This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XEBFShsXZ5XwIVdTR3lL2fBEJ6w.cer File: XEBFShsXZ5XwIVdTR3lL2fBEJ6w.cer (raw, json) Hash identifier: AEASskJlA+ft11oPyETIV+a9lZj0cUwB9DTaEQ5eGEI= Subject key identifier: 5C:40:45:4A:1B:17:67:95:F0:21:57:53:47:79:4B:D9:F0:44:27:AC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5C5D5F7932D81EF5FA1DBF20EF1C74 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7c/3c367a-1f9b-4c92-8978-ca0448e7f3a3/1/XEBFShsXZ5XwIVdTR3lL2fBEJ6w.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7c/3c367a-1f9b-4c92-8978-ca0448e7f3a3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:19:23 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 214740 IP: 2001:67c:ebc::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:5d:5f:79:32:d8:1e:f5:fa:1d:bf:20:ef:1c:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c40454a1b176795f021575347794bd9f04427ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:54:30:c1:56:b6:b4:e3:84:ce:0b:e0:9d:f2: ff:5b:8d:81:1e:67:fe:5d:9d:20:f0:22:f6:e2:e2: 5a:e4:c9:55:e5:32:e3:de:2f:9e:6e:aa:bd:23:54: dc:7b:fc:ef:fb:36:e0:4c:33:a8:a9:6d:91:f9:33: f2:27:1e:60:11:26:23:fa:b6:a1:a7:f4:4a:06:60: 1f:b9:93:9f:7a:c0:45:cf:a1:7e:92:31:fa:e3:f2: 28:79:00:f3:73:7a:b7:8e:73:6e:91:c2:67:89:8a: 48:38:64:dd:a2:6b:20:36:13:c9:5f:f8:e3:d8:63: 4f:0e:52:02:4d:b7:7d:a8:ca:86:01:bf:57:81:f1: 8e:3e:0d:f7:80:12:aa:97:05:60:37:40:ff:a1:04: aa:95:91:af:5f:15:f6:92:33:d4:7a:bb:38:cd:d5: fa:20:ad:71:ff:b5:30:af:f6:71:aa:e3:35:1d:89: 55:50:e3:d6:c2:00:40:df:b6:60:26:61:b0:76:18: 83:14:24:0f:e6:ea:3b:bf:59:94:e6:58:e5:1d:a9: 6e:d5:a4:7c:fc:17:e8:14:c7:dc:31:96:e0:f4:90: 74:43:37:ba:de:3e:c0:97:34:f3:1a:ea:0a:6a:1f: db:9c:32:07:bf:2b:06:fb:71:b3:91:64:c2:8a:29: e7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:40:45:4A:1B:17:67:95:F0:21:57:53:47:79:4B:D9:F0:44:27:AC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/3c367a-1f9b-4c92-8978-ca0448e7f3a3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/3c367a-1f9b-4c92-8978-ca0448e7f3a3/1/XEBFShsXZ5XwIVdTR3lL2fBEJ6w.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:ebc::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 214740 Signature Algorithm: sha256WithRSAEncryption 07:57:a3:f8:de:41:8f:c9:22:56:8a:01:e1:de:21:57:fb:a8: 8d:b5:4b:22:9e:ed:62:f5:ee:b3:9d:fa:0f:08:b8:8b:75:f8: fb:69:3b:7e:c7:6f:19:10:18:2c:3f:91:8f:44:03:9e:e3:ed: f4:5b:28:73:35:03:b5:f2:d5:3f:05:f5:00:75:53:94:cb:61: 17:dd:4b:8c:b0:b3:6c:41:6f:40:f3:ec:c5:46:e1:59:e2:bc: d3:4e:66:76:35:92:90:81:9f:37:b1:bf:ce:26:44:0d:79:88: cf:81:b1:3d:31:0b:2b:48:56:7a:a9:e1:07:2c:ee:e5:50:f5: 3e:b6:32:4d:6e:4e:be:d5:db:53:47:23:d0:78:92:6f:38:df: 64:1d:98:b8:a2:6c:65:0e:98:a0:9f:8c:fc:bf:58:d6:25:09: 59:db:84:7f:a6:ab:85:91:96:9b:91:46:7f:9d:9c:03:70:2f: 9e:b4:fa:9e:50:a4:15:da:2d:d9:39:41:ef:d0:33:24:29:55: 5c:d3:6c:f8:e9:23:6d:8a:e6:4c:13:12:6e:f2:3b:79:ca:74: c7:b0:c7:18:75:2b:b9:d2:f7:44:8f:3d:66:a5:73:ea:8b:2f: d7:0a:2e:80:82:f2:d9:d9:79:9a:0a:3b:3d:5f:25:ef:09:49: 50:78:46:5c -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt9XF1feTLYHvX6Hb8g7xx0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzQwNDU0YTFiMTc2Nzk1ZjAyMTU3NTM0Nzc5NGJkOWYwNDQyN2FjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFQwwVa2tOOEzgvgnfL/W42BHmf+ XZ0g8CL24uJa5MlV5TLj3i+ebqq9I1Tce/zv+zbgTDOoqW2R+TPyJx5gESYj+rah p/RKBmAfuZOfesBFz6F+kjH64/IoeQDzc3q3jnNukcJniYpIOGTdomsgNhPJX/jj 2GNPDlICTbd9qMqGAb9XgfGOPg33gBKqlwVgN0D/oQSqlZGvXxX2kjPUers4zdX6 IK1x/7Uwr/ZxquM1HYlVUOPWwgBA37ZgJmGwdhiDFCQP5uo7v1mU5ljlHalu1aR8 /BfoFMfcMZbg9JB0Qze63j7AlzTzGuoKah/bnDIHvysG+3GzkWTCiinnrQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFFxARUobF2eV8CFXU0d5S9nwRCesMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdjLzNjMzY3 YS0xZjliLTRjOTItODk3OC1jYTA0NDhlN2YzYTMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2MvM2MzNjdh LTFmOWItNGM5Mi04OTc4LWNhMDQ0OGU3ZjNhMy8xL1hFQkZTaHNYWjVYd0lWZFRS M2xMMmZCRUo2dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA68MBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwNG1DANBgkqhkiG9w0BAQsFAAOCAQEAB1ej+N5Bj8kiVooB4d4hV/uojbVL Ip7tYvXus536Dwi4i3X4+2k7fsdvGRAYLD+Rj0QDnuPt9FsoczUDtfLVPwX1AHVT lMthF91LjLCzbEFvQPPsxUbhWeK8005mdjWSkIGfN7G/ziZEDXmIz4GxPTELK0hW eqnhByzu5VD1PrYyTW5OvtXbU0cj0HiSbzjfZB2YuKJsZQ6YoJ+M/L9Y1iUJWduE f6arhZGWm5FGf52cA3AvnrT6nlCkFdot2TlB79AzJClVXNNs+OkjbYrmTBMSbvI7 ecp0x7DHGHUrudL3RI89ZqVz6osv1wougILy2dl5mgo7PV8l7wlJUHhGXA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:38 2026 by rpki-client