This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g7826xjvmlfF-2A62kAP5rZojm4.cer File: g7826xjvmlfF-2A62kAP5rZojm4.cer (raw, json) Hash identifier: S04CaugzF5spZGx+hqh8w0aU9JuTKO6s1JklQR/QKGM= Subject key identifier: 83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB7BF3B227360D9D8806CB2A42445F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/g7826xjvmlfF-2A62kAP5rZojm4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:22 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 39047 IP: 31.3.24.0/21 IP: 37.75.216.0/21 IP: 80.242.96.0/20 IP: 93.190.176.0/21 IP: 185.14.16.0/22 IP: 195.66.138.0/23 IP: 217.175.0.0/20 IP: 2a03:a840::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:7b:f3:b2:27:36:0d:9d:88:06:cb:2a:42:44:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=83bf36eb18ef9a57c5fb603ada400fe6b6688e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a3:21:5d:cc:a5:3b:20:4b:00:ec:4f:d1:62: f5:31:91:02:b2:4b:68:82:78:cd:e5:f6:0f:dc:51: 72:c8:0f:0b:f7:ec:b6:53:7d:b3:61:8e:7b:9c:d8: d1:e7:e4:71:97:2a:c9:8f:a3:de:e2:fe:9c:ca:64: 0f:0f:0b:e6:10:53:0f:77:62:95:26:33:92:4f:1e: f2:f5:5f:0c:65:53:6f:48:4b:ef:87:2c:bd:29:24: d5:be:44:00:92:74:47:59:6a:e7:d9:bf:7b:21:ce: 92:3d:b2:99:6d:df:2e:b3:d8:dc:d2:f5:51:fe:73: 61:1f:c8:0c:97:b3:26:f2:a4:f9:b4:f8:bf:69:6b: d3:2e:87:e3:c5:aa:d1:69:82:ca:3d:2f:e0:96:c7: de:d8:96:85:37:2c:49:4b:45:ff:8a:74:43:55:35: 96:7a:19:db:09:32:b0:55:50:23:f6:a8:6b:3f:00: 12:ea:c6:e1:65:7c:8d:58:62:5b:e2:b2:94:f9:46: 48:78:f6:2c:fb:2e:6d:00:4a:bd:50:ef:94:3c:7f: 86:c6:b2:d9:a3:a2:1e:7c:20:31:d7:44:86:70:52: 72:d3:f7:32:70:84:fb:9d:65:d5:ea:a8:10:0c:91: 48:66:6e:97:f9:9d:1e:3a:1c:02:5a:7b:db:af:5a: 92:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/g7826xjvmlfF-2A62kAP5rZojm4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.3.24.0/21 37.75.216.0/21 80.242.96.0/20 93.190.176.0/21 185.14.16.0/22 195.66.138.0/23 217.175.0.0/20 IPv6: 2a03:a840::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 39047 Signature Algorithm: sha256WithRSAEncryption a3:32:78:74:00:f5:75:a6:97:15:26:8d:d5:a5:be:11:1b:52: 1c:f0:be:01:9a:2f:be:ec:07:96:67:f8:0f:52:6f:d6:f7:e0: cc:71:f8:35:33:18:6f:b2:73:2b:25:b9:6b:c9:af:2e:21:10: e2:e7:77:38:58:f6:b6:39:d4:17:bb:e9:4b:a6:d4:e8:97:43: 0f:7a:19:e3:0b:f6:42:54:f0:80:fc:be:50:eb:11:f2:e4:01: ae:86:ca:91:8a:0d:2d:95:73:5e:7b:31:bc:3e:a7:09:3b:b1: ec:d9:ed:1b:7f:59:ff:f8:dc:42:69:dc:e0:76:df:f0:a7:ee: d2:fb:ce:d1:58:34:77:d7:ed:be:5e:de:ea:17:1f:0e:3c:43: ae:10:ce:c8:70:63:e4:e5:8c:c2:39:af:55:98:46:9c:94:94: a6:02:f1:06:a7:7a:83:a8:b7:ba:aa:31:a6:b7:80:ec:e7:a9: 07:0c:14:1b:2b:81:b4:65:91:84:a1:1b:5c:4c:e9:ed:07:db: a0:90:4a:d6:18:c8:27:c9:c8:55:6c:78:2e:72:34:c0:35:60: 99:3c:3f:22:83:05:5b:74:4c:8b:13:ff:b8:8f:11:49:61:26: da:df:25:1d:fd:70:d4:21:0e:78:d1:8b:83:0c:e7:b0:c1:41: d4:bb:b9:83 -----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgISAZt263vzsic2DZ2IBssqQkRfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4M2JmMzZlYjE4ZWY5YTU3YzVmYjYwM2FkYTQwMGZlNmI2Njg4ZTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6MhXcylOyBLAOxP0WL1MZECskto gnjN5fYP3FFyyA8L9+y2U32zYY57nNjR5+RxlyrJj6Pe4v6cymQPDwvmEFMPd2KV JjOSTx7y9V8MZVNvSEvvhyy9KSTVvkQAknRHWWrn2b97Ic6SPbKZbd8us9jc0vVR /nNhH8gMl7Mm8qT5tPi/aWvTLofjxarRaYLKPS/glsfe2JaFNyxJS0X/inRDVTWW ehnbCTKwVVAj9qhrPwAS6sbhZXyNWGJb4rKU+UZIePYs+y5tAEq9UO+UPH+GxrLZ o6IefCAx10SGcFJy0/cycIT7nWXV6qgQDJFIZm6X+Z0eOhwCWnvbr1qS2QIDAQAB o4IC0zCCAs8wHQYDVR0OBBYEFIO/NusY75pXxftgOtpAD+a2aI5uMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMyL2Y3N2Q1 MS1lZTFjLTQ3YTktOTBiYy1lMGQyYTFiNmU4YWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIvZjc3ZDUx LWVlMWMtNDdhOS05MGJjLWUwZDJhMWI2ZThhYy8xL2c3ODI2eGp2bWxmRi0yQTYy a0FQNXJab2ptNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFIGCCsGAQUF BwEHAQH/BEMwQTAwBAIAATAqAwQDHwMYAwQDJUvYAwQEUPJgAwQDXb6wAwQCuQ4Q AwQBw0KKAwQE2a8AMA0EAgACMAcDBQAqA6hAMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwCYhzANBgkqhkiG9w0BAQsFAAOCAQEAozJ4dAD1daaXFSaN1aW+ERtSHPC+ AZovvuwHlmf4D1Jv1vfgzHH4NTMYb7JzKyW5a8mvLiEQ4ud3OFj2tjnUF7vpS6bU 6JdDD3oZ4wv2QlTwgPy+UOsR8uQBrobKkYoNLZVzXnsxvD6nCTux7NntG39Z//jc Qmnc4Hbf8Kfu0vvO0Vg0d9ftvl7e6hcfDjxDrhDOyHBj5OWMwjmvVZhGnJSUpgLx Bqd6g6i3uqoxpreA7OepBwwUGyuBtGWRhKEbXEzp7QfboJBK1hjIJ8nIVWx4LnI0 wDVgmTw/IoMFW3RMixP/uI8RSWEm2t8lHf1w1CEOeNGLgwznsMFB1Lu5gw== -----END CERTIFICATE-----Generated at Tue Feb 10 04:32:57 2026 by rpki-client