This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Fvg1mB4eeJNH9H_Mm7qsaxXWh8E.cer File: Fvg1mB4eeJNH9H_Mm7qsaxXWh8E.cer (raw, json) Hash identifier: xGboup9YCiwv81O5+dECQVinUYzjCiMls4NVTZg+XWg= Subject key identifier: 16:F8:35:98:1E:1E:78:93:47:F4:7F:CC:9B:BA:AC:6B:15:D6:87:C1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B775942F4D0DD9AB6ABE9AE808EEC0910 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8efe-8a15-4c6b-a00b-c1a8e5a6dc56/1/Fvg1mB4eeJNH9H_Mm7qsaxXWh8E.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8efe-8a15-4c6b-a00b-c1a8e5a6dc56/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:17 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 8887 IP: 31.170.64.0/19 IP: 2a01:6b80::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:42:f4:d0:dd:9a:b6:ab:e9:ae:80:8e:ec:09:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=16f835981e1e789347f47fcc9bbaac6b15d687c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:60:3d:63:83:33:3f:c7:73:15:bf:8e:a2:97: c0:32:b0:8c:f7:71:41:a7:26:a6:59:2b:fd:e8:5d: d3:d9:6b:ab:49:44:3c:fe:e6:5f:00:f7:ea:07:ee: e2:24:15:a7:45:0b:9d:2b:df:d8:7e:35:c9:97:53: 6e:1f:05:7b:70:a7:66:d1:a1:51:56:0c:65:38:ea: 34:29:eb:9b:6b:e3:39:f8:25:e2:90:31:af:5b:92: 77:74:7e:52:6a:6f:a0:78:75:15:94:e4:0e:56:bc: 13:e7:de:15:4b:3d:fb:36:ce:41:f4:8c:34:21:ea: 20:23:06:bb:d7:bb:42:cf:83:27:3c:ec:48:25:b0: 4e:c7:b7:59:db:a0:0d:37:62:44:b1:78:48:96:e2: 1d:fb:90:fa:85:aa:04:45:12:01:de:3e:d9:57:5b: 13:1d:68:63:b5:29:88:09:50:74:49:e5:7d:14:1a: e3:c8:a8:67:a6:fa:59:7f:4f:ec:26:d4:4d:c1:22: 29:47:9c:fa:22:b1:2d:ac:31:49:d0:89:68:88:e4: 22:71:a2:b2:04:35:dd:12:1a:ed:bc:54:4f:e6:30: d6:3c:9d:a6:c1:d0:5b:37:20:68:7a:f5:9f:fc:4e: 81:c1:91:13:83:76:6f:54:e4:69:d5:48:1f:48:c0: 63:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F8:35:98:1E:1E:78:93:47:F4:7F:CC:9B:BA:AC:6B:15:D6:87:C1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8efe-8a15-4c6b-a00b-c1a8e5a6dc56/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8efe-8a15-4c6b-a00b-c1a8e5a6dc56/1/Fvg1mB4eeJNH9H_Mm7qsaxXWh8E.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.170.64.0/19 IPv6: 2a01:6b80::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 8887 Signature Algorithm: sha256WithRSAEncryption 46:51:dc:7c:eb:7a:2d:4d:76:ef:71:84:ba:fc:db:83:68:65: 60:de:5e:5b:a6:23:e0:6e:2b:9e:36:c7:80:ee:dc:e2:38:8e: 1d:bd:95:ff:ee:bc:71:a6:0c:ce:f2:f6:2c:87:04:3e:1d:14: b0:ac:86:75:48:8e:be:5f:7f:1a:be:62:65:26:00:86:1c:85: 82:19:1c:6c:5e:20:92:ad:6a:4c:33:69:56:e1:f5:e8:5f:79: 27:1e:ed:5f:0d:08:f5:6c:aa:bd:32:54:d9:ff:e6:a0:e9:ee: 78:c6:68:d7:af:ea:95:b7:3c:94:e8:08:32:c2:be:29:f5:93: e0:d3:b6:3f:33:8e:17:ff:c2:19:63:b6:8e:28:3f:3d:5f:43: 0a:a9:c1:ea:af:3e:27:cc:69:a7:2f:ee:1b:07:e0:4b:26:9c: 3c:82:98:ea:bc:c5:84:24:2a:c2:fc:46:1d:e6:2c:d7:eb:0e: cc:dc:42:3c:28:d0:28:3c:f2:c6:ad:93:b4:27:4d:42:61:9b: ff:b0:51:31:d5:d1:71:91:87:6c:8e:4e:60:58:e5:21:6b:1f: 70:d9:71:94:02:93:ed:42:ba:0d:c1:21:8e:5f:7d:32:af:c1: 23:05:9a:5f:ca:32:fb:e8:e2:fe:ce:5a:dd:b9:a2:99:33:e9: 05:24:55:f8 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgISAZt3WUL00N2atqvproCO7AkQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNmY4MzU5ODFlMWU3ODkzNDdmNDdmY2M5YmJhYWM2YjE1ZDY4N2MxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7mA9Y4MzP8dzFb+OopfAMrCM93FB pyamWSv96F3T2WurSUQ8/uZfAPfqB+7iJBWnRQudK9/YfjXJl1NuHwV7cKdm0aFR VgxlOOo0Keuba+M5+CXikDGvW5J3dH5Sam+geHUVlOQOVrwT594VSz37Ns5B9Iw0 IeogIwa717tCz4MnPOxIJbBOx7dZ26ANN2JEsXhIluId+5D6haoERRIB3j7ZV1sT HWhjtSmICVB0SeV9FBrjyKhnpvpZf0/sJtRNwSIpR5z6IrEtrDFJ0IloiOQicaKy BDXdEhrtvFRP5jDWPJ2mwdBbNyBoevWf/E6BwZETg3ZvVORp1UgfSMBjFwIDAQAB o4ICrjCCAqowHQYDVR0OBBYEFBb4NZgeHniTR/R/zJu6rGsV1ofBMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZkLzRlOGVm ZS04YTE1LTRjNmItYTAwYi1jMWE4ZTVhNmRjNTYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQvNGU4ZWZl LThhMTUtNGM2Yi1hMDBiLWMxYThlNWE2ZGM1Ni8xL0Z2ZzFtQjRlZUpOSDlIX01t N3FzYXhYV2g4RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQFH6pAMA0EAgACMAcDBQAqAWuAMBkGCCsGAQUF BwEIAQH/BAowCKAGMAQCAiK3MA0GCSqGSIb3DQEBCwUAA4IBAQBGUdx863otTXbv cYS6/NuDaGVg3l5bpiPgbiueNseA7tziOI4dvZX/7rxxpgzO8vYshwQ+HRSwrIZ1 SI6+X38avmJlJgCGHIWCGRxsXiCSrWpMM2lW4fXoX3knHu1fDQj1bKq9MlTZ/+ag 6e54xmjXr+qVtzyU6Agywr4p9ZPg07Y/M44X/8IZY7aOKD89X0MKqcHqrz4nzGmn L+4bB+BLJpw8gpjqvMWEJCrC/EYd5izX6w7M3EI8KNAoPPLGrZO0J01CYZv/sFEx 1dFxkYdsjk5gWOUhax9w2XGUApPtQroNwSGOX30yr8EjBZpfyjL76OL+zlrduaKZ M+kFJFX4 -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:16 2026 by rpki-client