:80:9d: 88:fa:20:06:a5:d6:d6:53:d6:b2:83:47:1c:7a:df: aa:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:62:A4:97:EF:E0:BC:92:B7:ED:92:52:9E:BB:E3:9C:B1:9D:33:0A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/be1171-1202-4df8-8c30-d36935ebc6ad/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/be1171-1202-4df8-8c30-d36935ebc6ad/1/FGKkl-_gvJK37ZJSnrvjnLGdMwo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.75.240.0/20 185.53.180.0/22 IPv6: 2a00:7a80::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 34767 Signature Algorithm: sha256WithRSAEncryption 68:fc:f8:57:ae:6a:83:6b:0b:3b:02:06:a7:7e:2d:d9:bc:04: 82:c7:c5:07:1e:82:24:21:4d:60:c7:f6:bb:d7:fa:e9:62:95: a6:d7:9c:34:ce:60:72:10:4b:3c:d0:47:90:04:e3:23:c3:00: 65:42:1d:b1:eb:a5:21:70:04:c5:2c:20:10:76:5f:8c:7f:36: c5:74:47:4d:6f:f2:0b:96:3e:81:d7:56:ac:4c:fb:f5:37:df: 7f:48:16:68:aa:26:e8:07:18:88:a5:a3:34:43:38:84:8a:d7: 4e:0f:07:78:76:de:ec:a7:e2:7c:bd:29:e9:e5:b3:53:a6:8b: fc:54:48:4c:f0:5d:a0:52:ee:83:7b:b4:39:95:53:8a:c2:de: f7:96:9b:e6:3b:fa:8d:20:ab:ac:3f:bc:f9:4d:03:5c:53:fe: a1:c6:33:18:57:b3:f2:7c:9d:7e:8f:0a:0e:83:15:ca:f9:ce: 8b:dc:7d:31:31:36:e8:7c:59:37:e1:24:86:06:73:62:d3:1b: 7c:6a:ad:29:58:81:c4:38:17:c4:3a:85:2b:2d:19:fc:0f:2c: 99:7f:ed:a5:8f:0e:7b:ac:69:50:6b:70:6f:52:98:c3:b7:88: a7:1c:5c:c8:d0:cc:c9:4e:fd:e6:4c:f8:16:f3:9e:64:1d:93: 46:6b:c3:74 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt+pYgO9gU1xx/BWl4YjcJbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDYyYTQ5N2VmZTBiYzkyYjdlZDkyNTI5ZWJiZTM5Y2IxOWQzMzBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrm7mA463LRer3CD7JQjk/AVtYqn JLBwJPAqqZrs4LL0sCFyvkSVDaeoriLGEHepmr2wJ8eh0LYUFVcekV1byB7/tkG1 ykS6GaQOwJ8qI/tpp2Nl4i6CL9tmX9YAhUuifL4ufHd8jNQG/mOXJJJ2FgvlAYcm lQ2DUMvALo3QVnFE5d+y0vRlIpBUCozwAIIYDifG1BE3h4TFZPghFb2LaMq62UYu NovU6MlEdMhEFOOLZh2m2b2eh2Jbo1jEpOD17QjFpMJDvJj4gMe1sH4/ZGwTlu/m dImLO3ZrtWgbJpuGgwLtDODsllpsWzBLgJ2I+iAGpdbWU9ayg0ccet+q1QIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFBRipJfv4LySt+2SUp6745yxnTMKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UwL2JlMTE3 MS0xMjAyLTRkZjgtOGMzMC1kMzY5MzVlYmM2YWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAvYmUxMTcx LTEyMDItNGRmOC04YzMwLWQzNjkzNWViYzZhZC8xL0ZHS2tsLV9ndkpLMzdaSlNu cnZqbkxHZE13by5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQEUEvwAwQCuTW0MA0EAgACMAcDBQAqAHqAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwCHzzANBgkqhkiG9w0BAQsFAAOCAQEAaPz4 V65qg2sLOwIGp34t2bwEgsfFBx6CJCFNYMf2u9f66WKVptecNM5gchBLPNBHkATj I8MAZUIdseulIXAExSwgEHZfjH82xXRHTW/yC5Y+gddWrEz79Tfff0gWaKom6AcY iKWjNEM4hIrXTg8HeHbe7KfifL0p6eWzU6aL/FRITPBdoFLug3u0OZVTisLe95ab 5jv6jSCrrD+8+U0DXFP+ocYzGFez8nydfo8KDoMVyvnOi9x9MTE26HxZN+EkhgZz YtMbfGqtKViBxDgXxDqFKy0Z/A8smX/tpY8Oe6xpUGtwb1KYw7eIpxxcyNDMyU79 5kz4FvOeZB2TRmvDdA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:32 2026 by rpki-client