This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer File: X8IN7HFLtUY7Fk4VpfihOYolUF0.cer (raw, json) Hash identifier: Et5x3SnCyudqTfWSbAO0jp5H3wbvHEwPtICqnpDHxo8= Subject key identifier: 5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C134BC248D6668140D7A7927814A6F4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:19:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 47539 IP: 93.95.27.0/24 IP: 2a13:d440::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:4b:c2:48:d6:66:81:40:d7:a7:92:78:14:a6:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:19:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5fc20dec714bb5463b164e15a5f8a1398a25505d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9b:fa:fe:a8:b9:32:fc:cd:85:a4:f4:5a:76: 00:5e:6f:5e:a9:f6:7c:c7:58:8e:d9:b5:92:80:3b: d4:87:9b:bb:4c:4e:08:99:da:3c:86:fd:d3:83:cc: 91:92:02:be:61:61:81:7e:a1:a4:0d:d4:3f:df:e5: 19:5f:a3:15:0b:e0:b3:c4:1b:73:48:60:24:20:7e: a5:e1:a3:62:88:8e:4c:4c:4c:7d:b8:a3:53:75:31: 35:18:77:ce:86:68:ad:e2:a1:6c:d4:a4:b0:5f:7d: 34:67:0d:56:e1:12:93:10:a1:61:ce:4d:56:2c:3e: 5c:de:5f:de:f9:2a:6f:14:7e:d1:49:40:cf:3e:41: ee:a0:85:53:63:04:ea:ea:0a:82:75:6d:cc:66:aa: b3:82:65:5a:c7:28:3d:fe:84:03:39:e0:7e:a3:9a: c0:75:bc:27:3f:7a:42:90:6a:ac:81:b9:ff:01:24: 1b:de:8c:73:4c:97:d1:b2:7c:f8:db:56:77:b9:e2: a1:21:0d:58:28:92:ac:f1:37:15:8b:d1:2b:ec:15: ec:54:94:ff:10:66:e4:ea:7d:f7:34:10:ee:97:7e: 21:4d:7c:61:a3:38:59:43:91:8c:ed:99:5f:2f:6e: 0b:5b:46:56:78:4f:1e:8d:0a:ad:4a:e9:fd:d4:8c: 8f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.95.27.0/24 IPv6: 2a13:d440::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 47539 Signature Algorithm: sha256WithRSAEncryption 00:bf:00:26:99:8f:f5:fa:41:c1:40:1d:06:c2:22:c4:44:b6: 10:0b:8f:24:d0:52:9a:aa:3f:03:e6:2e:40:9a:8d:03:8f:96: dd:b7:85:99:63:c6:2a:a9:03:0c:59:df:38:48:6f:f6:63:5b: 93:61:cf:8d:e3:b9:73:83:bc:bf:d8:f7:fa:2a:0a:b3:14:41: d0:0e:0a:fa:c8:0e:b9:d1:8b:89:ef:57:8a:67:f0:f4:af:56: 53:d2:c1:95:c7:94:e7:63:94:7e:28:51:06:ff:18:41:d0:e1: 32:4e:ad:ab:bb:bc:ad:df:0c:5e:59:2d:90:af:55:1b:e2:d4: cd:f7:d7:23:69:eb:d8:db:e4:09:14:03:6a:ce:7d:39:78:d2: a3:ee:35:dd:38:18:28:62:4a:49:e5:b6:54:32:5f:17:7d:4c: b7:be:a4:39:b4:49:22:5a:61:7c:b2:8b:6e:38:66:95:49:29: 01:c6:46:7a:ba:1e:ce:58:24:ff:22:92:cc:99:02:ca:7c:aa: bf:eb:ee:fb:ad:5f:32:d1:8c:91:4d:60:dc:d2:29:b8:b3:c1: 05:7d:fd:f6:c2:f3:f9:49:f7:19:8b:bb:88:1e:54:14:b9:68: 3c:15:2e:73:ac:bc:71:7a:8b:41:35:9c:6b:ac:9b:a1:97:c6: c5:41:20:f7 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt8E0vCSNZmgUDXp5J4FKb0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxOTU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZmMyMGRlYzcxNGJiNTQ2M2IxNjRlMTVhNWY4YTEzOThhMjU1MDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJv6/qi5MvzNhaT0WnYAXm9eqfZ8 x1iO2bWSgDvUh5u7TE4Imdo8hv3Tg8yRkgK+YWGBfqGkDdQ/3+UZX6MVC+CzxBtz SGAkIH6l4aNiiI5MTEx9uKNTdTE1GHfOhmit4qFs1KSwX300Zw1W4RKTEKFhzk1W LD5c3l/e+SpvFH7RSUDPPkHuoIVTYwTq6gqCdW3MZqqzgmVaxyg9/oQDOeB+o5rA dbwnP3pCkGqsgbn/ASQb3oxzTJfRsnz421Z3ueKhIQ1YKJKs8TcVi9Er7BXsVJT/ EGbk6n33NBDul34hTXxhozhZQ5GM7ZlfL24LW0ZWeE8ejQqtSun91IyPHQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFF/CDexxS7VGOxZOFaX4oTmKJVBdMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRhLzY3OTdh NS01NDEwLTRjMGQtYjliNy1kOTliOWY0OGQwZGMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEvNjc5N2E1 LTU0MTAtNGMwZC1iOWI3LWQ5OWI5ZjQ4ZDBkYy8xL1g4SU43SEZMdFVZN0ZrNFZw ZmloT1lvbFVGMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAXV8bMA0EAgACMAcDBQMqE9RAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwC5szANBgkqhkiG9w0BAQsFAAOCAQEAAL8AJpmP9fpB wUAdBsIixES2EAuPJNBSmqo/A+YuQJqNA4+W3beFmWPGKqkDDFnfOEhv9mNbk2HP jeO5c4O8v9j3+ioKsxRB0A4K+sgOudGLie9Ximfw9K9WU9LBlceU52OUfihRBv8Y QdDhMk6tq7u8rd8MXlktkK9VG+LUzffXI2nr2NvkCRQDas59OXjSo+413TgYKGJK SeW2VDJfF31Mt76kObRJIlphfLKLbjhmlUkpAcZGeroezlgk/yKSzJkCynyqv+vu +61fMtGMkU1g3NIpuLPBBX399sLz+Un3GYu7iB5UFLloPBUuc6y8cXqLQTWca6yb oZfGxUEg9w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:51:36 2026 by rpki-client