This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/coe8FdmVjihdWllYuOZJfl_OkfU.cer File: coe8FdmVjihdWllYuOZJfl_OkfU.cer (raw, json) Hash identifier: PRODj2dS7fHk5EgPh8yFFPdcEXQ8gGLA2RQnMMws+QI= Subject key identifier: 72:87:BC:15:D9:95:8E:28:5D:5A:59:58:B8:E6:49:7E:5F:CE:91:F5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCAB9FE03A28AF3F6BABD18015044E3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7c/9e5de4-f650-44d7-bd30-7ec213cb115f/1/coe8FdmVjihdWllYuOZJfl_OkfU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7c/9e5de4-f650-44d7-bd30-7ec213cb115f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:56 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 21211 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:b9:fe:03:a2:8a:f3:f6:ba:bd:18:01:50:44:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7287bc15d9958e285d5a5958b8e6497e5fce91f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0d:cb:22:6f:8b:0b:4b:2c:da:b9:48:25:06: ee:fb:2d:3e:f7:78:a6:8e:bf:8f:20:fb:28:e1:6e: 4c:c5:69:be:70:10:82:81:71:da:4e:80:64:c1:30: bd:90:27:0b:6e:b1:cc:cf:34:2b:31:de:5b:74:96: e0:36:44:d3:2e:14:15:58:62:ee:68:e0:28:13:99: 7c:93:89:64:5e:81:7a:ca:e4:1a:62:25:1d:1c:34: c3:f0:0a:cd:3f:c9:e3:a9:23:79:fd:90:be:ff:19: 96:20:be:70:bd:8c:a5:cd:2e:6b:ea:a8:68:2c:c2: bd:8f:42:f5:ff:33:92:1c:3a:f5:1c:81:fa:ac:22: 0f:2c:d1:25:48:b9:a9:48:0e:30:c8:6b:a6:ae:47: f3:a1:17:26:bb:0a:f7:d6:99:c6:3c:c9:98:d1:17: c7:22:b2:08:43:99:34:96:a7:34:42:d6:85:ed:64: 2c:61:85:82:a4:b5:78:00:d3:c1:bb:75:56:cd:2d: 6d:f4:49:f9:74:85:ef:46:13:4f:7f:90:c5:94:46: cc:40:09:99:64:06:c1:04:8e:70:bd:93:66:0e:a1: f3:9f:aa:69:9a:d4:e0:3c:64:db:63:a7:e4:0f:75: d2:b6:b3:45:96:45:d8:11:b8:c8:02:27:12:2e:0f: 56:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:87:BC:15:D9:95:8E:28:5D:5A:59:58:B8:E6:49:7E:5F:CE:91:F5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9e5de4-f650-44d7-bd30-7ec213cb115f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9e5de4-f650-44d7-bd30-7ec213cb115f/1/coe8FdmVjihdWllYuOZJfl_OkfU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 21211 Signature Algorithm: sha256WithRSAEncryption 07:47:8f:63:c4:f1:72:ce:a4:86:87:b9:e9:fe:07:e8:83:d0: bb:22:f0:33:10:47:ee:23:76:fb:ff:23:9b:82:45:a9:3f:d6: 3b:21:7e:27:95:f4:77:6d:84:43:28:06:a3:5d:f5:28:61:77: a9:85:75:ac:be:f9:a6:c2:e9:d9:cd:77:6d:4f:61:ff:1f:f4: a4:a9:b3:bd:c7:76:f9:d1:27:42:6b:51:8b:87:d6:b5:0f:2f: 15:58:5c:da:3e:6d:fe:7e:22:05:5c:cf:29:61:5d:e1:67:cf: 30:eb:1a:25:f3:d7:6d:71:27:38:b8:c7:4a:b3:dc:39:88:8e: 23:33:3b:f9:2a:6e:21:93:c2:95:d9:d4:52:a7:9d:cf:4d:50: a9:54:6d:cd:e4:10:25:8e:11:68:50:0b:45:fc:57:5b:d8:27: 71:68:7e:de:38:e8:fd:79:2f:f9:f9:dd:2d:2a:bc:c5:7f:72: f3:05:83:7a:96:c2:dd:45:81:23:91:33:43:1e:81:fe:7f:41: 9e:3f:fd:ef:03:88:c6:b4:33:05:a1:12:ca:00:a1:12:20:86: 2e:24:9c:11:dc:9f:a9:51:0d:af:a2:11:40:8b:34:63:6c:91: 6d:a4:12:77:a3:c6:d1:4c:fc:04:d9:0f:a6:5a:dc:72:0b:9f: 01:96:ae:85 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgISAZt9yrn+A6KK8/a6vRgBUETjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Mjg3YmMxNWQ5OTU4ZTI4NWQ1YTU5NThiOGU2NDk3ZTVmY2U5MWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5g3LIm+LC0ss2rlIJQbu+y0+93im jr+PIPso4W5MxWm+cBCCgXHaToBkwTC9kCcLbrHMzzQrMd5bdJbgNkTTLhQVWGLu aOAoE5l8k4lkXoF6yuQaYiUdHDTD8ArNP8njqSN5/ZC+/xmWIL5wvYylzS5r6qho LMK9j0L1/zOSHDr1HIH6rCIPLNElSLmpSA4wyGumrkfzoRcmuwr31pnGPMmY0RfH IrIIQ5k0lqc0QtaF7WQsYYWCpLV4ANPBu3VWzS1t9En5dIXvRhNPf5DFlEbMQAmZ ZAbBBI5wvZNmDqHzn6ppmtTgPGTbY6fkD3XStrNFlkXYEbjIAicSLg9WPQIDAQAB o4ICfjCCAnowHQYDVR0OBBYEFHKHvBXZlY4oXVpZWLjmSX5fzpH1MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdjLzllNWRl NC1mNjUwLTQ0ZDctYmQzMC03ZWMyMTNjYjExNWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2MvOWU1ZGU0 LWY2NTAtNDRkNy1iZDMwLTdlYzIxM2NiMTE1Zi8xL2NvZThGZG1WamloZFdsbFl1 T1pKZmxfT2tmVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBkGCCsGAQUF BwEIAQH/BAowCKAGMAQCAlLbMA0GCSqGSIb3DQEBCwUAA4IBAQAHR49jxPFyzqSG h7np/gfog9C7IvAzEEfuI3b7/yObgkWpP9Y7IX4nlfR3bYRDKAajXfUoYXephXWs vvmmwunZzXdtT2H/H/SkqbO9x3b50SdCa1GLh9a1Dy8VWFzaPm3+fiIFXM8pYV3h Z88w6xol89dtcSc4uMdKs9w5iI4jMzv5Km4hk8KV2dRSp53PTVCpVG3N5BAljhFo UAtF/Fdb2CdxaH7eOOj9eS/5+d0tKrzFf3LzBYN6lsLdRYEjkTNDHoH+f0GeP/3v A4jGtDMFoRLKAKESIIYuJJwR3J+pUQ2vohFAizRjbJFtpBJ3o8bRTPwE2Q+mWtxy C58Blq6F -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:54 2026 by rpki-client