This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer File: XICE2xnxE9gbZEg5P60cEyxYT80.cer (raw, json) Hash identifier: 9oCkSxj5hWdmTjsLqMn8/gEenWaLlyGJFyjVvZ51EVo= Subject key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B36A6B33349632F0A44C45832C78457 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:57 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210583 IP: 176.116.7.0/24 IP: 2a11:e040::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:a6:b3:33:49:63:2f:0a:44:c4:58:32:c7:84:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c8084db19f113d81b6448393fad1c132c584fcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:76:2c:62:7a:ac:76:59:82:eb:e4:18:40:e1: 5d:0f:49:38:51:af:81:10:f2:df:70:22:14:d7:99: a7:18:9d:c6:8a:74:5e:fb:30:c4:bc:43:84:79:94: 2c:89:e8:29:7a:af:7f:79:a9:cf:69:3a:76:61:72: d3:85:9c:d2:86:bf:53:9f:fa:04:4e:4e:13:01:e5: 1a:17:7e:a0:b9:c9:90:e5:dc:b7:b9:d2:b1:e5:8c: 5e:25:49:93:e2:c4:c3:95:68:4a:e4:61:cc:09:31: 12:6e:a0:26:fb:1c:45:73:fc:44:0a:f0:23:71:83: 82:8c:5f:b0:12:2a:16:0b:35:44:1b:b1:c6:48:5b: 44:c7:b8:0b:5c:26:09:4c:7e:20:88:ce:15:54:43: 5a:07:0c:fa:04:1d:b6:a3:8a:75:e4:6d:77:4c:e9: 0b:5e:21:38:ab:98:6e:7a:f1:83:ba:e4:68:33:7f: 30:0c:6a:a2:b8:92:f5:cf:8e:96:a9:52:cc:c0:69: fb:2f:05:fb:ee:e5:3a:59:10:8d:92:46:cd:14:1c: 72:03:0d:be:81:e6:77:62:e7:30:cf:0a:1a:67:13: cc:f6:56:bc:12:4e:48:4d:16:1e:79:66:4b:81:52: fd:fa:05:62:ea:ac:b6:04:d7:d7:a6:d7:d2:cc:91: 67:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.116.7.0/24 IPv6: 2a11:e040::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210583 Signature Algorithm: sha256WithRSAEncryption 5d:0d:b1:37:98:0f:fc:f9:38:c3:bd:7a:35:f8:9b:48:2a:21: 5e:ef:2a:45:17:00:82:e0:b4:25:de:32:4c:32:41:9b:da:0c: 2f:b3:a4:0f:10:2c:61:a4:0b:dc:3a:88:4c:d7:0a:d3:39:42: f3:d6:2f:51:6d:ed:e3:27:a0:fc:e8:be:1d:a2:7d:2a:34:e9: 18:b2:4e:5e:c4:65:8b:30:3f:47:e5:6a:8e:df:d4:04:37:56: ac:6f:34:4b:30:a0:26:3f:7f:e1:45:43:b0:a2:2a:5d:20:16: ff:a9:00:d6:d6:60:75:39:57:ca:ae:5e:9a:96:19:86:e1:fd: a0:a4:f2:58:f7:ee:92:7d:4e:9f:9a:96:8a:94:cf:78:a1:c6: 04:ae:74:35:21:34:a3:11:3a:9e:5b:bb:20:9c:0f:45:5e:21: 12:e2:01:9e:ac:5b:de:83:7f:65:1b:92:0f:8f:17:51:c5:70: ef:fd:b9:75:fb:49:47:93:87:f6:80:46:69:f8:8c:1b:84:72: 1a:cb:84:15:65:d2:00:bb:e9:6b:99:34:b2:a4:be:42:e4:cc: 14:5a:9f:67:b3:c8:35:40:dc:cc:54:e5:87:b5:8d:63:8d:d8: 02:03:88:b4:3b:01:99:d9:33:e9:c4:a1:3c:51:4e:af:24:22: 46:bd:78:ea -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt7NqazM0ljLwpExFgyx4RXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzgwODRkYjE5ZjExM2Q4MWI2NDQ4MzkzZmFkMWMxMzJjNTg0ZmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynYsYnqsdlmC6+QYQOFdD0k4Ua+B EPLfcCIU15mnGJ3GinRe+zDEvEOEeZQsiegpeq9/eanPaTp2YXLThZzShr9Tn/oE Tk4TAeUaF36gucmQ5dy3udKx5YxeJUmT4sTDlWhK5GHMCTESbqAm+xxFc/xECvAj cYOCjF+wEioWCzVEG7HGSFtEx7gLXCYJTH4giM4VVENaBwz6BB22o4p15G13TOkL XiE4q5huevGDuuRoM38wDGqiuJL1z46WqVLMwGn7LwX77uU6WRCNkkbNFBxyAw2+ geZ3YucwzwoaZxPM9la8Ek5ITRYeeWZLgVL9+gVi6qy2BNfXptfSzJFnOwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFFyAhNsZ8RPYG2RIOT+tHBMsWE/NMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUzLzY3Yzdl OC1jMDc1LTQwYTEtYTNmZi04MTkwNjJhMTJmM2QvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvNjdjN2U4 LWMwNzUtNDBhMS1hM2ZmLTgxOTA2MmExMmYzZC8xL1hJQ0UyeG54RTlnYlpFZzVQ NjBjRXl4WVQ4MC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAsHQHMA0EAgACMAcDBQMqEeBAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM2lzANBgkqhkiG9w0BAQsFAAOCAQEAXQ2xN5gP/Pk4 w716NfibSCohXu8qRRcAguC0Jd4yTDJBm9oML7OkDxAsYaQL3DqITNcK0zlC89Yv UW3t4yeg/Oi+HaJ9KjTpGLJOXsRlizA/R+Vqjt/UBDdWrG80SzCgJj9/4UVDsKIq XSAW/6kA1tZgdTlXyq5empYZhuH9oKTyWPfukn1On5qWipTPeKHGBK50NSE0oxE6 nlu7IJwPRV4hEuIBnqxb3oN/ZRuSD48XUcVw7/25dftJR5OH9oBGafiMG4RyGsuE FWXSALvpa5k0sqS+QuTMFFqfZ7PINUDczFTlh7WNY43YAgOItDsBmdkz6cShPFFO ryQiRr146g== -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:52 2026 by rpki-client