This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cnMJ8RA0fMYbjCe7-_EKa_tAg1g.cer File: cnMJ8RA0fMYbjCe7-_EKa_tAg1g.cer (raw, json) Hash identifier: SO96TpyNDm0Kvqqb5lC71bGgOsHWfvb5PxHPzQFwVR0= Subject key identifier: 72:73:09:F1:10:34:7C:C6:1B:8C:27:BB:FB:F1:0A:6B:FB:40:83:58 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E3902DD468512AB49284C7FDD48E46C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/008909-72ea-4791-a5bf-f23346bcc217/1/cnMJ8RA0fMYbjCe7-_EKa_tAg1g.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/008909-72ea-4791-a5bf-f23346bcc217/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:20:24 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 199351 IP: 2001:67c:1394::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:02:dd:46:85:12:ab:49:28:4c:7f:dd:48:e4:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:20:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=727309f110347cc61b8c27bbfbf10a6bfb408358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9a:df:73:36:11:65:a9:00:9a:ae:4a:fd:75: 74:da:16:10:57:11:49:11:6f:42:de:5f:51:c2:8e: 26:44:3e:49:e3:53:56:57:8c:06:c0:3e:f2:e7:b5: fb:d4:02:19:15:1c:aa:bd:77:a4:fa:65:9e:6f:b6: 69:f2:4e:38:b4:ac:c7:e0:74:98:5f:02:d3:19:04: 6d:c5:5f:79:8f:37:86:67:cb:4a:9b:73:e0:f4:dc: c4:01:1a:95:46:f0:0f:81:df:db:89:80:c8:33:9f: 01:8a:28:a6:c3:61:ba:c2:19:ac:4c:8f:5d:70:50: 89:a0:47:5e:40:6a:ba:32:59:b4:58:ef:b9:bd:92: 3a:de:ea:4c:56:98:61:32:a6:5d:3a:b3:42:9e:7a: 2d:b1:f1:00:16:a8:bf:cb:0e:84:f9:54:4b:54:12: 3a:b9:e2:da:f6:34:8a:e1:20:ed:2c:b3:c8:44:98: dd:9e:62:71:70:82:8a:e6:c8:23:5b:18:71:ac:ba: 75:f7:e9:1d:70:59:08:af:75:8c:3e:e0:4f:0e:e8: ce:28:92:f4:5f:7f:03:83:49:ea:f1:9a:6a:2a:a9: 2a:da:25:7a:af:b3:0b:6c:14:39:75:36:cb:41:27: 24:4f:bd:3b:2a:aa:71:9d:5d:9c:b8:54:16:87:a0: 69:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:73:09:F1:10:34:7C:C6:1B:8C:27:BB:FB:F1:0A:6B:FB:40:83:58 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/008909-72ea-4791-a5bf-f23346bcc217/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/008909-72ea-4791-a5bf-f23346bcc217/1/cnMJ8RA0fMYbjCe7-_EKa_tAg1g.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:1394::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 199351 Signature Algorithm: sha256WithRSAEncryption 6e:0b:af:95:8c:69:d2:b1:9c:6e:8e:45:26:ca:19:54:5a:1d: 1d:c1:bd:85:20:2b:c7:b6:0d:33:3e:49:8d:cc:47:72:83:fa: 33:e2:18:a0:d7:3c:04:5b:d7:b3:3b:88:de:71:96:ee:d4:11: fe:28:20:cd:fe:0d:3a:a6:44:ea:ce:0e:b6:4a:89:f5:ba:49: 4e:15:1b:6a:d8:a4:05:5e:8e:53:f1:71:8c:77:1c:7b:ba:da: 62:ef:b8:1f:5f:62:64:3c:d6:e7:bf:bf:f5:03:de:e9:2b:fc: b0:3b:5c:68:6e:a4:6d:eb:c9:f9:75:16:4d:a1:33:60:3f:92: 3b:40:6f:11:3d:c9:2f:a3:e9:5a:34:d8:ce:4b:0c:ab:aa:d2: 8c:6f:4f:4b:da:61:39:d0:14:73:7c:b9:df:63:63:a8:85:4b: 1c:32:62:9c:d6:c5:9f:da:9c:0c:aa:b7:29:f9:56:9f:a5:39: fa:ca:0d:8c:ed:76:3b:1c:b3:d0:a1:f3:c3:4c:ab:04:3a:24: 4c:52:ce:51:28:24:15:bf:82:06:68:43:0d:58:e6:60:d4:3f: ba:39:c0:8b:63:f3:7e:65:40:5f:2e:58:70:0b:ce:67:12:71: b9:8a:b5:af:36:fa:c5:95:d2:90:ca:83:ce:c3:d9:76:81:d9: fd:6c:1f:33 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt+OQLdRoUSq0koTH/dSORsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAyMDI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjczMDlmMTEwMzQ3Y2M2MWI4YzI3YmJmYmYxMGE2YmZiNDA4MzU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArprfczYRZakAmq5K/XV02hYQVxFJ EW9C3l9Rwo4mRD5J41NWV4wGwD7y57X71AIZFRyqvXek+mWeb7Zp8k44tKzH4HSY XwLTGQRtxV95jzeGZ8tKm3Pg9NzEARqVRvAPgd/biYDIM58Biiimw2G6whmsTI9d cFCJoEdeQGq6Mlm0WO+5vZI63upMVphhMqZdOrNCnnotsfEAFqi/yw6E+VRLVBI6 ueLa9jSK4SDtLLPIRJjdnmJxcIKK5sgjWxhxrLp19+kdcFkIr3WMPuBPDujOKJL0 X38Dg0nq8ZpqKqkq2iV6r7MLbBQ5dTbLQSckT707KqpxnV2cuFQWh6Bp2QIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFHJzCfEQNHzGG4wnu/vxCmv7QINYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM0LzAwODkw OS03MmVhLTQ3OTEtYTViZi1mMjMzNDZiY2MyMTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQvMDA4OTA5 LTcyZWEtNDc5MS1hNWJmLWYyMzM0NmJjYzIxNy8xL2NuTUo4UkEwZk1ZYmpDZTct X0VLYV90QWcxZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBOUMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMKtzANBgkqhkiG9w0BAQsFAAOCAQEAbguvlYxp0rGcbo5FJsoZVFodHcG9 hSArx7YNMz5JjcxHcoP6M+IYoNc8BFvXszuI3nGW7tQR/iggzf4NOqZE6s4OtkqJ 9bpJThUbatikBV6OU/FxjHcce7raYu+4H19iZDzW57+/9QPe6Sv8sDtcaG6kbevJ +XUWTaEzYD+SO0BvET3JL6PpWjTYzksMq6rSjG9PS9phOdAUc3y532NjqIVLHDJi nNbFn9qcDKq3KflWn6U5+soNjO12Oxyz0KHzw0yrBDokTFLOUSgkFb+CBmhDDVjm YNQ/ujnAi2PzfmVAXy5YcAvOZxJxuYq1rzb6xZXSkMqDzsPZdoHZ/WwfMw== -----END CERTIFICATE-----Generated at Tue Feb 10 07:55:17 2026 by rpki-client