This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FWKPn9qri4VJS8M4gJGhIrC7pcg.cer File: FWKPn9qri4VJS8M4gJGhIrC7pcg.cer (raw, json) Hash identifier: bHAnYqQqPdIMocqAX2ZDHDufyGfoto//N5rasMJTEFs= Subject key identifier: 15:62:8F:9F:DA:AB:8B:85:49:4B:C3:38:80:91:A1:22:B0:BB:A5:C8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED2B11F5A170604B96DD05EED9C50F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a4/db2692-4b71-43cb-a389-96f040bbba0d/1/FWKPn9qri4VJS8M4gJGhIrC7pcg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a4/db2692-4b71-43cb-a389-96f040bbba0d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:56 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202964 IP: 37.208.88.0/21 IP: 2a14:6180::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:2b:11:f5:a1:70:60:4b:96:dd:05:ee:d9:c5:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=15628f9fdaab8b85494bc3388091a122b0bba5c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:b1:ec:7b:b9:c8:d4:0a:21:15:7c:cd:04:42: 30:d0:36:06:20:cf:3c:10:9c:69:d8:c0:b0:6e:2a: 1f:ad:b7:f1:9b:6b:ae:cd:7f:fe:00:ce:ce:19:b6: fe:d6:68:fd:4e:e8:55:b7:0a:22:54:10:ca:7d:f1: 56:00:2f:0f:17:71:a7:7a:c3:90:74:7d:5c:fb:e7: bb:45:7b:46:61:39:2b:df:86:e3:ff:a0:39:89:7d: 18:31:67:ee:b1:2d:b1:ed:49:8f:78:76:f8:c2:75: 8f:57:b0:a5:e8:c5:54:61:cb:de:58:65:c7:bb:e4: 7e:52:90:7e:fb:75:90:48:ad:47:94:4c:d7:47:e8: e0:66:18:3a:bf:2d:43:9c:4b:33:fb:2a:ee:0f:01: 4e:df:0c:ff:29:97:ca:80:d9:ae:26:1f:e9:45:34: 50:48:23:d0:01:3a:81:f4:63:46:45:b1:be:35:7b: 5b:5d:cd:81:34:a6:c0:99:14:48:0d:86:c1:d3:55: 1e:a7:18:ee:bd:03:e2:54:66:1c:b1:12:16:7d:02: de:a7:04:34:6c:a1:dd:12:58:6d:c2:6b:9f:e6:9d: a7:35:70:6f:cf:c9:2f:7a:8b:25:fe:d6:1f:55:42: 46:89:42:63:00:21:a5:90:c9:bc:d8:db:b7:c5:2d: f2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:62:8F:9F:DA:AB:8B:85:49:4B:C3:38:80:91:A1:22:B0:BB:A5:C8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/db2692-4b71-43cb-a389-96f040bbba0d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/db2692-4b71-43cb-a389-96f040bbba0d/1/FWKPn9qri4VJS8M4gJGhIrC7pcg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.208.88.0/21 IPv6: 2a14:6180::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202964 Signature Algorithm: sha256WithRSAEncryption 33:79:d1:eb:30:04:f6:92:99:e6:d3:f0:67:61:0b:3e:91:89: 5d:7c:9a:4b:fd:0d:40:d9:4d:9c:2c:82:26:68:f0:2b:1e:24: 2a:d3:5e:5f:70:15:65:e6:d5:6f:cc:c3:af:6d:c8:41:59:57: 57:b0:61:30:3a:ce:9d:da:d6:45:e5:fd:ab:57:f8:59:87:80: 23:c3:e5:0e:57:0d:b6:fb:41:32:3f:46:78:40:41:29:da:56: e4:cb:c1:2a:41:55:f9:8a:8b:82:c0:0a:ac:54:d6:ca:c7:ab: 9f:5d:1b:36:f4:39:7b:37:83:2c:5b:59:39:92:e8:a2:48:22: 7d:42:17:db:fc:7f:7e:80:ec:af:81:43:ca:bc:df:0f:c0:13: 80:42:d8:46:35:51:e4:b2:51:ee:c8:95:fe:e9:84:11:18:9a: b4:2e:21:e7:71:b5:c0:af:35:c0:d7:09:33:4f:7e:70:88:b1: 97:92:89:e1:d8:b8:66:46:39:90:b8:e8:db:08:26:96:3f:6b: 0b:88:82:74:cb:bd:d2:03:47:26:94:bd:ae:cb:c2:5b:e5:fb: 80:63:40:5f:d7:c7:86:c3:dd:e8:8d:16:22:72:92:cd:2b:79: 31:7e:e5:18:a8:f9:c6:1d:c1:ed:41:fb:d3:a3:89:13:57:d1: ac:aa:b5:15 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt87SsR9aFwYEuW3QXu2cUPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNTYyOGY5ZmRhYWI4Yjg1NDk0YmMzMzg4MDkxYTEyMmIwYmJhNWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiLHse7nI1AohFXzNBEIw0DYGIM88 EJxp2MCwbiofrbfxm2uuzX/+AM7OGbb+1mj9TuhVtwoiVBDKffFWAC8PF3GnesOQ dH1c++e7RXtGYTkr34bj/6A5iX0YMWfusS2x7UmPeHb4wnWPV7Cl6MVUYcveWGXH u+R+UpB++3WQSK1HlEzXR+jgZhg6vy1DnEsz+yruDwFO3wz/KZfKgNmuJh/pRTRQ SCPQATqB9GNGRbG+NXtbXc2BNKbAmRRIDYbB01UepxjuvQPiVGYcsRIWfQLepwQ0 bKHdElhtwmuf5p2nNXBvz8kveosl/tYfVUJGiUJjACGlkMm82Nu3xS3yKwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFBVij5/aq4uFSUvDOICRoSKwu6XIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E0L2RiMjY5 Mi00YjcxLTQzY2ItYTM4OS05NmYwNDBiYmJhMGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQvZGIyNjky LTRiNzEtNDNjYi1hMzg5LTk2ZjA0MGJiYmEwZC8xL0ZXS1BuOXFyaTRWSlM4TTRn SkdoSXJDN3BjZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQDJdBYMA0EAgACMAcDBQMqFGGAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMY1DANBgkqhkiG9w0BAQsFAAOCAQEAM3nR6zAE9pKZ 5tPwZ2ELPpGJXXyaS/0NQNlNnCyCJmjwKx4kKtNeX3AVZebVb8zDr23IQVlXV7Bh MDrOndrWReX9q1f4WYeAI8PlDlcNtvtBMj9GeEBBKdpW5MvBKkFV+YqLgsAKrFTW ysern10bNvQ5ezeDLFtZOZLookgifUIX2/x/foDsr4FDyrzfD8ATgELYRjVR5LJR 7siV/umEERiatC4h53G1wK81wNcJM09+cIixl5KJ4di4ZkY5kLjo2wgmlj9rC4iC dMu90gNHJpS9rsvCW+X7gGNAX9fHhsPd6I0WInKSzSt5MX7lGKj5xh3B7UH706OJ E1fRrKq1FQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:59 2026 by rpki-client