This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FXdt9sJqD_OcQ1OdAkcpIbhh5Ow.cer File: FXdt9sJqD_OcQ1OdAkcpIbhh5Ow.cer (raw, json) Hash identifier: gZlAzgWtxRmd8Qf1m/nb+TRFmmYnD03UQ3XNMyYTbwA= Subject key identifier: 15:77:6D:F6:C2:6A:0F:F3:9C:43:53:9D:02:47:29:21:B8:61:E4:EC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C1234BCA08FD10A29124A6467FF2C85 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f6/3ec808-52e1-4f66-b145-4accf9f53927/1/FXdt9sJqD_OcQ1OdAkcpIbhh5Ow.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f6/3ec808-52e1-4f66-b145-4accf9f53927/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:18:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 50852 IP: 194.247.22.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:34:bc:a0:8f:d1:0a:29:12:4a:64:67:ff:2c:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=15776df6c26a0ff39c43539d02472921b861e4ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b5:a9:a2:3f:35:89:f1:63:81:d3:aa:1f:60: 03:53:27:ec:07:27:e1:fa:99:a0:f5:06:c7:84:ab: 58:fb:50:d6:5a:ac:2b:14:b1:1c:c4:4b:14:59:10: 8c:2f:4a:7e:4f:5f:1d:1e:92:53:4b:43:e2:39:30: ab:20:f8:f6:9a:b2:07:5e:58:93:90:d7:8e:bc:33: b9:31:d0:d1:7f:c2:65:7e:35:94:81:0c:27:ae:3f: 00:be:6c:8c:c0:78:6a:1b:5b:72:1e:b7:d0:7c:bf: 97:4d:5d:60:0e:2f:07:22:d0:7f:ae:51:d3:9a:7a: 8d:d9:39:ea:84:39:c9:15:f0:cf:d6:b8:95:82:ce: 5d:cf:36:b7:95:4a:7e:5e:71:e1:9e:e2:e2:0e:e5: 8e:de:74:41:1f:7c:c1:cc:58:53:6d:c8:25:17:ae: a6:44:79:4a:60:c3:ff:84:ea:16:1f:72:3e:3c:b7: 85:5f:3b:11:50:44:82:8d:62:33:0b:ae:6c:70:7a: 5f:01:d0:7c:b8:60:3c:3c:2e:e3:54:3f:04:5c:12: 4d:e4:e8:a9:91:5f:9e:93:b9:c3:3d:35:a9:f6:4b: 80:49:cc:4b:bd:f6:62:aa:6b:19:f3:38:87:25:16: e6:84:17:4b:05:f2:ec:b1:f4:b4:1a:73:ae:2d:a2: 8d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:77:6D:F6:C2:6A:0F:F3:9C:43:53:9D:02:47:29:21:B8:61:E4:EC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3ec808-52e1-4f66-b145-4accf9f53927/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3ec808-52e1-4f66-b145-4accf9f53927/1/FXdt9sJqD_OcQ1OdAkcpIbhh5Ow.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.247.22.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 50852 Signature Algorithm: sha256WithRSAEncryption 29:96:f7:c1:4b:41:8c:5c:10:c3:db:29:ae:2c:36:64:bd:f8: c1:3d:57:3b:84:69:39:6a:cf:e8:0a:be:c9:84:d5:69:fa:02: c3:1a:6e:16:6f:f6:d3:28:06:71:34:1c:f0:97:3e:4d:90:ed: 31:1d:78:7c:0a:01:e8:b4:84:3f:60:34:ce:32:7d:a6:30:50: 7f:0f:35:48:a5:ea:48:cd:dc:ae:0a:eb:2a:85:16:46:5b:39: 16:aa:63:f0:82:3d:a6:2f:71:a3:09:d4:ef:73:4d:e8:96:16: ff:39:1a:ea:cd:5f:40:6c:81:e0:f1:ae:8d:12:5c:0e:8d:b0: fc:9a:ed:7d:f6:16:b7:5f:2e:93:d0:e0:dd:0e:a7:da:52:30: c1:d8:4c:23:03:aa:72:1f:0b:59:2b:d0:d9:5b:ae:96:b6:eb: 8a:3c:30:22:7a:71:3b:0a:94:0a:09:0d:5f:1b:01:f1:4d:ce: 14:d5:cb:19:cc:bf:b1:2a:98:6d:97:cd:ec:95:0d:c4:2d:7c: da:a0:33:ff:f0:26:60:24:74:79:a8:04:98:39:a6:62:0e:04: 74:70:7d:73:06:d4:0e:e5:e4:bf:95:6a:d2:f4:a6:7e:32:b0: 54:bd:0d:0f:18:e9:e4:dc:a9:27:20:88:9a:1f:5d:16:b5:24: 27:73:94:84 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt8EjS8oI/RCikSSmRn/yyFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNTc3NmRmNmMyNmEwZmYzOWM0MzUzOWQwMjQ3MjkyMWI4NjFlNGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlrWpoj81ifFjgdOqH2ADUyfsByfh +pmg9QbHhKtY+1DWWqwrFLEcxEsUWRCML0p+T18dHpJTS0PiOTCrIPj2mrIHXliT kNeOvDO5MdDRf8JlfjWUgQwnrj8AvmyMwHhqG1tyHrfQfL+XTV1gDi8HItB/rlHT mnqN2TnqhDnJFfDP1riVgs5dzza3lUp+XnHhnuLiDuWO3nRBH3zBzFhTbcglF66m RHlKYMP/hOoWH3I+PLeFXzsRUESCjWIzC65scHpfAdB8uGA8PC7jVD8EXBJN5Oip kV+ek7nDPTWp9kuAScxLvfZiqmsZ8ziHJRbmhBdLBfLssfS0GnOuLaKNawIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFBV3bfbCag/znENTnQJHKSG4YeTsMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y2LzNlYzgw OC01MmUxLTRmNjYtYjE0NS00YWNjZjlmNTM5MjcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYvM2VjODA4 LTUyZTEtNGY2Ni1iMTQ1LTRhY2NmOWY1MzkyNy8xL0ZYZHQ5c0pxRF9PY1ExT2RB a2NwSWJoaDVPdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBwvcWMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDGpDANBgkqhkiG9w0BAQsFAAOCAQEAKZb3wUtBjFwQw9spriw2ZL34wT1XO4Rp OWrP6Aq+yYTVafoCwxpuFm/20ygGcTQc8Jc+TZDtMR14fAoB6LSEP2A0zjJ9pjBQ fw81SKXqSM3crgrrKoUWRls5Fqpj8II9pi9xownU73NN6JYW/zka6s1fQGyB4PGu jRJcDo2w/JrtffYWt18uk9Dg3Q6n2lIwwdhMIwOqch8LWSvQ2VuulrbrijwwInpx OwqUCgkNXxsB8U3OFNXLGcy/sSqYbZfN7JUNxC182qAz//AmYCR0eagEmDmmYg4E dHB9cwbUDuXkv5Vq0vSmfjKwVL0NDxjp5NypJyCImh9dFrUkJ3OUhA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:31 2026 by rpki-client