This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ffEaMWDbjOeRi_PsWLXF4ePpOCE.cer File: ffEaMWDbjOeRi_PsWLXF4ePpOCE.cer (raw, json) Hash identifier: NJN2pLiJKrCPwLSIXiNcvcIymg73QXSx4emzCFBpDdE= Subject key identifier: 7D:F1:1A:31:60:DB:8C:E7:91:8B:F3:EC:58:B5:C5:E1:E3:E9:38:21 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F83FFD26750FB7707FA3C0A9F61AE9A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/ffEaMWDbjOeRi_PsWLXF4ePpOCE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:21:55 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41504 IP: 195.3.212.0/22 IP: 2001:67c:2378::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:ff:d2:67:50:fb:77:07:fa:3c:0a:9f:61:ae:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:21:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7df11a3160db8ce7918bf3ec58b5c5e1e3e93821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c4:60:d4:9c:df:8e:29:53:cc:d7:23:91:5b: 5f:6a:24:09:99:4e:d4:ff:75:54:a9:87:f2:bc:62: f8:15:c8:70:e4:68:f0:70:f4:ce:5d:6b:24:39:69: c6:07:5a:d2:59:58:11:36:e4:75:b2:f6:c5:3e:3b: be:a5:38:62:aa:01:d8:8b:9e:a7:5c:64:68:2e:c4: 89:cf:a3:64:2f:9f:dd:e6:72:b8:2d:34:c4:06:9d: 48:75:ba:23:86:e3:35:51:18:d6:31:d3:1b:22:2f: 9e:f0:d6:34:80:59:01:fe:61:d8:7f:98:56:2b:5c: 0d:b7:5c:d2:b7:32:47:4c:bc:36:b9:18:bd:e7:e7: 9c:c7:bb:77:d8:21:84:4c:6a:89:cf:f0:19:6d:46: df:05:20:00:5d:69:00:8d:6e:15:9a:b0:f8:90:97: 89:dc:a6:8b:8e:77:65:b4:0a:a5:be:b3:1c:15:be: d0:af:ba:0a:26:9c:c3:36:79:c3:f7:a8:8c:c7:1c: 6b:7f:29:0f:28:1e:99:f7:da:e2:a3:a9:82:5e:dd: 8e:fe:ce:79:bd:ef:89:e9:0d:eb:73:78:44:93:b2: 78:9b:48:c8:66:03:04:f1:74:91:73:75:cb:38:99: 1f:86:f5:50:28:a9:76:9c:61:e8:43:07:8d:87:9d: a3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F1:1A:31:60:DB:8C:E7:91:8B:F3:EC:58:B5:C5:E1:E3:E9:38:21 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/ffEaMWDbjOeRi_PsWLXF4ePpOCE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.3.212.0/22 IPv6: 2001:67c:2378::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41504 Signature Algorithm: sha256WithRSAEncryption 74:98:51:ac:52:fe:31:da:0f:b9:30:e5:18:03:1d:f3:1b:c3: 9e:dd:83:61:f5:2d:02:30:35:7b:54:60:f2:eb:dc:ef:9f:23: 1f:0e:a8:e3:95:97:0a:63:45:60:16:8e:2e:f2:aa:66:6b:58: d4:1d:3b:03:4c:ff:15:db:f7:de:04:73:95:62:3a:cb:53:d2: 1d:9a:f3:d1:04:17:00:86:16:70:6c:17:87:4f:ec:5d:1e:3d: 28:97:f5:74:c5:16:63:8b:83:cc:7f:df:28:e4:51:91:ea:a8: d7:39:04:ff:a9:df:f6:b6:30:7e:71:65:17:a0:55:78:2c:80: f3:c7:84:b2:3f:3d:01:d2:5f:85:79:ec:cd:ea:16:bd:78:24: 88:32:9c:34:a1:3c:76:7c:ad:e5:84:6c:de:f9:f5:87:1d:91: 76:f2:bf:4a:cf:91:e5:55:14:aa:c0:4e:a1:44:05:d8:c1:60: 9e:c9:d8:12:e4:17:41:8b:a6:ac:2e:c1:6d:90:b5:c5:1c:d1: a5:54:86:81:7d:dc:26:81:52:89:a5:d1:e0:e7:a5:5b:06:b2: c3:9f:be:e9:a5:eb:2f:bd:52:f2:f4:c0:2a:ed:3c:c6:6f:02: ed:ca:0c:46:50:30:f3:e5:48:de:49:5d:fc:b7:2e:69:3d:39: 1c:d0:0a:f9 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt/g//SZ1D7dwf6PAqfYa6aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZGYxMWEzMTYwZGI4Y2U3OTE4YmYzZWM1OGI1YzVlMWUzZTkzODIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcRg1JzfjilTzNcjkVtfaiQJmU7U /3VUqYfyvGL4Fchw5GjwcPTOXWskOWnGB1rSWVgRNuR1svbFPju+pThiqgHYi56n XGRoLsSJz6NkL5/d5nK4LTTEBp1IdbojhuM1URjWMdMbIi+e8NY0gFkB/mHYf5hW K1wNt1zStzJHTLw2uRi95+ecx7t32CGETGqJz/AZbUbfBSAAXWkAjW4VmrD4kJeJ 3KaLjndltAqlvrMcFb7Qr7oKJpzDNnnD96iMxxxrfykPKB6Z99rio6mCXt2O/s55 ve+J6Q3rc3hEk7J4m0jIZgME8XSRc3XLOJkfhvVQKKl2nGHoQweNh52jWwIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFH3xGjFg24znkYvz7Fi1xeHj6TghMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAzLzg1YjI5 Yi0wZWEyLTQ3NDEtYjQzOS1lNGI2NmEzZmU1YmMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMvODViMjli LTBlYTItNDc0MS1iNDM5LWU0YjY2YTNmZTViYy8xL2ZmRWFNV0Riak9lUmlfUHNX TFhGNGVQcE9DRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQCwwPUMA8EAgACMAkDBwAgAQZ8I3gwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAKIgMA0GCSqGSIb3DQEBCwUAA4IBAQB0mFGsUv4x 2g+5MOUYAx3zG8Oe3YNh9S0CMDV7VGDy69zvnyMfDqjjlZcKY0VgFo4u8qpma1jU HTsDTP8V2/feBHOVYjrLU9IdmvPRBBcAhhZwbBeHT+xdHj0ol/V0xRZji4PMf98o 5FGR6qjXOQT/qd/2tjB+cWUXoFV4LIDzx4SyPz0B0l+FeezN6ha9eCSIMpw0oTx2 fK3lhGze+fWHHZF28r9Kz5HlVRSqwE6hRAXYwWCeydgS5BdBi6asLsFtkLXFHNGl VIaBfdwmgVKJpdHg56VbBrLDn77ppesvvVLy9MAq7TzGbwLtygxGUDDz5UjeSV38 ty5pPTkc0Ar5 -----END CERTIFICATE-----Generated at Mon Feb 9 20:49:39 2026 by rpki-client