This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Fa8HL54VarwgxGhJjiMjFSxzaug.cer File: Fa8HL54VarwgxGhJjiMjFSxzaug.cer (raw, json) Hash identifier: 91YCoaEG5dbVQEw6ruCb44vQ6dPPaDXRlpkokUgtKU8= Subject key identifier: 15:AF:07:2F:9E:15:6A:BC:20:C4:68:49:8E:23:23:15:2C:73:6A:E8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEDEFD0ED345CC7521EA4E186ECB515 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/12f26e-fb11-42e1-bacc-3969eca7b7d4/1/Fa8HL54VarwgxGhJjiMjFSxzaug.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/12f26e-fb11-42e1-bacc-3969eca7b7d4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 47702 IP: 93.175.192.0/20 IP: 213.109.224.0/20 IP: 2001:67c:11d4::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:ef:d0:ed:34:5c:c7:52:1e:a4:e1:86:ec:b5:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=15af072f9e156abc20c468498e2323152c736ae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bd:f4:80:8e:11:d6:88:05:e5:a1:eb:0a:50: ca:48:6a:a0:92:a0:ee:0c:3c:3b:c3:01:df:7d:f0: d3:26:ac:bf:4f:b6:7e:80:10:10:4d:08:2e:c4:14: 2f:d0:c9:ac:46:a8:35:24:c9:5e:ce:b8:6f:60:48: 94:dc:33:c8:1b:1d:49:8a:03:ed:30:45:d7:ea:88: 60:e4:5a:99:ca:6e:8c:d6:35:c8:41:de:3c:09:10: c1:0a:ea:dc:4f:ef:89:70:67:b9:d4:e4:24:58:3a: 0e:96:a6:c1:9a:6c:73:1f:7e:40:e9:14:fe:3e:11: c9:57:f3:91:4e:8b:82:20:35:b7:81:16:6b:4e:41: 5b:61:cb:52:9b:b1:e7:05:9b:b4:83:0b:f7:b8:8a: 94:c6:03:c1:0c:07:d0:0b:02:73:2d:6a:1b:c1:eb: d2:65:fe:27:fd:61:17:cc:2b:9d:77:20:1e:41:85: 71:af:d1:d9:11:10:c8:ea:90:0d:ad:2f:0d:07:1a: 70:f2:3d:d4:f4:34:68:a9:f0:33:0d:35:9d:8f:4b: e2:55:60:d7:09:a7:60:d1:1e:a5:45:77:2d:22:15: 1d:7d:24:b0:84:46:64:06:4f:27:9b:c8:4b:6c:0c: 37:b7:6f:56:c5:05:a7:56:05:61:36:c6:d8:43:b9: f3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:AF:07:2F:9E:15:6A:BC:20:C4:68:49:8E:23:23:15:2C:73:6A:E8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/12f26e-fb11-42e1-bacc-3969eca7b7d4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/12f26e-fb11-42e1-bacc-3969eca7b7d4/1/Fa8HL54VarwgxGhJjiMjFSxzaug.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.175.192.0/20 213.109.224.0/20 IPv6: 2001:67c:11d4::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 47702 Signature Algorithm: sha256WithRSAEncryption 22:6c:fc:f4:2a:f0:7a:4b:3f:ea:ca:61:93:91:90:0c:d0:dc: 89:2d:8c:a1:7c:68:36:eb:85:fe:e9:fe:fd:4a:4b:c1:e2:cb: 9c:89:1b:18:44:71:62:10:03:81:9b:1d:69:90:58:3d:13:36: ab:33:35:74:2e:56:f5:77:c0:a5:f3:2d:32:32:08:af:44:2c: af:ae:10:7c:c6:2b:46:c3:61:67:72:f4:6f:d6:79:eb:da:2c: b8:13:29:b8:82:2b:f8:1e:25:62:26:10:85:ac:63:7f:f1:47: 7d:4f:c7:65:8e:81:64:bf:7b:e1:8c:35:6d:50:b5:36:25:02: 62:86:73:60:3f:0a:9a:ea:9b:0d:ac:ff:a0:eb:e5:63:b2:f4: 22:1a:bb:45:21:97:85:6c:92:50:1a:76:c5:c7:9b:eb:c3:b9: 7a:dd:cd:a0:ce:12:c0:2d:49:51:fa:ec:02:66:c0:3e:f2:35: 0a:b0:3b:30:dd:cd:85:08:6d:f9:1d:ce:ff:d3:d1:56:31:94: cb:bd:a5:f8:53:35:75:7d:a0:f7:ea:21:4b:13:89:46:7f:73: e4:80:80:12:c5:12:f4:16:3f:c7:0b:34:0b:0f:50:c3:0f:60: 0a:d6:bf:4c:26:f9:3b:27:f0:01:55:60:bb:08:d9:a6:46:f7: 96:d8:e2:68 -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgISAZt87e/Q7TRcx1IepOGG7LUVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNWFmMDcyZjllMTU2YWJjMjBjNDY4NDk4ZTIzMjMxNTJjNzM2YWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs730gI4R1ogF5aHrClDKSGqgkqDu DDw7wwHfffDTJqy/T7Z+gBAQTQguxBQv0MmsRqg1JMlezrhvYEiU3DPIGx1JigPt MEXX6ohg5FqZym6M1jXIQd48CRDBCurcT++JcGe51OQkWDoOlqbBmmxzH35A6RT+ PhHJV/ORTouCIDW3gRZrTkFbYctSm7HnBZu0gwv3uIqUxgPBDAfQCwJzLWobwevS Zf4n/WEXzCuddyAeQYVxr9HZERDI6pANrS8NBxpw8j3U9DRoqfAzDTWdj0viVWDX Cadg0R6lRXctIhUdfSSwhEZkBk8nm8hLbAw3t29WxQWnVgVhNsbYQ7nzzwIDAQAB o4ICtzCCArMwHQYDVR0OBBYEFBWvBy+eFWq8IMRoSY4jIxUsc2roMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFiLzEyZjI2 ZS1mYjExLTQyZTEtYmFjYy0zOTY5ZWNhN2I3ZDQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIvMTJmMjZl LWZiMTEtNDJlMS1iYWNjLTM5NjllY2E3YjdkNC8xL0ZhOEhMNTRWYXJ3Z3hHaEpq aU1qRlN4emF1Zy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF BwEHAQH/BCcwJTASBAIAATAMAwQEXa/AAwQE1W3gMA8EAgACMAkDBwAgAQZ8EdQw GgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDALpWMA0GCSqGSIb3DQEBCwUAA4IBAQAi bPz0KvB6Sz/qymGTkZAM0NyJLYyhfGg264X+6f79SkvB4suciRsYRHFiEAOBmx1p kFg9EzarMzV0Llb1d8Cl8y0yMgivRCyvrhB8xitGw2FncvRv1nnr2iy4Eym4giv4 HiViJhCFrGN/8Ud9T8dljoFkv3vhjDVtULU2JQJihnNgPwqa6psNrP+g6+VjsvQi GrtFIZeFbJJQGnbFx5vrw7l63c2gzhLALUlR+uwCZsA+8jUKsDsw3c2FCG35Hc7/ 09FWMZTLvaX4UzV1faD36iFLE4lGf3PkgIASxRL0Fj/HCzQLD1DDD2AK1r9MJvk7 J/ABVWC7CNmmRveW2OJo -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:27 2026 by rpki-client