This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MfePPgBBCSbb2JyOj1xACxArA3k.cer File: MfePPgBBCSbb2JyOj1xACxArA3k.cer (raw, json) Hash identifier: 4KeMzrQ//jZsVKCx6ApbsEp3OvWoW6MgzrN72gV+/6Y= Subject key identifier: 31:F7:8F:3E:00:41:09:26:DB:D8:9C:8E:8F:5C:40:0B:10:2B:03:79 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F14DB36765D66C8215FE0C58448367A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/MfePPgBBCSbb2JyOj1xACxArA3k.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:20:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198256 IP: 217.194.128.0/23 IP: 217.194.158.0/23 IP: 2a14:6f80::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:db:36:76:5d:66:c8:21:5f:e0:c5:84:48:36:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:20:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31f78f3e00410926dbd89c8e8f5c400b102b0379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:47:fe:3a:2e:3b:04:bf:ff:2f:1b:76:39:10: 20:a9:f6:84:e5:8d:24:d5:b9:7f:6c:d1:1c:d0:bb: 1d:64:9a:6b:78:e4:95:11:91:1b:f2:25:d5:cb:3e: 95:75:ea:c3:13:81:bb:8d:68:3c:ac:ba:9e:c5:63: 69:26:54:07:2b:b6:dd:eb:c4:83:15:87:30:fb:94: e8:36:6d:36:61:db:ac:0b:a0:83:86:7b:3f:bc:b6: d1:38:a5:71:48:06:c9:c3:d4:00:59:f3:99:55:17: de:b7:d8:ff:bf:74:28:e6:cf:00:b4:59:ac:20:31: f7:07:14:7e:d6:c4:c9:08:be:d7:b3:3e:e8:92:3f: 48:ea:97:c9:d6:53:5d:a9:7a:07:12:e6:be:e0:a5: 2d:05:be:a0:e0:22:53:b2:7f:ab:29:7d:08:8f:26: c1:13:12:a3:7b:07:f2:76:6c:bd:58:0b:4e:ad:4f: 0f:70:a7:d5:f3:4e:a0:8d:8e:fa:8f:fe:6c:81:b6: b3:94:c7:01:ab:a5:e1:6a:c0:97:67:b4:7c:e3:df: 6f:71:82:da:9a:33:94:27:7f:65:f8:67:51:57:1c: 6c:81:69:bd:ec:06:2b:81:50:8e:cb:59:8e:59:01: d6:48:77:9a:c2:9e:d7:e2:2e:fd:92:f3:5c:29:5d: dd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F7:8F:3E:00:41:09:26:DB:D8:9C:8E:8F:5C:40:0B:10:2B:03:79 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/MfePPgBBCSbb2JyOj1xACxArA3k.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.194.128.0/23 217.194.158.0/23 IPv6: 2a14:6f80::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198256 Signature Algorithm: sha256WithRSAEncryption 1e:2d:8d:bf:65:75:d6:90:c7:3d:d7:32:6c:ba:c8:18:b4:1a: 41:69:83:22:2d:a2:81:a3:b3:89:7d:6a:3b:c6:6f:1b:bf:b2: 23:6a:cb:e6:65:dc:4e:a7:79:21:a7:95:ad:25:d1:38:b6:4c: e6:02:f5:a4:87:16:aa:66:4c:ec:c1:f5:e4:31:de:aa:27:c7: 2b:60:49:1a:91:c1:69:46:f3:50:ee:c3:9e:2c:18:34:34:05: 44:8c:ea:ba:44:20:24:c8:53:26:08:2c:43:44:33:f6:96:e3: 8d:af:b7:ea:75:75:00:75:d5:e2:dc:1a:9d:d4:f2:d4:01:b4: fa:4c:35:fc:8e:7b:1d:20:18:de:ce:c4:3a:50:7e:d3:63:4c: c7:15:16:f9:17:af:2e:16:11:74:6a:b7:d8:71:89:71:bd:de: 9e:23:0f:98:d6:f6:ab:26:d8:57:85:8e:1c:e0:05:62:42:0f: b2:00:aa:87:80:d2:0c:b0:ed:f3:08:3b:ca:e7:02:b1:7f:d1: a2:c2:b8:d0:50:6e:2a:63:2a:24:dc:bf:cb:d1:80:9c:6d:19: 3e:48:7f:99:78:d5:fe:08:5f:c1:7e:1b:d7:31:b2:3f:31:bc: 4b:1c:4d:d0:2b:4e:f3:42:6e:2e:73:42:2a:14:e2:fe:0f:08: 26:34:a0:bf -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt/FNs2dl1myCFf4MWESDZ6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMDMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWY3OGYzZTAwNDEwOTI2ZGJkODljOGU4ZjVjNDAwYjEwMmIwMzc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Uf+Oi47BL//Lxt2ORAgqfaE5Y0k 1bl/bNEc0LsdZJpreOSVEZEb8iXVyz6VderDE4G7jWg8rLqexWNpJlQHK7bd68SD FYcw+5ToNm02YdusC6CDhns/vLbROKVxSAbJw9QAWfOZVRfet9j/v3Qo5s8AtFms IDH3BxR+1sTJCL7Xsz7okj9I6pfJ1lNdqXoHEua+4KUtBb6g4CJTsn+rKX0IjybB ExKjewfydmy9WAtOrU8PcKfV806gjY76j/5sgbazlMcBq6XhasCXZ7R8499vcYLa mjOUJ39l+GdRVxxsgWm97AYrgVCOy1mOWQHWSHeawp7X4i79kvNcKV3dzQIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFDH3jz4AQQkm29icjo9cQAsQKwN5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2RiLzA3NTYw YS0wNjJiLTQ4MDItODlhZi0xOTE5MmU4MWI4MzEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIvMDc1NjBh LTA2MmItNDgwMi04OWFmLTE5MTkyZTgxYjgzMS8xL01mZVBQZ0JCQ1NiYjJKeU9q MXhBQ3hBckEzay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQB2cKAAwQB2cKeMA0EAgACMAcDBQMqFG+AMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMGcDANBgkqhkiG9w0BAQsFAAOCAQEAHi2N v2V11pDHPdcybLrIGLQaQWmDIi2igaOziX1qO8ZvG7+yI2rL5mXcTqd5IaeVrSXR OLZM5gL1pIcWqmZM7MH15DHeqifHK2BJGpHBaUbzUO7DniwYNDQFRIzqukQgJMhT JggsQ0Qz9pbjja+36nV1AHXV4twandTy1AG0+kw1/I57HSAY3s7EOlB+02NMxxUW +RevLhYRdGq32HGJcb3eniMPmNb2qybYV4WOHOAFYkIPsgCqh4DSDLDt8wg7yucC sX/RosK40FBuKmMqJNy/y9GAnG0ZPkh/mXjV/ghfwX4b1zGyPzG8SxxN0CtO80Ju LnNCKhTi/g8IJjSgvw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:46 2026 by rpki-client