This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/L708fpx3-aiJSQVlDX9aQ5oHJl0.cer File: L708fpx3-aiJSQVlDX9aQ5oHJl0.cer (raw, json) Hash identifier: DsGfTRvTYbKRY/aHr+E+sw+N4nZZkNNPuFeHyrtH21M= Subject key identifier: 2F:BD:3C:7E:9C:77:F9:A8:89:49:05:65:0D:7F:5A:43:9A:07:26:5D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA34922D59DFC410CABBC2FF7EA7D18 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/17/eebdcd-896f-4675-a246-5dcbbde35dcd/1/L708fpx3-aiJSQVlDX9aQ5oHJl0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/17/eebdcd-896f-4675-a246-5dcbbde35dcd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204581 IP: 45.136.192.0/22 IP: 185.239.228.0/22 IP: 194.59.157.0/24 IP: 194.59.168.0/24 IP: 194.59.176.0/24 IP: 194.59.181.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:49:22:d5:9d:fc:41:0c:ab:bc:2f:f7:ea:7d:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2fbd3c7e9c77f9a8894905650d7f5a439a07265d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:67:fc:eb:47:f6:1c:30:65:77:17:53:62:bd: 9a:d6:29:4e:14:79:ed:76:9b:3c:ba:93:df:6a:e8: 2f:c0:32:e3:c5:82:aa:d5:24:39:cb:93:38:28:cd: 51:40:e4:83:ff:ac:a5:71:26:e0:55:2b:01:39:d7: 28:19:21:2d:f8:b2:4f:5b:c1:b9:0f:58:9d:2a:a6: 09:29:b0:32:21:6d:c8:c7:9a:89:1a:0f:26:a2:59: a2:1d:a4:36:13:f1:40:c3:ec:ff:40:85:db:47:a1: 39:ad:19:d7:bd:20:fc:c2:c8:5c:c7:58:7a:a7:b1: c6:ef:f1:74:7c:40:93:71:ba:eb:3a:5a:78:98:d5: 74:d1:da:c1:d7:ba:6d:2a:5a:7b:85:93:66:07:c8: e3:c9:d2:fa:31:96:d5:6f:99:73:fb:8d:ae:3f:99: d3:f1:0b:3f:a6:85:73:a4:3f:aa:8c:e5:14:62:5b: 4c:75:07:c8:af:fc:4c:ce:42:ff:39:b8:52:37:7c: a7:a0:9a:bf:bb:8e:76:43:bb:86:68:9e:4d:27:f0: b4:73:0b:17:f5:3c:f8:6c:56:95:39:43:53:01:69: 65:a7:b7:ab:df:a8:78:63:c1:e9:34:26:cc:42:33: 00:b9:e3:54:a0:63:3a:6e:d9:db:8c:ab:9e:d1:16: 48:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BD:3C:7E:9C:77:F9:A8:89:49:05:65:0D:7F:5A:43:9A:07:26:5D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/eebdcd-896f-4675-a246-5dcbbde35dcd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/eebdcd-896f-4675-a246-5dcbbde35dcd/1/L708fpx3-aiJSQVlDX9aQ5oHJl0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.136.192.0/22 185.239.228.0/22 194.59.157.0/24 194.59.168.0/24 194.59.176.0/24 194.59.181.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204581 Signature Algorithm: sha256WithRSAEncryption 18:85:f3:1c:b4:9a:53:21:cb:b2:de:4e:0b:3c:31:58:1d:a7: 00:3a:11:1b:17:06:fb:48:d0:a0:d5:55:4d:62:e3:2d:8f:3f: 32:66:70:6c:19:29:bf:5e:d5:dc:6b:cb:a4:69:9c:80:d0:69: b3:f2:aa:76:d3:64:ff:a5:a9:48:fc:fe:af:38:4c:ad:39:04: 1b:41:9c:f3:37:3a:f0:e6:b3:c6:1c:a8:89:36:9d:82:0d:59: 73:8f:ab:54:6e:6c:51:21:ed:a2:9b:d1:9b:bb:d2:c0:64:f5: ce:bf:05:4f:7f:6a:f9:d7:b9:89:eb:3f:b5:b9:f3:23:8c:c7: 53:c3:0a:62:07:46:5e:4c:38:74:29:0c:0f:02:4c:d9:38:5f: 3a:35:ab:d1:b3:f4:87:31:4e:8a:66:50:f0:3c:c9:8e:7d:93: a0:2e:e7:22:73:55:f2:80:6b:c7:a7:7b:70:af:e4:bb:4d:d8: 97:06:03:cc:15:86:0c:d9:05:25:8b:19:a2:b4:cf:79:cf:4c: f7:d4:0e:d5:45:fe:ff:73:c7:e4:b1:cd:fd:f5:f7:0d:d9:0c: b3:82:93:92:c9:23:bd:ec:d9:b3:bf:40:28:a5:77:c1:14:1c: 1d:6f:5e:60:2c:42:1f:8d:f8:b3:34:d3:32:93:26:66:ad:48: e3:c2:4a:d5 -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgISAZt7o0ki1Z38QQyrvC/36n0YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZmJkM2M3ZTljNzdmOWE4ODk0OTA1NjUwZDdmNWE0MzlhMDcyNjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmf860f2HDBldxdTYr2a1ilOFHnt dps8upPfaugvwDLjxYKq1SQ5y5M4KM1RQOSD/6ylcSbgVSsBOdcoGSEt+LJPW8G5 D1idKqYJKbAyIW3Ix5qJGg8molmiHaQ2E/FAw+z/QIXbR6E5rRnXvSD8wshcx1h6 p7HG7/F0fECTcbrrOlp4mNV00drB17ptKlp7hZNmB8jjydL6MZbVb5lz+42uP5nT 8Qs/poVzpD+qjOUUYltMdQfIr/xMzkL/ObhSN3ynoJq/u452Q7uGaJ5NJ/C0cwsX 9Tz4bFaVOUNTAWllp7er36h4Y8HpNCbMQjMAueNUoGM6btnbjKue0RZIAQIDAQAB o4ICvjCCArowHQYDVR0OBBYEFC+9PH6cd/moiUkFZQ1/WkOaByZdMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE3L2VlYmRj ZC04OTZmLTQ2NzUtYTI0Ni01ZGNiYmRlMzVkY2QvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcvZWViZGNk LTg5NmYtNDY3NS1hMjQ2LTVkY2JiZGUzNWRjZC8xL0w3MDhmcHgzLWFpSlNRVmxE WDlhUTVvSEpsMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUF BwEHAQH/BC4wLDAqBAIAATAkAwQCLYjAAwQCue/kAwQAwjudAwQAwjuoAwQAwjuw AwQAwju1MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMfJTANBgkqhkiG9w0BAQsF AAOCAQEAGIXzHLSaUyHLst5OCzwxWB2nADoRGxcG+0jQoNVVTWLjLY8/MmZwbBkp v17V3GvLpGmcgNBps/KqdtNk/6WpSPz+rzhMrTkEG0Gc8zc68OazxhyoiTadgg1Z c4+rVG5sUSHtopvRm7vSwGT1zr8FT39q+de5ies/tbnzI4zHU8MKYgdGXkw4dCkM DwJM2ThfOjWr0bP0hzFOimZQ8DzJjn2ToC7nInNV8oBrx6d7cK/ku03YlwYDzBWG DNkFJYsZorTPec9M99QO1UX+/3PH5LHN/fX3DdkMs4KTkskjvezZs79AKKV3wRQc HW9eYCxCH434szTTMpMmZq1I48JK1Q== -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:13 2026 by rpki-client