This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fSW-cEBtOB5yXT4r7xL2qPPdglc.cer File: fSW-cEBtOB5yXT4r7xL2qPPdglc.cer (raw, json) Hash identifier: ezvAdWtIl7XhziFBCYhlf9s7okp63Q1ViSib+H0IKs0= Subject key identifier: 7D:25:BE:70:40:6D:38:1E:72:5D:3E:2B:EF:12:F6:A8:F3:DD:82:57 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7FF1EF6F415FF9F7172454371FF48F97 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/fSW-cEBtOB5yXT4r7xL2qPPdglc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 18:22:00 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 50293 IP: 193.39.195.0/24 IP: 2a10:e440::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:ef:6f:41:5f:f9:f7:17:24:54:37:1f:f4:8f:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 18:22:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d25be70406d381e725d3e2bef12f6a8f3dd8257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ae:59:bd:94:27:df:96:71:8a:0e:02:49:79: 8d:ec:19:9d:a6:87:bd:46:e6:84:59:b4:7c:5d:91: b1:72:b7:b4:5c:41:e7:57:c4:75:52:bd:16:4c:bf: e5:0e:43:05:a6:62:59:af:44:12:f7:fa:b3:24:a2: 56:ac:3c:e6:5d:01:f6:fb:a6:27:84:22:5d:11:70: fb:89:90:92:d2:2c:17:76:74:fc:75:cc:b3:6b:7d: 63:a1:87:76:11:8f:c5:db:ec:5f:17:1f:67:29:5b: b6:8e:bc:60:81:a8:00:23:c4:f0:b5:43:de:16:c4: c0:af:76:69:19:24:4a:51:8d:11:9d:1a:b4:0e:f2: e3:b7:1d:45:17:1e:38:b6:9d:fe:23:b1:ae:1a:51: 65:dd:18:6e:ab:b8:08:9d:ba:59:10:7b:27:b6:83: 7f:80:dc:a8:97:be:66:84:83:5b:a0:56:11:8b:dd: 0b:b1:13:fb:ab:10:01:c9:e2:99:e3:42:95:27:2f: 49:56:cf:5b:58:0c:fd:2f:6d:21:f0:45:e8:e4:5f: 3f:c6:cc:88:56:39:bd:d3:7e:0c:63:1a:cf:30:fc: a6:5e:6d:fc:c4:f3:5c:5b:67:2c:d8:75:95:30:ec: 70:34:ed:ba:3c:0e:78:dc:16:ad:4e:08:96:5d:29: b7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:25:BE:70:40:6D:38:1E:72:5D:3E:2B:EF:12:F6:A8:F3:DD:82:57 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/fSW-cEBtOB5yXT4r7xL2qPPdglc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.39.195.0/24 IPv6: 2a10:e440::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 50293 Signature Algorithm: sha256WithRSAEncryption 19:90:22:35:5d:04:2f:a1:a1:ed:35:47:9e:5d:9d:48:4d:87: e7:3e:32:70:22:28:77:35:41:3f:e9:63:3d:28:0f:bd:0f:87: 4c:9f:1e:41:d2:4c:f5:71:cd:9b:75:2f:19:59:74:36:93:c6: bd:43:92:a4:56:36:7d:ef:f5:54:4f:d2:d3:5e:36:66:e9:88: 15:e9:ee:80:81:82:38:4c:96:0c:25:4b:d3:62:f8:8b:17:bf: 41:78:4f:ee:78:76:a4:fa:9f:61:27:3e:c9:3b:e1:c0:4d:91: d3:75:97:ed:13:82:4e:75:9e:b1:03:c0:81:98:e4:1b:ef:d3: 54:c6:62:d4:b8:83:59:db:9f:28:af:a6:5a:14:82:18:5d:d5: 1d:87:f8:2d:2c:56:4f:57:84:54:e1:5f:19:fa:51:bc:cc:78: 82:62:25:8b:9a:96:d4:14:fc:71:2f:4a:00:62:0e:ac:35:63: 50:23:7f:75:85:b6:80:00:d0:04:c6:ec:5a:c0:55:8a:da:81: a5:ea:fc:e9:cc:48:1a:ca:7a:88:db:e3:75:05:60:94:d6:31: 6e:dd:27:73:ed:e2:38:78:c0:26:3a:46:60:ee:f0:b0:d0:0c: b7:1f:ce:0a:72:03:4c:bd:0a:f3:53:f9:db:1d:4f:57:14:42: e0:11:27:cc -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/8e9vQV/59xckVDcf9I+XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTgyMjAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDI1YmU3MDQwNmQzODFlNzI1ZDNlMmJlZjEyZjZhOGYzZGQ4MjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAta5ZvZQn35Zxig4CSXmN7Bmdpoe9 RuaEWbR8XZGxcre0XEHnV8R1Ur0WTL/lDkMFpmJZr0QS9/qzJKJWrDzmXQH2+6Yn hCJdEXD7iZCS0iwXdnT8dcyza31joYd2EY/F2+xfFx9nKVu2jrxggagAI8TwtUPe FsTAr3ZpGSRKUY0RnRq0DvLjtx1FFx44tp3+I7GuGlFl3Rhuq7gInbpZEHsntoN/ gNyol75mhINboFYRi90LsRP7qxAByeKZ40KVJy9JVs9bWAz9L20h8EXo5F8/xsyI Vjm9034MYxrPMPymXm38xPNcW2cs2HWVMOxwNO26PA543BatTgiWXSm3cwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFH0lvnBAbTgecl0+K+8S9qjz3YJXMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI5LzZhMzAx Yy04NTMyLTQ2ZjAtYTMzZS1lYjY1ZjFmNDZlMGIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkvNmEzMDFj LTg1MzItNDZmMC1hMzNlLWViNjVmMWY0NmUwYi8xL2ZTVy1jRUJ0T0I1eVhUNHI3 eEwycVBQZGdsYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwSfDMA0EAgACMAcDBQAqEORAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDEdTANBgkqhkiG9w0BAQsFAAOCAQEAGZAiNV0EL6Gh 7TVHnl2dSE2H5z4ycCIodzVBP+ljPSgPvQ+HTJ8eQdJM9XHNm3UvGVl0NpPGvUOS pFY2fe/1VE/S0142ZumIFenugIGCOEyWDCVL02L4ixe/QXhP7nh2pPqfYSc+yTvh wE2R03WX7ROCTnWesQPAgZjkG+/TVMZi1LiDWdufKK+mWhSCGF3VHYf4LSxWT1eE VOFfGfpRvMx4gmIli5qW1BT8cS9KAGIOrDVjUCN/dYW2gADQBMbsWsBVitqBper8 6cxIGsp6iNvjdQVglNYxbt0nc+3iOHjAJjpGYO7wsNAMtx/OCnIDTL0K81P52x1P VxRC4BEnzA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:05 2026 by rpki-client