This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/exi86iJ6TqxhtTALME3u8UaU3JE.cer File: exi86iJ6TqxhtTALME3u8UaU3JE.cer (raw, json) Hash identifier: RNPS1g2kNKoaY/do+obT66bYCc5y3t7gIWr+AEX1CEU= Subject key identifier: 7B:18:BC:EA:22:7A:4E:AC:61:B5:30:0B:30:4D:EE:F1:46:94:DC:91 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15BC31FE47DCC1A35C895FA117704B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/dac072-0f1d-449b-b30b-09b19d255254/1/exi86iJ6TqxhtTALME3u8UaU3JE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/dac072-0f1d-449b-b30b-09b19d255254/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201157 IP: 185.79.64.0/22 IP: 2a03:5c60::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:bc:31:fe:47:dc:c1:a3:5c:89:5f:a1:17:70:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7b18bcea227a4eac61b5300b304deef14694dc91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:48:d8:37:1e:a3:92:7a:d8:84:77:79:24:de: 49:5a:8c:a2:16:ee:d8:95:eb:ef:f0:5d:e0:6c:dc: 94:e1:f0:b1:e8:5a:19:e7:25:4f:c2:0d:a0:b5:f7: e8:4d:68:5e:0a:b4:cc:5d:99:60:15:f6:61:5d:d6: 13:da:51:06:97:a3:ee:f5:a4:e6:56:08:dd:db:a9: 43:65:0c:c7:e6:e8:11:fe:ae:4b:14:35:bf:72:cc: 27:d3:5c:38:60:b4:99:ea:20:0b:29:8c:4d:ff:98: b7:94:d2:7f:41:dc:73:9a:92:fd:7f:e5:53:c6:75: fa:78:50:19:d6:ff:c0:63:a3:5f:36:e8:32:c3:19: c1:c4:c3:ae:23:07:1d:b8:48:8a:a0:5f:39:57:18: 91:fb:06:29:f6:22:fb:e8:25:53:7a:47:83:81:91: f6:2a:f8:33:1f:a4:e2:65:45:58:f9:cb:bc:a6:e9: 6e:8b:ab:26:42:d8:d0:50:78:36:de:31:89:65:ef: 01:cb:d2:ce:cd:35:08:dc:b7:7f:ac:c4:d8:a1:00: d9:4c:8d:b8:1b:72:eb:cb:82:0a:49:36:2a:c6:a6: a3:18:be:c0:68:61:5a:f8:e4:fb:aa:69:31:7b:e2: d0:71:97:13:5e:fe:7a:e4:d1:d0:a5:fa:46:22:36: 5d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:18:BC:EA:22:7A:4E:AC:61:B5:30:0B:30:4D:EE:F1:46:94:DC:91 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dac072-0f1d-449b-b30b-09b19d255254/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dac072-0f1d-449b-b30b-09b19d255254/1/exi86iJ6TqxhtTALME3u8UaU3JE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.79.64.0/22 IPv6: 2a03:5c60::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201157 Signature Algorithm: sha256WithRSAEncryption 61:65:b6:81:84:ef:b8:e7:2e:02:2a:10:a1:8d:96:7f:2a:d7: bb:93:9e:51:ce:2a:b7:d2:51:d3:cc:47:b1:47:e7:72:40:ba: 75:38:c5:bc:30:e4:d8:50:55:c5:c3:3b:bb:db:10:7e:ec:5a: 5b:7a:c0:a5:56:aa:dd:e2:58:a1:f6:26:5e:54:69:84:40:0d: 71:ab:a6:ba:d1:8f:e4:c8:56:79:b4:86:95:cb:3d:bc:97:f8: 0f:eb:16:3d:09:91:e0:9d:64:e8:40:32:5d:5c:d6:a3:c6:e6: a3:83:40:72:77:ad:dd:08:c9:51:e4:96:e6:92:33:35:77:26: 26:f9:c7:5c:7f:18:66:4b:49:7b:7d:1b:03:2f:df:03:b7:dd: 5a:58:ec:b6:44:89:82:00:29:18:64:21:c1:99:5b:d9:5b:91: 7a:92:42:bd:6e:9c:ab:34:83:e4:14:78:92:69:05:69:14:c3: 87:af:0c:b0:71:78:19:5e:23:de:26:68:99:51:9d:07:05:70: 61:af:a6:c3:02:c1:87:82:2d:a3:d2:9d:e0:17:52:cc:1d:17: b2:dc:3e:22:e0:8b:15:d0:4c:1b:f7:4d:13:42:b0:f0:36:ba: f3:3f:e2:d9:3f:3a:18:1e:24:4e:43:35:91:60:80:92:20:af: 29:b8:e2:07 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/Fbwx/kfcwaNciV+hF3BLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjE4YmNlYTIyN2E0ZWFjNjFiNTMwMGIzMDRkZWVmMTQ2OTRkYzkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0jYNx6jknrYhHd5JN5JWoyiFu7Y levv8F3gbNyU4fCx6FoZ5yVPwg2gtffoTWheCrTMXZlgFfZhXdYT2lEGl6Pu9aTm Vgjd26lDZQzH5ugR/q5LFDW/cswn01w4YLSZ6iALKYxN/5i3lNJ/QdxzmpL9f+VT xnX6eFAZ1v/AY6NfNugywxnBxMOuIwcduEiKoF85VxiR+wYp9iL76CVTekeDgZH2 KvgzH6TiZUVY+cu8pului6smQtjQUHg23jGJZe8By9LOzTUI3Ld/rMTYoQDZTI24 G3Lry4IKSTYqxqajGL7AaGFa+OT7qmkxe+LQcZcTXv565NHQpfpGIjZd2wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFHsYvOoiek6sYbUwCzBN7vFGlNyRMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M5L2RhYzA3 Mi0wZjFkLTQ0OWItYjMwYi0wOWIxOWQyNTUyNTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzkvZGFjMDcy LTBmMWQtNDQ5Yi1iMzBiLTA5YjE5ZDI1NTI1NC8xL2V4aTg2aUo2VHF4aHRUQUxN RTN1OFVhVTNKRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuU9AMA0EAgACMAcDBQAqA1xgMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMRxTANBgkqhkiG9w0BAQsFAAOCAQEAYWW2gYTvuOcu AioQoY2WfyrXu5OeUc4qt9JR08xHsUfnckC6dTjFvDDk2FBVxcM7u9sQfuxaW3rA pVaq3eJYofYmXlRphEANcaumutGP5MhWebSGlcs9vJf4D+sWPQmR4J1k6EAyXVzW o8bmo4NAcnet3QjJUeSW5pIzNXcmJvnHXH8YZktJe30bAy/fA7fdWljstkSJggAp GGQhwZlb2VuRepJCvW6cqzSD5BR4kmkFaRTDh68MsHF4GV4j3iZomVGdBwVwYa+m wwLBh4Ito9Kd4BdSzB0Xstw+IuCLFdBMG/dNE0Kw8Da68z/i2T86GB4kTkM1kWCA kiCvKbjiBw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:31 2026 by rpki-client