This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e-714WwUZ9p6AvGSN2U65CsQllI.cer File: e-714WwUZ9p6AvGSN2U65CsQllI.cer (raw, json) Hash identifier: T6Et9e6cZuhbz0HOZiykyUmAfNCdV3+Ipm5mfgZaKXE= Subject key identifier: 7B:EE:F5:E1:6C:14:67:DA:7A:02:F1:92:37:65:3A:E4:2B:10:96:52 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B35443E8D2C2F7C5F16CA1EE50E7868 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/a2b983-5538-485e-b10f-17a69b702e1b/1/e-714WwUZ9p6AvGSN2U65CsQllI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/a2b983-5538-485e-b10f-17a69b702e1b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:17:27 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205890 IP: 91.196.144.0/22 IP: 91.207.72.0/23 IP: 91.207.94.0/23 IP: 2a0a:de40::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:44:3e:8d:2c:2f:7c:5f:16:ca:1e:e5:0e:78:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7beef5e16c1467da7a02f19237653ae42b109652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9c:a2:11:e2:fc:19:8a:68:02:d5:be:61:41: 17:e8:68:97:d4:d0:b4:52:53:ee:08:f2:81:a7:c5: 7e:cc:ef:69:df:d5:a9:36:30:ba:c6:06:10:2d:0f: ed:a7:c1:17:7f:44:e5:d7:af:68:25:27:15:0f:df: 09:dd:ef:10:1a:7a:91:81:9e:61:b0:a8:c5:2a:a3: 8e:18:94:ab:3f:32:55:7e:70:85:3f:40:ce:58:07: 38:21:2b:2f:c6:72:d3:6b:e0:35:e0:17:92:26:82: 06:e4:2a:ce:08:d7:6c:30:1b:db:42:b7:d2:e3:0f: c5:f7:e5:13:a0:b9:32:3c:8f:cc:f0:35:71:37:e3: a8:fb:7d:6b:c3:54:dd:c1:a9:8c:58:ae:ef:54:07: 2a:cc:b2:8e:cc:68:76:9d:6b:5b:df:95:57:5d:51: 57:7d:5b:46:d9:e3:0b:ed:6e:81:e7:b7:38:d2:74: bd:84:c9:7a:09:04:95:61:81:67:b3:32:65:a5:c3: a6:81:70:d0:e4:cf:be:db:40:ac:93:34:ef:44:91: 7f:58:4e:d7:64:7b:5a:aa:f7:9b:8b:42:ca:42:14: a4:1b:53:d3:6c:cf:f0:9d:28:15:bc:69:11:9c:dd: 69:0b:cd:13:a7:2c:2c:92:61:29:2c:f7:1d:7d:62: fb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:EE:F5:E1:6C:14:67:DA:7A:02:F1:92:37:65:3A:E4:2B:10:96:52 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a2b983-5538-485e-b10f-17a69b702e1b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a2b983-5538-485e-b10f-17a69b702e1b/1/e-714WwUZ9p6AvGSN2U65CsQllI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.196.144.0/22 91.207.72.0/23 91.207.94.0/23 IPv6: 2a0a:de40::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205890 Signature Algorithm: sha256WithRSAEncryption 05:64:e9:1f:a1:6e:0b:a8:e2:cb:ee:0d:fd:f6:f0:68:2b:be: d1:a6:1c:8c:a5:ae:0f:c3:04:77:82:d2:4f:43:28:f0:15:52: ee:b4:e9:58:2c:71:9a:ea:47:e9:98:9e:14:ff:cd:43:40:b6: 40:fd:00:ab:e2:2e:09:0f:f6:51:1d:fb:45:a2:3b:50:cb:3b: d9:77:f7:2a:54:a6:8c:75:53:a4:7c:e7:78:f7:ad:60:e0:d7: ee:7b:eb:0e:2d:db:31:5c:99:4a:88:4d:89:08:ba:46:69:a9: e9:50:a4:5c:94:d1:00:ff:cd:04:48:54:38:78:f6:49:84:82: 1f:62:ab:b8:cd:e7:5d:2f:89:5f:e1:27:85:41:6d:8d:02:84: c3:e5:b6:ec:ce:d0:7c:ef:ff:25:9e:72:28:a5:4c:91:df:0c: 94:b4:49:b7:95:3b:b1:de:d1:f7:49:b3:4b:6a:83:82:32:31: d9:ae:9b:0d:05:d7:d6:34:e7:8e:d6:b3:11:18:d7:ad:76:1f: 21:92:58:54:15:e3:df:0b:5a:79:30:e4:15:a0:05:6b:bf:4d: 92:16:05:ca:b6:38:6e:4a:8c:0d:58:1e:fb:07:7d:4b:2d:d2: 8b:b4:37:1b:04:8b:2f:6c:24:f5:8b:1c:4c:bc:64:21:c9:85: 23:6b:60:a0 -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZt7NUQ+jSwvfF8Wyh7lDnhoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YmVlZjVlMTZjMTQ2N2RhN2EwMmYxOTIzNzY1M2FlNDJiMTA5NjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ZyiEeL8GYpoAtW+YUEX6GiX1NC0 UlPuCPKBp8V+zO9p39WpNjC6xgYQLQ/tp8EXf0Tl169oJScVD98J3e8QGnqRgZ5h sKjFKqOOGJSrPzJVfnCFP0DOWAc4ISsvxnLTa+A14BeSJoIG5CrOCNdsMBvbQrfS 4w/F9+UToLkyPI/M8DVxN+Oo+31rw1TdwamMWK7vVAcqzLKOzGh2nWtb35VXXVFX fVtG2eML7W6B57c40nS9hMl6CQSVYYFnszJlpcOmgXDQ5M++20CskzTvRJF/WE7X ZHtaqvebi0LKQhSkG1PTbM/wnSgVvGkRnN1pC80TpywskmEpLPcdfWL7ewIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFHvu9eFsFGfaegLxkjdlOuQrEJZSMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VkL2EyYjk4 My01NTM4LTQ4NWUtYjEwZi0xN2E2OWI3MDJlMWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQvYTJiOTgz LTU1MzgtNDg1ZS1iMTBmLTE3YTY5YjcwMmUxYi8xL2UtNzE0V3dVWjlwNkF2R1NO MlU2NUNzUWxsSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQCW8SQAwQBW89IAwQBW89eMA0EAgACMAcDBQAq Ct5AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMkQjANBgkqhkiG9w0BAQsFAAOC AQEABWTpH6FuC6jiy+4N/fbwaCu+0aYcjKWuD8MEd4LST0Mo8BVS7rTpWCxxmupH 6ZieFP/NQ0C2QP0Aq+IuCQ/2UR37RaI7UMs72Xf3KlSmjHVTpHznePetYODX7nvr Di3bMVyZSohNiQi6Rmmp6VCkXJTRAP/NBEhUOHj2SYSCH2KruM3nXS+JX+EnhUFt jQKEw+W27M7QfO//JZ5yKKVMkd8MlLRJt5U7sd7R90mzS2qDgjIx2a6bDQXX1jTn jtazERjXrXYfIZJYVBXj3wtaeTDkFaAFa79NkhYFyrY4bkqMDVge+wd9Sy3Si7Q3 GwSLL2wk9YscTLxkIcmFI2tgoA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:39 2026 by rpki-client