This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.cer File: e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.cer (raw, json) Hash identifier: QZOcd+Ctmy+hnP9uNU8VBauMPqFJFN2/9XkWoHG6xnE= Subject key identifier: 7B:BF:58:97:5B:81:E8:F9:F9:C1:5E:4D:8B:89:91:90:CE:C0:06:87 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78355B93F4832A97757AEA8EBC60E278 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:41 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211219 IP: 194.31.253.0/24 IP: 2a05:8000::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:5b:93:f4:83:2a:97:75:7a:ea:8e:bc:60:e2:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7bbf58975b81e8f9f9c15e4d8b899190cec00687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bd:fa:1f:dc:3d:52:88:a6:6c:8b:c6:ed:0f: 56:78:c8:85:af:0c:1e:f2:76:05:6c:74:13:ad:81: 78:a3:68:48:7f:8c:5c:ee:40:49:f3:b6:ba:e7:2a: 31:1a:39:fa:77:85:df:e5:91:e6:9e:75:6c:d8:e3: 38:45:aa:bc:2a:cb:b8:64:29:58:4a:37:93:1b:5c: 89:95:4c:9d:a7:11:b9:89:67:f3:b8:ef:b5:5c:9f: ee:d2:77:a4:29:63:25:33:4f:bf:d7:e1:e8:ec:a2: 4a:ad:b6:b8:76:f6:e0:9c:68:b1:4b:1d:64:c8:ce: 53:99:3d:43:1d:47:e1:9e:85:f7:d3:2f:a1:d1:40: b8:44:44:51:1c:bb:2e:f8:73:f5:51:a2:62:28:54: 57:f5:51:26:8f:e5:fa:a5:46:c6:92:a9:48:1e:27: 1c:11:b7:02:7a:4b:6e:ee:a9:7b:29:e8:a2:f6:47: b8:7e:0b:5d:6c:36:12:f1:09:25:c8:d4:ef:3b:67: 95:02:ae:86:ae:4f:44:fd:74:7b:d4:08:64:76:2b: 44:cd:fe:3f:8c:ad:02:e9:2b:48:d5:7b:e8:70:d6: 63:db:38:a6:1d:72:5d:68:fa:71:37:5a:35:11:16: ab:f4:26:0f:10:9c:f4:e6:7c:5a:09:a9:ea:4e:ee: 5b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BF:58:97:5B:81:E8:F9:F9:C1:5E:4D:8B:89:91:90:CE:C0:06:87 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.31.253.0/24 IPv6: 2a05:8000::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211219 Signature Algorithm: sha256WithRSAEncryption 5f:cd:e0:a9:37:64:6f:32:fe:83:eb:11:52:be:d8:5f:a5:5d: ef:4a:32:6c:ce:ee:a8:32:52:ba:24:42:b1:8f:56:64:79:eb: 2a:21:2a:37:9c:fc:db:c5:6d:42:88:57:c8:97:e6:5f:6f:53: c3:40:7d:a1:1c:2a:b0:21:9c:46:06:66:41:5c:29:08:65:0d: 6f:ba:83:d3:a8:26:48:20:09:48:bc:c4:4f:4e:0f:4f:22:1e: dc:25:07:48:7a:82:32:93:a0:57:c9:62:07:6e:d3:be:f9:d8: 1c:56:af:fa:37:aa:18:15:c6:39:0a:54:e0:60:4c:77:31:1a: 86:51:bf:0b:59:92:f7:d8:20:1e:a7:5c:1f:aa:ff:c5:40:e1: b2:27:31:28:23:e8:8b:32:2c:9d:bb:1f:b7:b6:92:ee:26:34: 75:1b:ed:cf:52:e8:15:df:29:46:2c:cb:0b:d4:47:9e:56:36: 99:fc:9e:5f:a6:b5:a6:a0:3c:eb:a0:6d:8d:f3:09:74:50:67: 90:92:e3:62:22:cf:44:33:86:4f:06:31:06:ed:32:91:ef:34: 77:8e:cd:d8:37:8a:44:44:4f:f2:7a:3d:e8:ad:f8:02:c6:08: 69:29:67:5f:70:5a:fe:dd:9f:3c:2c:b2:ee:78:2f:37:80:cc: 7e:e8:55:f6 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt4NVuT9IMql3V66o68YOJ4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YmJmNTg5NzViODFlOGY5ZjljMTVlNGQ4Yjg5OTE5MGNlYzAwNjg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp736H9w9UoimbIvG7Q9WeMiFrwwe 8nYFbHQTrYF4o2hIf4xc7kBJ87a65yoxGjn6d4Xf5ZHmnnVs2OM4Raq8Ksu4ZClY SjeTG1yJlUydpxG5iWfzuO+1XJ/u0nekKWMlM0+/1+Ho7KJKrba4dvbgnGixSx1k yM5TmT1DHUfhnoX30y+h0UC4RERRHLsu+HP1UaJiKFRX9VEmj+X6pUbGkqlIHicc EbcCektu7ql7Keii9ke4fgtdbDYS8QklyNTvO2eVAq6Grk9E/XR71AhkditEzf4/ jK0C6StI1XvocNZj2zimHXJdaPpxN1o1ERar9CYPEJz05nxaCanqTu5bpwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFHu/WJdbgej5+cFeTYuJkZDOwAaHMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc1LzBlYTlj YS1hYzk3LTQzZjAtODU3Ny0xYzcwZDFlN2I3ODIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUvMGVhOWNh LWFjOTctNDNmMC04NTc3LTFjNzBkMWU3Yjc4Mi8xL2U3OVlsMXVCNlBuNXdWNU5p NG1Sa003QUJvYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwh/9MA0EAgACMAcDBQMqBYAAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM5EzANBgkqhkiG9w0BAQsFAAOCAQEAX83gqTdkbzL+ g+sRUr7YX6Vd70oybM7uqDJSuiRCsY9WZHnrKiEqN5z828VtQohXyJfmX29Tw0B9 oRwqsCGcRgZmQVwpCGUNb7qD06gmSCAJSLzET04PTyIe3CUHSHqCMpOgV8liB27T vvnYHFav+jeqGBXGOQpU4GBMdzEahlG/C1mS99ggHqdcH6r/xUDhsicxKCPoizIs nbsft7aS7iY0dRvtz1LoFd8pRizLC9RHnlY2mfyeX6a1pqA866BtjfMJdFBnkJLj YiLPRDOGTwYxBu0yke80d47N2DeKRERP8no96K34AsYIaSlnX3Ba/t2fPCyy7ngv N4DMfuhV9g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:15 2026 by rpki-client