This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec1Sh9sjpaT-cWadrFQz-KSEYb0.cer File: ec1Sh9sjpaT-cWadrFQz-KSEYb0.cer (raw, json) Hash identifier: 6ftQz8UVYJLZtGO88/3OJegk/uyvsOip28Bxs3Yzts0= Subject key identifier: 79:CD:52:87:DB:23:A5:A4:FE:71:66:9D:AC:54:33:F8:A4:84:61:BD Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78B0F30F71942820A30A3613835F1FBF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/2/79CD5287DB23A5A4FE71669DAC5433F8A48461BD.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/2/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:33:41 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 50755 AS: 200676 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:b0:f3:0f:71:94:28:20:a3:0a:36:13:83:5f:1f:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:33:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=79cd5287db23a5a4fe71669dac5433f8a48461bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:18:bd:00:12:da:84:56:d7:bf:a8:05:e8:29: 93:64:e1:69:51:ca:08:f6:1a:62:9c:b9:36:78:71: c1:9c:30:de:55:85:7d:00:89:72:fc:14:a0:e8:34: ea:fa:6d:0a:65:92:61:f2:d4:d9:92:6f:4a:1b:4a: 95:e5:f3:ab:41:81:2f:ba:ef:21:ce:e5:bf:2f:9b: f7:fc:9c:7c:6c:2d:b3:ca:d7:c4:7c:0d:c0:b2:cf: 2e:21:46:08:b9:73:1a:e2:a3:6b:22:80:30:b5:ef: d8:83:cf:ff:97:9e:58:b3:21:61:65:f8:a6:f6:b3: 70:3a:7a:34:a2:d1:13:02:80:5d:88:95:d4:dd:69: ea:2b:7d:ae:0d:1e:96:a7:ff:f2:56:93:b8:f3:9c: e1:ac:62:d8:26:07:a6:1a:d2:de:6f:a1:00:0e:e7: 15:dd:a4:86:8c:34:3e:72:db:af:16:0c:11:07:f7: c3:78:bf:4c:65:24:a3:7e:d7:f7:a6:8e:21:69:43: 99:7c:71:48:32:19:91:1d:87:50:a2:d6:4e:c6:e3: 2b:4b:5d:d7:9b:80:6a:57:9a:7b:4c:8f:69:28:89: 3d:14:17:44:b5:43:12:c7:07:5e:a3:bf:c2:0f:f8: f1:15:ad:07:06:a9:34:53:6f:10:fa:df:bd:6a:19: f9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CD:52:87:DB:23:A5:A4:FE:71:66:9D:AC:54:33:F8:A4:84:61:BD X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/2/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/2/79CD5287DB23A5A4FE71669DAC5433F8A48461BD.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 50755 200676 Signature Algorithm: sha256WithRSAEncryption 9b:b4:97:c8:47:f1:db:3c:68:d4:5e:66:e8:00:c3:ca:ec:23: 08:6c:75:b9:2d:1e:83:2c:1a:78:83:3c:d4:cb:8d:ab:b1:0d: cb:a0:a0:49:ed:8e:16:e7:9b:83:df:70:63:14:c0:0c:55:cb: 65:53:be:1d:34:57:e9:c4:a3:70:5e:b2:dd:af:29:c3:3b:8a: b8:05:90:e9:d8:f6:c6:a8:4a:e2:ff:63:d6:35:3c:29:61:1b: 25:04:77:db:65:db:d3:c0:05:c5:c8:27:55:1c:a6:43:9e:f0: 6b:0b:8f:37:b9:93:d2:0f:54:be:81:83:73:60:1f:36:eb:ea: ba:27:7b:dd:03:ba:7c:2c:18:14:ef:46:cd:05:d7:c1:30:ed: 3e:e3:a6:e0:df:9c:56:73:be:e9:f6:1e:da:be:e6:88:3d:7a: 24:c8:a2:29:b4:f3:ca:72:65:9a:f9:59:2d:5c:04:31:ae:c2: 10:ba:75:dd:d8:99:bb:2f:1e:4c:e1:d4:3b:64:ef:ce:ee:2c: f0:8e:6e:17:df:85:c6:e5:95:60:31:0b:d7:9a:02:8c:e2:64: 0a:87:c0:7a:47:70:51:8c:e3:7a:18:85:b7:69:07:d2:79:2e: b2:23:70:e6:ee:a4:2c:8e:3b:b8:38:25:5a:b7:0d:7d:39:5b: f1:80:42:53 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4sPMPcZQoIKMKNhODXx+/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgzMzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OWNkNTI4N2RiMjNhNWE0ZmU3MTY2OWRhYzU0MzNmOGE0ODQ2MWJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5xi9ABLahFbXv6gF6CmTZOFpUcoI 9hpinLk2eHHBnDDeVYV9AIly/BSg6DTq+m0KZZJh8tTZkm9KG0qV5fOrQYEvuu8h zuW/L5v3/Jx8bC2zytfEfA3Ass8uIUYIuXMa4qNrIoAwte/Yg8//l55YsyFhZfim 9rNwOno0otETAoBdiJXU3WnqK32uDR6Wp//yVpO485zhrGLYJgemGtLeb6EADucV 3aSGjDQ+ctuvFgwRB/fDeL9MZSSjftf3po4haUOZfHFIMhmRHYdQotZOxuMrS13X m4BqV5p7TI9pKIk9FBdEtUMSxwdeo7/CD/jxFa0HBqk0U28Q+t+9ahn5FQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFHnNUofbI6Wk/nFmnaxUM/ikhGG9MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzJhY2Ez Y2E2LTM0Y2MtNDc3Mi1iYWMwLWEzNWRkMDE5NWNlNy8yLzCBiwYIKwYBBQUHMAqG f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFj YTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzIvNzlDRDUyODdEQjIz QTVBNEZFNzE2NjlEQUM1NDMzRjhBNDg0NjFCRC5tZnQwPAYIKwYBBQUHMA2GMGh0 dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMAxkMC AwMP5DANBgkqhkiG9w0BAQsFAAOCAQEAm7SXyEfx2zxo1F5m6ADDyuwjCGx1uS0e gywaeIM81MuNq7ENy6CgSe2OFuebg99wYxTADFXLZVO+HTRX6cSjcF6y3a8pwzuK uAWQ6dj2xqhK4v9j1jU8KWEbJQR322Xb08AFxcgnVRymQ57wawuPN7mT0g9UvoGD c2AfNuvquid73QO6fCwYFO9GzQXXwTDtPuOm4N+cVnO+6fYe2r7miD16JMiiKbTz ynJlmvlZLVwEMa7CELp13diZuy8eTOHUO2Tvzu4s8I5uF9+FxuWVYDEL15oCjOJk CofAekdwUYzjehiFt2kH0nkusiNw5u6kLI47uDglWrcNfTlb8YBCUw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:04 2026 by rpki-client