This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer File: i7i2EnIdTUwtB8v-LklemGoPAm0.cer (raw, json) Hash identifier: BV+v+W8v75zRx14aD4piy1FFquJpHEH5Bi0h9vAEKfE= Subject key identifier: 8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15E7D750369140F881A520DDFB4BB5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215586 IP: 185.118.116.0/24 IP: 2a14:6c80::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:e7:d7:50:36:91:40:f8:81:a5:20:dd:fb:4b:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4c:1e:2a:16:42:1f:51:49:1c:40:e3:6b:79: a9:b9:92:1a:43:08:4e:ed:e0:09:b7:d0:8a:2b:7c: 09:6b:8b:ab:88:c1:1d:92:dc:2e:0e:25:af:b5:58: b3:d1:c5:e9:ec:1c:a5:38:be:31:d7:53:81:ee:8a: 4d:f9:c3:11:a6:49:be:ab:e5:0f:1c:e8:63:6e:0a: 8e:8f:1c:8c:05:0c:fa:d2:6e:cd:33:22:e0:d1:a6: 14:c9:45:76:45:6a:35:ef:63:85:66:2b:99:95:5e: 38:df:00:38:53:08:cf:6a:b1:b7:bd:76:f3:66:44: 81:21:56:0c:bf:4b:4f:f2:88:34:65:87:83:10:1b: 99:c6:a5:57:ac:49:f5:eb:2f:f7:71:34:b0:7a:b8: 95:05:65:5e:14:e8:52:89:80:3f:34:72:dd:e4:dc: c2:10:1f:af:20:7d:89:ce:a9:6e:15:20:fb:84:ea: af:bc:43:ac:28:b1:7e:a1:a0:95:9a:9f:69:6f:a1: 6e:02:15:af:de:30:82:e2:8a:9b:85:52:b7:41:63: bb:ea:37:10:b5:42:4e:9c:05:cf:1a:f0:f4:78:69: 15:3e:de:e8:10:c7:b4:75:96:7d:ad:df:4f:17:7b: 97:30:70:4e:31:69:84:14:24:b9:0c:40:3f:50:b0: c1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.118.116.0/24 IPv6: 2a14:6c80::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215586 Signature Algorithm: sha256WithRSAEncryption ae:92:ae:b2:2e:0f:14:f8:63:95:c9:aa:5e:f5:ed:0a:c5:fb: 4d:14:03:c8:e5:42:55:7d:fc:17:fd:84:3d:f6:4d:34:bf:c3: 8e:56:2d:8c:79:3e:3e:85:04:20:6c:e8:ef:24:24:d9:af:6a: bb:41:98:e0:22:0d:de:42:46:3f:93:40:37:16:c2:44:a1:c6: d4:c5:7b:88:dc:1d:a1:f0:f5:a2:5d:ae:95:8e:ef:30:f4:0b: a7:fa:ef:a3:ba:99:6b:3f:51:5f:fa:94:f1:f7:0e:56:d8:a1: 2f:b1:2c:b8:05:25:35:7c:d8:22:dc:28:54:b0:c3:29:22:1c: 93:6d:d1:c1:17:e5:2c:40:a2:54:32:f9:73:1f:db:34:7b:6b: 1c:ad:d1:74:a3:bc:f9:a6:e3:18:2c:4c:e2:2a:2d:09:9f:05: 27:3e:e1:d6:31:42:8d:d9:5e:c5:f0:60:24:04:fc:3d:c8:c2: 5d:36:95:d0:2a:08:5e:78:3a:9c:ad:31:db:8a:a6:fb:5c:9d: fe:fe:bc:2d:7c:1b:a6:3e:65:34:e4:73:1e:79:66:fe:36:57: cb:90:a8:b1:d8:95:3b:5b:5b:51:f1:61:fe:6d:06:93:ae:98: 38:56:d9:dc:cd:34:5a:9a:4a:0f:10:a7:d5:db:0f:d1:35:60: 00:61:7d:e2 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/FefXUDaRQPiBpSDd+0u1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YmI4YjYxMjcyMWQ0ZDRjMmQwN2NiZmUyZTQ5NWU5ODZhMGYwMjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEweKhZCH1FJHEDja3mpuZIaQwhO 7eAJt9CKK3wJa4uriMEdktwuDiWvtViz0cXp7BylOL4x11OB7opN+cMRpkm+q+UP HOhjbgqOjxyMBQz60m7NMyLg0aYUyUV2RWo172OFZiuZlV443wA4UwjParG3vXbz ZkSBIVYMv0tP8og0ZYeDEBuZxqVXrEn16y/3cTSweriVBWVeFOhSiYA/NHLd5NzC EB+vIH2JzqluFSD7hOqvvEOsKLF+oaCVmp9pb6FuAhWv3jCC4oqbhVK3QWO76jcQ tUJOnAXPGvD0eGkVPt7oEMe0dZZ9rd9PF3uXMHBOMWmEFCS5DEA/ULDBMwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFIu4thJyHU1MLQfL/i5JXphqDwJtMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ViLzcxOTJj Mi1hNzg4LTRmNTYtYmU2Yi1iYjQ5M2M0NmRmM2UvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIvNzE5MmMy LWE3ODgtNGY1Ni1iZTZiLWJiNDkzYzQ2ZGYzZS8xL2k3aTJFbklkVFV3dEI4di1M a2xlbUdvUEFtMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuXZ0MA0EAgACMAcDBQMqFGyAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNKIjANBgkqhkiG9w0BAQsFAAOCAQEArpKusi4PFPhj lcmqXvXtCsX7TRQDyOVCVX38F/2EPfZNNL/DjlYtjHk+PoUEIGzo7yQk2a9qu0GY 4CIN3kJGP5NANxbCRKHG1MV7iNwdofD1ol2ulY7vMPQLp/rvo7qZaz9RX/qU8fcO VtihL7EsuAUlNXzYItwoVLDDKSIck23RwRflLECiVDL5cx/bNHtrHK3RdKO8+abj GCxM4iotCZ8FJz7h1jFCjdlexfBgJAT8PcjCXTaV0CoIXng6nK0x24qm+1yd/v68 LXwbpj5lNORzHnlm/jZXy5CosdiVO1tbUfFh/m0Gk66YOFbZ3M00WppKDxCn1dsP 0TVgAGF94g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:08 2026 by rpki-client