This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fmT8p3Ppn2rcgao85cY2I-4rHdc.cer File: fmT8p3Ppn2rcgao85cY2I-4rHdc.cer (raw, json) Hash identifier: dUxLqCJcc+cYhSY7oOCzMzC3yTeLcpfuyCN5yfHyqMo= Subject key identifier: 7E:64:FC:A7:73:E9:9F:6A:DC:81:AA:3C:E5:C6:36:23:EE:2B:1D:D7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DC9EABF0F2B6A7661B329498B8EFB00 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/94/480d36-d1fd-4eeb-b9b8-c52dfb289843/1/fmT8p3Ppn2rcgao85cY2I-4rHdc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/94/480d36-d1fd-4eeb-b9b8-c52dfb289843/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 56811 IP: 91.227.255.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:ea:bf:0f:2b:6a:76:61:b3:29:49:8b:8e:fb:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e64fca773e99f6adc81aa3ce5c63623ee2b1dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:af:ae:2d:ce:6d:99:04:2d:75:b8:9c:ce:e9: 0f:66:dd:df:24:86:e0:f0:7b:a2:c7:ad:32:67:8d: 3c:b9:e1:13:60:52:aa:33:6b:f4:86:0a:72:28:41: 2c:41:97:00:44:87:a0:8c:38:6e:a5:43:39:2a:5f: 42:a3:e4:09:43:f9:a6:96:a4:ff:ea:7e:c8:18:23: 89:63:fb:92:cf:07:a9:b9:69:e0:cc:37:0a:c5:23: e1:9d:c9:df:da:5f:16:1a:e9:90:23:0f:86:e7:8f: a9:8a:f3:80:44:39:53:b0:96:fa:ea:fe:77:8d:42: de:39:b7:83:ba:bf:a4:24:4e:ac:d4:06:14:05:48: 73:4b:5b:4e:b1:1e:7c:73:2f:64:7a:dc:14:6b:88: 38:34:90:2f:80:19:90:c1:87:ff:dc:ad:6b:48:cd: 30:33:9a:81:b6:dd:c7:72:b0:37:1c:25:78:2c:ba: 61:cf:8a:21:fe:9b:16:21:60:c7:bd:2b:7a:b2:a1: 96:7d:5a:e3:e9:8c:74:5b:2c:18:b2:83:04:fb:8e: 52:2f:ce:9c:a1:17:c6:0c:76:ea:70:91:38:dd:db: 76:a7:8a:05:56:25:8a:fb:aa:55:e7:84:31:e0:e3: ff:3d:58:0d:d6:cc:c1:31:71:ff:76:fe:e2:ed:42: 79:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:64:FC:A7:73:E9:9F:6A:DC:81:AA:3C:E5:C6:36:23:EE:2B:1D:D7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/480d36-d1fd-4eeb-b9b8-c52dfb289843/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/480d36-d1fd-4eeb-b9b8-c52dfb289843/1/fmT8p3Ppn2rcgao85cY2I-4rHdc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.227.255.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 56811 Signature Algorithm: sha256WithRSAEncryption a3:b7:fa:9e:86:de:e9:48:dc:a4:67:bc:38:69:5a:3d:33:3c: 5e:3d:24:e1:8e:99:35:d9:2d:46:4c:e5:89:ae:58:cd:72:78: 47:cb:22:c3:c5:cd:a6:31:69:e9:84:90:95:a6:37:30:4b:3c: 4d:2b:e4:bb:a9:ad:19:94:bf:ee:29:d9:4e:1f:89:f4:33:97: 3b:03:66:79:75:ab:e2:17:08:e0:ba:48:a6:34:87:02:9a:d5: af:3f:bf:7f:1f:1c:f0:5f:d2:2e:06:86:f1:79:f5:01:29:44: db:0e:96:11:67:1f:af:fe:d8:a3:d6:4e:ed:71:e6:74:58:e6: be:5e:0f:0b:e3:8f:31:77:66:f6:7b:1d:5c:15:22:10:03:b7: 65:65:44:33:b7:68:41:4c:12:62:d9:eb:25:e0:ed:97:a8:bd: 41:a7:7f:8a:62:bf:60:b1:06:66:c7:2b:97:c2:33:66:ca:1d: 5e:7d:5a:f0:5d:44:02:67:a5:30:16:b9:52:23:d5:13:09:4a: f7:ef:36:f9:51:fe:d4:80:4b:ab:4b:ad:09:65:c1:f8:c4:d4: 56:32:61:f3:a2:8f:49:59:ed:11:72:7d:24:76:e0:c8:14:85: c5:72:05:d7:c0:46:6f:11:39:26:d1:04:64:e3:d5:75:f4:2a: c8:ab:e2:9d -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9yeq/DytqdmGzKUmLjvsAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTY0ZmNhNzczZTk5ZjZhZGM4MWFhM2NlNWM2MzYyM2VlMmIxZGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8K+uLc5tmQQtdbiczukPZt3fJIbg 8Huix60yZ408ueETYFKqM2v0hgpyKEEsQZcARIegjDhupUM5Kl9Co+QJQ/mmlqT/ 6n7IGCOJY/uSzwepuWngzDcKxSPhncnf2l8WGumQIw+G54+pivOARDlTsJb66v53 jULeObeDur+kJE6s1AYUBUhzS1tOsR58cy9ketwUa4g4NJAvgBmQwYf/3K1rSM0w M5qBtt3HcrA3HCV4LLphz4oh/psWIWDHvSt6sqGWfVrj6Yx0WywYsoME+45SL86c oRfGDHbqcJE43dt2p4oFViWK+6pV54Qx4OP/PVgN1szBMXH/dv7i7UJ5iQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFH5k/Kdz6Z9q3IGqPOXGNiPuKx3XMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk0LzQ4MGQz Ni1kMWZkLTRlZWItYjliOC1jNTJkZmIyODk4NDMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQvNDgwZDM2 LWQxZmQtNGVlYi1iOWI4LWM1MmRmYjI4OTg0My8xL2ZtVDhwM1BwbjJyY2dhbzg1 Y1kySS00ckhkYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW+P/MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDd6zANBgkqhkiG9w0BAQsFAAOCAQEAo7f6nobe6UjcpGe8OGlaPTM8Xj0k4Y6Z NdktRkzlia5YzXJ4R8siw8XNpjFp6YSQlaY3MEs8TSvku6mtGZS/7inZTh+J9DOX OwNmeXWr4hcI4LpIpjSHAprVrz+/fx8c8F/SLgaG8Xn1ASlE2w6WEWcfr/7Yo9ZO 7XHmdFjmvl4PC+OPMXdm9nsdXBUiEAO3ZWVEM7doQUwSYtnrJeDtl6i9Qad/imK/ YLEGZscrl8IzZsodXn1a8F1EAmelMBa5UiPVEwlK9+82+VH+1IBLq0utCWXB+MTU VjJh86KPSVntEXJ9JHbgyBSFxXIF18BGbxE5JtEEZOPVdfQqyKvinQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:04 2026 by rpki-client