This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ahfeGIf8-pJEuTHZbagmeMAUdmM.cer File: ahfeGIf8-pJEuTHZbagmeMAUdmM.cer (raw, json) Hash identifier: JoHoVxfgRTtcJnt2i6hRqz14e1NAtbiM0z365NjdA8w= Subject key identifier: 6A:17:DE:18:87:FC:FA:92:44:B9:31:D9:6D:A8:26:78:C0:14:76:63 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5ADB77593DC440DEBB594D289A4AAF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/ahfeGIf8-pJEuTHZbagmeMAUdmM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:17:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 35361 IP: 85.119.88.0/21 IP: 89.239.0.0/19 IP: 2a02:4000::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:db:77:59:3d:c4:40:de:bb:59:4d:28:9a:4a:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a17de1887fcfa9244b931d96da82678c0147663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ec:34:99:eb:90:3e:b1:a2:04:59:5f:bd:25: 94:43:7d:a9:30:9f:63:9e:27:a7:a0:cb:32:a5:62: 20:43:df:cd:10:71:93:8c:3e:14:1f:de:f7:1a:49: e7:90:3e:41:61:a7:77:47:a1:13:ac:61:6a:41:49: 5b:41:86:fe:1b:5c:bd:0a:a8:9f:8c:2b:a9:01:25: f1:df:ad:63:15:fb:9e:d6:fe:62:c6:66:cd:61:a3: c7:b5:fd:10:d8:95:8b:ef:c4:f2:fe:d7:6b:bd:41: e3:00:26:87:d0:76:bc:5f:95:15:e1:b5:52:a8:2d: c5:dc:47:66:94:c5:83:bd:14:9c:88:3d:1e:53:f0: d8:70:83:a7:21:77:4d:5d:f6:c9:38:f6:9e:f2:2b: 26:2b:43:f9:c9:47:a3:24:c5:92:e5:db:07:c1:07: 96:fb:73:5e:e7:01:7f:9b:67:99:ed:8f:89:d4:af: 39:6c:b3:ce:27:3f:28:8a:c7:8c:7d:e9:5b:f8:7f: 4b:2a:38:3d:41:20:af:6f:98:5b:41:0b:25:47:3e: c7:a1:39:79:43:68:da:8f:39:5b:ad:1c:13:b8:e4: f9:04:08:b9:83:86:da:4d:16:8c:43:7e:f4:b5:bb: 87:a0:17:84:ec:d8:e5:a9:ad:4c:29:3a:ed:3a:7b: 0c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:17:DE:18:87:FC:FA:92:44:B9:31:D9:6D:A8:26:78:C0:14:76:63 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/ahfeGIf8-pJEuTHZbagmeMAUdmM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.119.88.0/21 89.239.0.0/19 IPv6: 2a02:4000::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 35361 Signature Algorithm: sha256WithRSAEncryption 8f:5b:c2:22:5b:84:cf:31:e0:a9:59:50:07:a4:45:69:2e:57: 0c:0b:a1:a7:84:53:93:29:12:57:e1:ba:27:d2:ab:fa:58:8a: 5a:20:46:90:b5:12:5c:7a:13:81:9f:78:b9:6d:1c:4b:12:67: 46:54:16:d6:fb:2d:45:79:48:2a:90:58:9c:f7:22:03:ed:28: 3a:13:06:21:55:18:66:d0:94:6e:11:3b:05:cd:59:f0:95:08: ef:bb:12:de:25:53:a4:ca:5b:3c:59:22:95:34:27:f8:10:51: ac:f6:c4:8b:02:ce:40:1d:82:bf:57:9a:cd:c8:08:ff:f3:89: fa:f9:7c:eb:3c:18:79:ec:e5:bb:c3:9f:d9:90:b7:2a:36:a8: d8:c6:4f:ec:7d:71:a6:35:62:f1:ad:1f:cd:ec:09:2c:d1:84: f2:3f:b2:34:01:50:8d:e4:b3:ec:78:4a:ef:c7:0d:f2:bf:37: b6:41:72:74:fd:14:a0:50:d3:e6:94:bc:95:bd:93:ad:16:3e: 8d:cc:77:30:5d:fe:88:11:fe:9b:14:ff:fe:d1:7a:b7:1b:7f: 4e:c4:20:c0:79:01:a0:be:fb:83:63:61:8b:b3:f8:f2:10:c2: 48:de:53:c6:04:8c:82:00:62:b1:a8:2c:55:3b:8c:93:e5:a9: d1:db:9c:46 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt9Wtt3WT3EQN67WU0omkqvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTE3ZGUxODg3ZmNmYTkyNDRiOTMxZDk2ZGE4MjY3OGMwMTQ3NjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOw0meuQPrGiBFlfvSWUQ32pMJ9j nienoMsypWIgQ9/NEHGTjD4UH973GknnkD5BYad3R6ETrGFqQUlbQYb+G1y9Cqif jCupASXx361jFfue1v5ixmbNYaPHtf0Q2JWL78Ty/tdrvUHjACaH0Ha8X5UV4bVS qC3F3EdmlMWDvRSciD0eU/DYcIOnIXdNXfbJOPae8ismK0P5yUejJMWS5dsHwQeW +3Ne5wF/m2eZ7Y+J1K85bLPOJz8oiseMfelb+H9LKjg9QSCvb5hbQQslRz7HoTl5 Q2jajzlbrRwTuOT5BAi5g4baTRaMQ370tbuHoBeE7Njlqa1MKTrtOnsM1QIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFGoX3hiH/PqSRLkx2W2oJnjAFHZjMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU0L2VjMjVi ZC0yMTllLTRkMDItYTUzMi0wNzk5YTUyYTYzODcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTQvZWMyNWJk LTIxOWUtNGQwMi1hNTMyLTA3OTlhNTJhNjM4Ny8xL2FoZmVHSWY4LXBKRXVUSFpi YWdtZU1BVWRtTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDVXdYAwQFWe8AMA0EAgACMAcDBQMqAkAAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwCKITANBgkqhkiG9w0BAQsFAAOCAQEAj1vC IluEzzHgqVlQB6RFaS5XDAuhp4RTkykSV+G6J9Kr+liKWiBGkLUSXHoTgZ94uW0c SxJnRlQW1vstRXlIKpBYnPciA+0oOhMGIVUYZtCUbhE7Bc1Z8JUI77sS3iVTpMpb PFkilTQn+BBRrPbEiwLOQB2Cv1eazcgI//OJ+vl86zwYeezlu8Of2ZC3Kjao2MZP 7H1xpjVi8a0fzewJLNGE8j+yNAFQjeSz7HhK78cN8r83tkFydP0UoFDT5pS8lb2T rRY+jcx3MF3+iBH+mxT//tF6txt/TsQgwHkBoL77g2Nhi7P48hDCSN5TxgSMggBi sagsVTuMk+Wp0ducRg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:29:54 2026 by rpki-client