This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fiR7mB00T2vEwetCMx0jKDgWE3w.cer File: fiR7mB00T2vEwetCMx0jKDgWE3w.cer (raw, json) Hash identifier: eOPb+/OwMKwdgcdddXh60kdBpMfM8SypUh6i6VxLcvE= Subject key identifier: 7E:24:7B:98:1D:34:4F:6B:C4:C1:EB:42:33:1D:23:28:38:16:13:7C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E38759BAC47379083D1CC632FCAE464 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/87/83fe09-b50f-42e0-995d-4daff4350001/1/fiR7mB00T2vEwetCMx0jKDgWE3w.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/87/83fe09-b50f-42e0-995d-4daff4350001/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 47860 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:75:9b:ac:47:37:90:83:d1:cc:63:2f:ca:e4:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e247b981d344f6bc4c1eb42331d23283816137c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:09:ed:3d:8a:5e:77:76:1f:af:af:68:bc:ed: 25:66:64:42:d9:df:d9:d4:a1:71:f0:2b:0f:13:63: 30:da:a7:31:3c:f1:4c:48:22:d6:ea:53:cc:bf:5d: 20:b0:a7:45:35:d7:c4:b1:f1:dc:f3:bd:a6:36:b3: 41:d2:bd:f7:0b:a4:17:f2:fa:62:ba:81:4a:a7:34: dc:52:ba:60:5a:4a:cf:d5:4d:91:56:45:41:9d:1e: 62:c0:6b:53:9c:da:4f:64:dc:23:9d:a9:ef:87:0d: ef:2d:fa:5a:21:a2:01:d9:30:3d:b2:f2:9b:45:eb: a0:63:ff:56:48:06:ef:fe:3f:d6:95:f1:96:18:e6: fb:55:fb:30:2f:1b:81:34:4f:a9:94:52:91:62:2c: 3e:6f:54:27:a1:d8:ec:27:6b:2f:7c:60:13:2f:a0: e8:4b:17:77:30:7a:ff:f4:36:0b:1d:24:0a:08:e2: 57:42:2d:89:b5:ca:3b:dd:f4:df:eb:ef:12:cb:5a: 80:af:e8:b6:0d:86:d4:5b:f8:fe:27:ad:73:b3:4c: c8:ac:1e:80:85:33:7d:e3:dd:cc:a7:13:c9:dd:91: 2d:9f:9c:b0:d8:c5:9b:e9:5e:2f:b0:e0:af:9a:59: 0b:06:92:b1:93:19:d4:71:57:ab:66:aa:1f:7d:2e: 3f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:24:7B:98:1D:34:4F:6B:C4:C1:EB:42:33:1D:23:28:38:16:13:7C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/83fe09-b50f-42e0-995d-4daff4350001/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/83fe09-b50f-42e0-995d-4daff4350001/1/fiR7mB00T2vEwetCMx0jKDgWE3w.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 47860 Signature Algorithm: sha256WithRSAEncryption 2f:9e:cd:a6:3f:3e:34:09:f4:10:2d:d5:96:fa:b5:c9:2f:7a: f1:9f:1d:ad:b8:ff:ed:b0:02:18:ae:b4:d8:e7:4b:36:c1:36: bd:01:79:dd:42:04:c6:45:9a:8d:8e:3d:37:ff:e7:3b:2d:8b: 99:a8:e6:24:ff:d7:0c:1a:96:85:1f:68:3f:a4:73:3c:b4:77: 0d:53:a5:d5:81:77:da:e5:fc:d5:ef:b5:7a:ee:7f:b6:61:8b: c5:b9:8b:2c:39:fd:99:5c:ea:f9:f4:5f:ce:e6:b3:9a:b7:ae: 18:ee:8b:1c:90:85:87:17:8e:95:be:2d:ba:40:76:87:66:eb: 59:04:9d:39:62:13:ef:a5:55:a7:a1:da:35:2c:72:2a:77:f5: 3e:f7:6d:0b:99:f3:73:76:b7:cd:6b:59:4f:ab:68:27:58:f9: 3e:0f:40:da:04:4c:2a:98:06:df:b8:3a:b9:f0:b6:bd:e4:49: 5b:6b:c2:7a:75:c9:db:6d:ef:48:34:55:56:4a:df:d7:49:bf: 43:1b:87:b0:c9:14:b4:d2:b5:68:50:ba:e3:c1:b9:f1:36:5a: 77:dc:5a:bd:c7:b3:1f:ee:15:7e:0a:aa:e7:de:86:2c:91:68: 35:e8:1d:39:29:fe:e5:38:66:1c:fa:af:c4:ae:58:09:c1:ed: 42:dc:d4:5c -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt+OHWbrEc3kIPRzGMvyuRkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTI0N2I5ODFkMzQ0ZjZiYzRjMWViNDIzMzFkMjMyODM4MTYxMzdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwntPYped3Yfr69ovO0lZmRC2d/Z 1KFx8CsPE2Mw2qcxPPFMSCLW6lPMv10gsKdFNdfEsfHc872mNrNB0r33C6QX8vpi uoFKpzTcUrpgWkrP1U2RVkVBnR5iwGtTnNpPZNwjnanvhw3vLfpaIaIB2TA9svKb ReugY/9WSAbv/j/WlfGWGOb7VfswLxuBNE+plFKRYiw+b1QnodjsJ2svfGATL6Do Sxd3MHr/9DYLHSQKCOJXQi2Jtco73fTf6+8Sy1qAr+i2DYbUW/j+J61zs0zIrB6A hTN9493MpxPJ3ZEtn5yw2MWb6V4vsOCvmlkLBpKxkxnUcVerZqoffS4/aQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFH4ke5gdNE9rxMHrQjMdIyg4FhN8MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg3LzgzZmUw OS1iNTBmLTQyZTAtOTk1ZC00ZGFmZjQzNTAwMDEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcvODNmZTA5 LWI1MGYtNDJlMC05OTVkLTRkYWZmNDM1MDAwMS8xL2ZpUjdtQjAwVDJ2RXdldENN eDBqS0RnV0Uzdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwC69DANBgkqhkiG9w0BAQsFAAOCAQEAL57Npj8+NAn0 EC3Vlvq1yS968Z8drbj/7bACGK602OdLNsE2vQF53UIExkWajY49N//nOy2Lmajm JP/XDBqWhR9oP6RzPLR3DVOl1YF32uX81e+1eu5/tmGLxbmLLDn9mVzq+fRfzuaz mreuGO6LHJCFhxeOlb4tukB2h2brWQSdOWIT76VVp6HaNSxyKnf1PvdtC5nzc3a3 zWtZT6toJ1j5Pg9A2gRMKpgG37g6ufC2veRJW2vCenXJ223vSDRVVkrf10m/QxuH sMkUtNK1aFC648G58TZad9xavcezH+4Vfgqq596GLJFoNegdOSn+5ThmHPqvxK5Y CcHtQtzUXA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:50:46 2026 by rpki-client