This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/afM-l5tD6I0OXsp5h5R9sh73yrk.cer File: afM-l5tD6I0OXsp5h5R9sh73yrk.cer (raw, json) Hash identifier: xzw7KJWQwZ5PH7Wh4rr+hNsvxoJaAoiHMbh2d+X6qdk= Subject key identifier: 69:F3:3E:97:9B:43:E8:8D:0E:5E:CA:79:87:94:7D:B2:1E:F7:CA:B9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE4919249F87F035575A1DFF6D3231 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:19:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 195.78.46.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:49:19:24:9f:87:f0:35:57:5a:1d:ff:6d:32:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f33e979b43e88d0e5eca7987947db21ef7cab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ba:b5:4e:6c:07:02:f5:34:01:15:85:dd:38: 51:a8:96:be:ed:bc:b6:5c:86:ca:91:0f:cf:c5:f0: c1:94:27:d6:d8:e8:23:ea:4c:3c:e8:cf:f5:37:c1: 89:65:eb:2b:5f:c4:de:86:3d:24:d2:57:72:5f:97: ae:ac:a0:73:e6:79:19:51:dc:fc:3b:ec:3c:e8:26: 0a:d3:26:f6:ba:5a:7a:11:22:e6:0b:de:23:3d:07: 4a:db:2b:85:f9:25:97:5a:45:ae:fa:0d:85:90:e3: 4c:79:27:02:f6:7e:b0:1d:62:93:75:d9:9c:a3:06: 36:94:e7:59:0a:7a:25:2c:78:8a:d5:59:c9:37:d1: aa:ec:ea:17:e4:9d:df:41:8e:aa:47:f5:d5:f8:db: aa:a3:91:54:73:c7:07:24:27:6b:bf:b3:89:8d:4c: 58:03:d3:64:7d:70:34:28:2a:e4:64:d7:7c:e0:d6: 47:65:12:63:10:c4:c7:69:c0:fb:89:c2:51:f8:aa: 7f:57:fb:13:60:0c:13:66:e4:f1:e5:2b:7c:e1:f6: ed:72:0f:b4:cf:5d:76:97:86:d2:b3:63:eb:b3:95: 3b:3a:63:b4:4d:77:38:d0:c4:36:d1:9f:d2:20:5f: 58:e2:b3:6c:c8:fe:37:c3:c0:11:32:a0:82:c9:cb: 5a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F3:3E:97:9B:43:E8:8D:0E:5E:CA:79:87:94:7D:B2:1E:F7:CA:B9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.78.46.0/23 Signature Algorithm: sha256WithRSAEncryption 04:3c:d9:0b:4b:02:7e:30:09:6e:d8:f3:e0:c2:d8:fd:3f:fa: bd:d1:b3:96:ab:68:47:ae:72:27:86:8f:6f:8c:85:e9:13:1b: ca:0e:6f:79:29:ca:df:5e:4a:80:e5:6f:76:c1:84:df:2f:84: 1a:3b:c1:ee:0f:59:4d:78:f7:0b:e8:79:bd:39:18:49:ed:14: f3:a3:c6:53:26:5e:2e:8b:13:4e:7e:22:fc:05:b9:34:bb:47: d2:1e:ee:e7:20:a5:7a:09:93:2b:a2:85:43:3c:73:33:3a:b3: a0:e1:85:84:82:d9:b7:88:53:8f:ff:2a:f9:15:02:fe:6c:b5: a4:3b:de:f1:bd:2a:54:ed:93:79:82:82:01:36:3f:e0:4a:52: 4e:d5:24:20:e1:d5:fd:6f:8b:f5:02:7f:78:31:5c:ff:8f:a9: 7e:fd:d4:7a:c5:bd:dd:f5:53:32:47:74:1f:59:84:91:41:68: 41:00:08:1a:32:46:3e:25:cc:0f:36:9b:3c:a3:52:84:cf:7b: 36:19:8c:41:d0:2b:1e:80:c0:ce:c7:a2:a9:78:83:5d:da:31: 97:fa:ea:a7:13:bb:4a:a9:68:31:59:a7:cc:58:1a:58:c5:42: ed:ea:1e:94:57:ec:1a:7e:36:99:19:40:d7:70:ed:0a:d3:9f: 37:58:e7:c8 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt87kkZJJ+H8DVXWh3/bTIxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OWYzM2U5NzliNDNlODhkMGU1ZWNhNzk4Nzk0N2RiMjFlZjdjYWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbq1TmwHAvU0ARWF3ThRqJa+7by2 XIbKkQ/PxfDBlCfW2Ogj6kw86M/1N8GJZesrX8Tehj0k0ldyX5eurKBz5nkZUdz8 O+w86CYK0yb2ulp6ESLmC94jPQdK2yuF+SWXWkWu+g2FkONMeScC9n6wHWKTddmc owY2lOdZCnolLHiK1VnJN9Gq7OoX5J3fQY6qR/XV+Nuqo5FUc8cHJCdrv7OJjUxY A9NkfXA0KCrkZNd84NZHZRJjEMTHacD7icJR+Kp/V/sTYAwTZuTx5St84fbtcg+0 z112l4bSs2Prs5U7OmO0TXc40MQ20Z/SIF9Y4rNsyP43w8ARMqCCyctaXQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFGnzPpebQ+iNDl7KeYeUfbIe98q5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIyLzk1M2E2 MS0zMzQ5LTQ3YmYtYTEyYi1lNGM2OTMzNDE0MmMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIvOTUzYTYx LTMzNDktNDdiZi1hMTJiLWU0YzY5MzM0MTQyYy8xL2FmTS1sNXRENkkwT1hzcDVo NVI5c2g3M3lyay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBw04uMA0GCSqGSIb3DQEBCwUAA4IBAQAEPNkL SwJ+MAlu2PPgwtj9P/q90bOWq2hHrnInho9vjIXpExvKDm95KcrfXkqA5W92wYTf L4QaO8HuD1lNePcL6Hm9ORhJ7RTzo8ZTJl4uixNOfiL8Bbk0u0fSHu7nIKV6CZMr ooVDPHMzOrOg4YWEgtm3iFOP/yr5FQL+bLWkO97xvSpU7ZN5goIBNj/gSlJO1SQg 4dX9b4v1An94MVz/j6l+/dR6xb3d9VMyR3QfWYSRQWhBAAgaMkY+JcwPNps8o1KE z3s2GYxB0CsegMDOx6KpeINd2jGX+uqnE7tKqWgxWafMWBpYxULt6h6UV+wafjaZ GUDXcO0K0583WOfI -----END CERTIFICATE-----Generated at Mon Feb 9 19:51:02 2026 by rpki-client