This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FhQcZCnqr_caNR-yVz32A7uV8nA.cer File: FhQcZCnqr_caNR-yVz32A7uV8nA.cer (raw, json) Hash identifier: 1Y1pQsV/GwYByya1KxC1Z7wEa/y6TLsC9M2h5dPknHo= Subject key identifier: 16:14:1C:64:29:EA:AF:F7:1A:35:1F:B2:57:3D:F6:03:BB:95:F2:70 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B36217719704EA6D6FDCD3AA978F64C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:23 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215985 IP: 2001:678:f1c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:21:77:19:70:4e:a6:d6:fd:cd:3a:a9:78:f6:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=16141c6429eaaff71a351fb2573df603bb95f270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2d:2f:06:fa:42:41:f9:a5:d7:e3:45:9a:58: 8c:a0:83:34:d2:45:68:ca:b3:33:d8:6b:5e:40:35: 1a:89:44:30:11:54:df:51:02:1d:b2:90:52:99:2f: 92:69:db:0d:8f:2f:13:78:82:86:20:2f:c6:3f:5c: 8b:44:b6:a7:b3:bb:94:51:1e:82:ec:e2:e5:b8:26: 0c:f1:18:d9:b3:93:5f:11:fa:e8:df:94:f3:40:5c: 0e:34:96:f1:a0:3a:9e:f3:f1:0e:2d:36:b5:37:cf: aa:a8:92:3f:a4:ee:ac:d9:8f:ed:c7:13:f6:1b:1f: 0c:9b:85:6d:15:f7:64:dc:08:ce:9c:f9:bd:d5:f5: 72:11:b7:24:87:bd:c3:2c:35:9e:36:eb:33:b0:2d: d3:05:ab:48:00:4d:1c:d7:e6:22:db:79:84:ab:d1: 11:25:fe:6c:8d:26:2d:6d:08:fe:31:0c:5a:63:bd: 22:49:fc:88:8f:a8:24:3c:47:59:56:76:13:78:ea: b4:bb:4d:63:f4:5d:ae:ee:65:1b:07:b4:27:e9:eb: 96:57:08:b9:6b:18:bf:1f:6e:1f:db:88:b3:bf:d6: 52:fd:e3:f3:45:ed:7e:5c:93:e8:d0:ab:46:60:78: af:b1:ff:c9:a4:bb:ee:4a:89:f8:c7:d4:ea:e3:c5: c8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:14:1C:64:29:EA:AF:F7:1A:35:1F:B2:57:3D:F6:03:BB:95:F2:70 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:f1c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215985 Signature Algorithm: sha256WithRSAEncryption 74:e1:cc:bc:f4:c0:0b:76:ea:c6:79:90:bb:d4:ad:01:d6:ad: 9a:89:4f:0c:a5:d4:e0:4e:20:bf:6a:39:1b:8b:fc:d9:0c:d8: ed:b8:36:0f:0f:5c:a6:52:c4:e0:dd:6d:71:3d:a3:3a:52:e0: 72:93:92:07:ba:3f:dd:1c:ef:09:58:c0:47:0e:47:38:61:dc: ec:be:3e:c5:6e:b6:cb:8e:be:39:cc:0d:8e:14:84:8d:f7:79: f8:0d:81:98:d6:d1:47:f4:97:93:6c:0b:77:be:80:45:d4:f0: 88:14:4d:32:95:95:16:84:c0:48:01:78:b5:24:3b:ca:f4:22: 64:db:c2:ed:28:a5:2e:17:28:35:d1:d6:b1:c7:de:e1:48:31: f9:0d:c4:8c:b5:75:d2:f8:03:f8:75:58:e1:64:1a:bb:1c:3e: e3:d5:b2:64:15:e0:88:bf:e1:2c:0c:6f:f7:87:93:1d:2d:3a: b7:fe:14:f3:be:f5:dd:43:20:a9:7b:3c:69:d1:2e:01:f9:fa: 92:b8:e2:51:e1:a9:fc:46:9e:2a:4f:da:01:4e:ad:c5:b8:50: 0a:a5:95:6c:70:b7:ed:f4:b4:b0:ec:e6:45:66:a6:cb:e0:db: 76:60:d2:56:69:6a:bb:83:b4:6b:24:20:8d:ab:2e:d2:37:8b: 6f:f6:0f:21 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt7NiF3GXBOptb9zTqpePZMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNjE0MWM2NDI5ZWFhZmY3MWEzNTFmYjI1NzNkZjYwM2JiOTVmMjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvy0vBvpCQfml1+NFmliMoIM00kVo yrMz2GteQDUaiUQwEVTfUQIdspBSmS+SadsNjy8TeIKGIC/GP1yLRLans7uUUR6C 7OLluCYM8RjZs5NfEfro35TzQFwONJbxoDqe8/EOLTa1N8+qqJI/pO6s2Y/txxP2 Gx8Mm4VtFfdk3AjOnPm91fVyEbckh73DLDWeNuszsC3TBatIAE0c1+Yi23mEq9ER Jf5sjSYtbQj+MQxaY70iSfyIj6gkPEdZVnYTeOq0u01j9F2u7mUbB7Qn6euWVwi5 axi/H24f24izv9ZS/ePzRe1+XJPo0KtGYHivsf/JpLvuSon4x9Tq48XIrwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFBYUHGQp6q/3GjUfslc99gO7lfJwMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk3LzYzZDI4 Yi1kMTUyLTQ0Y2QtYjUwNC01ZDhmY2UwYTBiYjIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcvNjNkMjhi LWQxNTItNDRjZC1iNTA0LTVkOGZjZTBhMGJiMi8xL0ZoUWNaQ25xcl9jYU5SLXlW ejMyQTd1VjhuQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA8cMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwNLsTANBgkqhkiG9w0BAQsFAAOCAQEAdOHMvPTAC3bqxnmQu9StAdatmolP DKXU4E4gv2o5G4v82QzY7bg2Dw9cplLE4N1tcT2jOlLgcpOSB7o/3RzvCVjARw5H OGHc7L4+xW62y46+OcwNjhSEjfd5+A2BmNbRR/SXk2wLd76ARdTwiBRNMpWVFoTA SAF4tSQ7yvQiZNvC7SilLhcoNdHWscfe4Ugx+Q3EjLV10vgD+HVY4WQauxw+49Wy ZBXgiL/hLAxv94eTHS06t/4U87713UMgqXs8adEuAfn6krjiUeGp/EaeKk/aAU6t xbhQCqWVbHC37fS0sOzmRWamy+DbdmDSVmlqu4O0ayQgjasu0jeLb/YPIQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:36 2026 by rpki-client