This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f_sBFcSs3dG0rcQHN4Byas_AGvk.cer File: f_sBFcSs3dG0rcQHN4Byas_AGvk.cer (raw, json) Hash identifier: E37eMVP6e3inSUCeHBphmqyV23SGRpu50xiWvaLrMBQ= Subject key identifier: 7F:FB:01:15:C4:AC:DD:D1:B4:AD:C4:07:37:80:72:6A:CF:C0:1A:F9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E38D4172B7C7947E10D40D74B5C91D4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/f_sBFcSs3dG0rcQHN4Byas_AGvk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:20:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 31129 IP: 91.211.252.0/22 IP: 193.23.51.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:d4:17:2b:7c:79:47:e1:0d:40:d7:4b:5c:91:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7ffb0115c4acddd1b4adc4073780726acfc01af9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5d:74:99:4e:69:0b:ea:e5:11:ef:8c:c5:f8: ac:70:f8:92:fd:83:89:73:13:c1:a9:a4:8a:88:b2: 0b:4d:05:83:51:fa:57:47:0c:84:4c:56:26:73:93: e1:96:07:e0:b6:4b:41:5a:81:fc:34:e9:3c:f0:68: e1:2d:00:fd:6f:27:a8:17:8c:74:a6:53:5a:bd:8c: fd:bf:2a:2a:7b:45:ac:53:7d:b0:73:15:ae:5e:f7: 37:e0:7b:0e:e0:ad:04:b1:d2:af:9b:dc:ab:31:1d: d7:76:dd:02:6a:1f:18:65:3a:3a:5d:6d:17:6b:be: f9:07:57:3d:d8:8e:bc:91:42:58:70:7c:d4:e5:6e: 26:9f:25:77:62:c6:2e:92:9f:77:1e:00:0e:a9:97: 71:3c:90:32:6c:18:eb:c7:b3:68:e7:86:26:31:77: 86:22:9c:5c:18:6f:fc:4a:5c:6a:b8:9d:71:ba:34: 75:cd:f7:78:dd:e9:fb:05:9e:5c:6a:83:20:f7:21: bb:bd:c5:d7:e3:3d:39:8f:71:73:1e:1f:5c:fd:99: 96:ff:38:6f:cf:00:fb:51:8b:47:85:91:fc:c2:72: f8:5b:8f:15:a5:6d:78:b2:e7:13:57:5f:72:56:39: a5:bf:c1:a1:af:50:ed:a3:ef:21:de:95:b5:8f:cc: cd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FB:01:15:C4:AC:DD:D1:B4:AD:C4:07:37:80:72:6A:CF:C0:1A:F9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/f_sBFcSs3dG0rcQHN4Byas_AGvk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.211.252.0/22 193.23.51.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 31129 Signature Algorithm: sha256WithRSAEncryption ae:4d:11:fc:2b:76:c4:01:b3:34:0f:ec:ed:43:07:d3:67:64: d2:3c:0b:7c:b5:3d:d7:2b:7a:f5:bf:01:3b:8e:cf:54:67:d2: 06:55:13:66:e0:b7:4d:eb:15:48:8e:5b:7e:ed:19:b6:e4:30: 5b:b9:92:23:71:5d:26:05:a0:e6:4c:d9:b7:0a:94:5f:f6:6a: 8c:58:e7:61:03:85:15:2c:a5:89:60:5f:57:35:a7:e2:11:fe: 75:eb:4b:fc:8c:09:4c:ee:49:d1:c4:7f:c7:c0:c3:82:fc:72: d7:ff:df:a7:b3:d7:08:0b:3f:15:0c:a5:2d:60:b6:ca:5b:0a: 54:4b:e1:70:2c:4a:68:eb:34:1e:a0:fa:60:59:c6:34:90:f9: e5:14:89:49:19:20:eb:b2:7b:95:e5:9f:88:5d:8a:94:4c:70: 83:8f:54:57:5f:14:05:bc:33:67:9f:97:5b:bd:42:cc:3f:f2: 84:92:c4:a9:2d:03:42:5b:7d:af:64:cb:8c:ca:92:a6:04:b3: 02:46:5e:c2:8d:2b:1d:af:31:56:64:be:f6:41:f8:00:aa:7c: b8:99:57:b6:04:e8:90:96:87:d3:61:9c:00:01:7a:02:e9:ca: 1a:46:be:d4:4d:6b:b3:5d:9d:be:3a:c5:99:e7:c5:f2:ba:19: 28:a1:22:97 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgISAZt+ONQXK3x5R+ENQNdLXJHUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZmZiMDExNWM0YWNkZGQxYjRhZGM0MDczNzgwNzI2YWNmYzAxYWY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6V10mU5pC+rlEe+MxfiscPiS/YOJ cxPBqaSKiLILTQWDUfpXRwyETFYmc5PhlgfgtktBWoH8NOk88GjhLQD9byeoF4x0 plNavYz9vyoqe0WsU32wcxWuXvc34HsO4K0EsdKvm9yrMR3Xdt0Cah8YZTo6XW0X a775B1c92I68kUJYcHzU5W4mnyV3YsYukp93HgAOqZdxPJAybBjrx7No54YmMXeG IpxcGG/8SlxquJ1xujR1zfd43en7BZ5caoMg9yG7vcXX4z05j3FzHh9c/ZmW/zhv zwD7UYtHhZH8wnL4W48VpW14sucTV19yVjmlv8Ghr1Dto+8h3pW1j8zN8QIDAQAB o4ICpTCCAqEwHQYDVR0OBBYEFH/7ARXErN3RtK3EBzeAcmrPwBr5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYxLzUyNjhm Yy1jZmVlLTRhYTgtOTdiZi1jYmUwMjA2NjVlZmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEvNTI2OGZj LWNmZWUtNGFhOC05N2JmLWNiZTAyMDY2NWVmZS8xL2Zfc0JGY1NzM2RHMHJjUUhO NEJ5YXNfQUd2ay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQCW9P8AwQAwRczMBkGCCsGAQUFBwEIAQH/BAow CKAGMAQCAnmZMA0GCSqGSIb3DQEBCwUAA4IBAQCuTRH8K3bEAbM0D+ztQwfTZ2TS PAt8tT3XK3r1vwE7js9UZ9IGVRNm4LdN6xVIjlt+7Rm25DBbuZIjcV0mBaDmTNm3 CpRf9mqMWOdhA4UVLKWJYF9XNafiEf5160v8jAlM7knRxH/HwMOC/HLX/9+ns9cI Cz8VDKUtYLbKWwpUS+FwLEpo6zQeoPpgWcY0kPnlFIlJGSDrsnuV5Z+IXYqUTHCD j1RXXxQFvDNnn5dbvULMP/KEksSpLQNCW32vZMuMypKmBLMCRl7CjSsdrzFWZL72 QfgAqny4mVe2BOiQlofTYZwAAXoC6coaRr7UTWuzXZ2+OsWZ58XyuhkooSKX -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:00 2026 by rpki-client