This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fG9Mjzo3f0bFUiAJZ4841hVxxso.cer File: fG9Mjzo3f0bFUiAJZ4841hVxxso.cer (raw, json) Hash identifier: j1hqU0VKBr9BiyZ4DalbvHHXvtVjvw0BCNWkblsUwg4= Subject key identifier: 7C:6F:4C:8F:3A:37:7F:46:C5:52:20:09:67:8F:38:D6:15:71:C6:CA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED51B93EC6A5025F8B0AB0EEE19FCB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5c/5c6c9f-691f-4284-b84d-1d367a5f86d4/1/fG9Mjzo3f0bFUiAJZ4841hVxxso.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5c/5c6c9f-691f-4284-b84d-1d367a5f86d4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 29080 IP: 195.68.200.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:51:b9:3e:c6:a5:02:5f:8b:0a:b0:ee:e1:9f:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7c6f4c8f3a377f46c5522009678f38d61571c6ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:89:88:e9:c5:dd:51:c4:90:b6:ea:7d:7f:1f: 02:ad:db:54:35:56:93:0e:e0:81:c9:67:d9:0f:21: fb:73:de:45:64:8c:5b:bc:14:bf:1a:60:77:a1:6a: fb:51:76:63:bb:0d:4e:ec:d4:55:83:fe:59:61:c6: 14:e8:67:d6:04:5f:0a:77:91:bd:33:97:3b:9d:c9: 32:ef:c6:5b:a1:9c:21:f7:6a:d7:95:3c:b3:b5:c7: 2e:33:3d:da:7e:50:96:86:ed:d1:9b:19:98:94:f2: f2:e1:29:36:8a:ac:06:22:6b:e0:9c:16:40:42:4b: 13:78:31:11:62:de:29:0c:19:00:84:01:c0:5c:af: 21:2a:7f:20:5b:fa:fb:0a:7d:3b:3a:67:47:ac:a6: fe:e7:95:f1:cf:b9:e4:91:a9:2a:e9:6b:a8:04:2c: 48:e0:ee:5a:4d:9b:57:b9:65:ce:fd:b6:3b:e4:28: ff:e7:21:05:93:4e:c2:01:6f:8f:fe:27:d3:94:69: 1c:54:86:34:29:38:b5:fe:1f:d2:47:d9:63:f0:75: 0f:3a:49:fc:e1:63:0a:d1:75:bd:72:c0:bf:6b:2f: 4e:f4:1e:ab:cb:92:5e:4e:ec:3d:10:8c:7a:7e:bf: 4e:ef:a7:05:66:72:95:f9:4c:f4:28:86:01:6b:f1: a2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:6F:4C:8F:3A:37:7F:46:C5:52:20:09:67:8F:38:D6:15:71:C6:CA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/5c6c9f-691f-4284-b84d-1d367a5f86d4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/5c6c9f-691f-4284-b84d-1d367a5f86d4/1/fG9Mjzo3f0bFUiAJZ4841hVxxso.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.68.200.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 29080 Signature Algorithm: sha256WithRSAEncryption 38:6d:5b:8d:bd:e5:f7:de:67:e5:1c:9a:e4:6e:1d:23:77:cc: fb:9e:ac:08:d2:11:14:d0:0f:a0:71:aa:c5:c9:dd:d0:0f:a8: cd:51:fe:c8:8c:f0:2f:9a:2f:21:af:b8:40:0f:da:42:23:54: 5d:07:9d:93:b8:1e:0b:f0:81:b4:b1:96:cd:4c:0f:6f:0f:47: 6b:ae:05:50:f9:15:be:9d:d9:79:5a:a9:f1:6c:97:b1:47:a6: b3:d0:8c:ca:2b:6e:31:3d:04:00:89:01:67:bb:e0:3d:d4:70: f4:61:6c:5b:48:a3:30:aa:69:a8:99:1a:30:79:66:43:67:01: a3:e0:08:3f:5a:74:43:e4:47:13:83:72:c7:b3:9a:b6:1a:7d: 0f:a8:a2:d1:0b:eb:c8:af:2b:6e:42:2c:a3:59:c6:b9:19:ab: 55:7f:13:d1:66:42:4a:78:13:e8:eb:ac:31:b5:b6:66:94:ae: f8:f9:ea:f1:87:13:b0:5d:45:62:14:64:c0:27:91:a8:3a:fb: 92:99:e5:ba:4f:00:ef:23:0f:45:80:9c:4d:ff:55:db:58:1c: 55:41:b2:22:de:25:a7:b4:24:4e:cc:9d:27:80:b8:0d:13:0c: 7c:5d:f7:28:ce:39:8e:01:36:70:d1:0f:5b:f7:85:c5:53:66: 4f:70:dc:38 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt87VG5PsalAl+LCrDu4Z/LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YzZmNGM4ZjNhMzc3ZjQ2YzU1MjIwMDk2NzhmMzhkNjE1NzFjNmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApImI6cXdUcSQtup9fx8CrdtUNVaT DuCByWfZDyH7c95FZIxbvBS/GmB3oWr7UXZjuw1O7NRVg/5ZYcYU6GfWBF8Kd5G9 M5c7ncky78ZboZwh92rXlTyztccuMz3aflCWhu3RmxmYlPLy4Sk2iqwGImvgnBZA QksTeDERYt4pDBkAhAHAXK8hKn8gW/r7Cn07OmdHrKb+55Xxz7nkkakq6WuoBCxI 4O5aTZtXuWXO/bY75Cj/5yEFk07CAW+P/ifTlGkcVIY0KTi1/h/SR9lj8HUPOkn8 4WMK0XW9csC/ay9O9B6ry5JeTuw9EIx6fr9O76cFZnKV+Uz0KIYBa/GisQIDAQAB o4ICnzCCApswHQYDVR0OBBYEFHxvTI86N39GxVIgCWePONYVccbKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVjLzVjNmM5 Zi02OTFmLTQyODQtYjg0ZC0xZDM2N2E1Zjg2ZDQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWMvNWM2Yzlm LTY5MWYtNDI4NC1iODRkLTFkMzY3YTVmODZkNC8xL2ZHOU1qem8zZjBiRlVpQUpa NDg0MWhWeHhzby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBw0TIMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AnGYMA0GCSqGSIb3DQEBCwUAA4IBAQA4bVuNveX33mflHJrkbh0jd8z7nqwI0hEU 0A+gcarFyd3QD6jNUf7IjPAvmi8hr7hAD9pCI1RdB52TuB4L8IG0sZbNTA9vD0dr rgVQ+RW+ndl5WqnxbJexR6az0IzKK24xPQQAiQFnu+A91HD0YWxbSKMwqmmomRow eWZDZwGj4Ag/WnRD5EcTg3LHs5q2Gn0PqKLRC+vIrytuQiyjWca5GatVfxPRZkJK eBPo66wxtbZmlK74+erxhxOwXUViFGTAJ5GoOvuSmeW6TwDvIw9FgJxN/1XbWBxV QbIi3iWntCROzJ0ngLgNEwx8XfcozjmOATZw0Q9b94XFU2ZPcNw4 -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:51 2026 by rpki-client