This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jaxnm0gKeOrXl_Lgt3eeWPInHyQ.cer File: jaxnm0gKeOrXl_Lgt3eeWPInHyQ.cer (raw, json) Hash identifier: kjUU+km2fcmdHtcdfE136OdLF2T5bZ+5MZVnavVbJ1I= Subject key identifier: 8D:AC:67:9B:48:0A:78:EA:D7:97:F2:E0:B7:77:9E:58:F2:27:1F:24 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A2C7B2E144DBFF3FE5E791A5FF7D33 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/778ce0-2cc2-490b-a6e2-6020e8a56556/1/jaxnm0gKeOrXl_Lgt3eeWPInHyQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/778ce0-2cc2-490b-a6e2-6020e8a56556/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 213807 IP: 87.236.39.0/24 IP: 185.110.244.0/22 IP: 2a14:9b00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:c7:b2:e1:44:db:ff:3f:e5:e7:91:a5:ff:7d:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8dac679b480a78ead797f2e0b7779e58f2271f24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6a:7a:67:f9:39:3a:a0:e1:07:fe:11:64:8e: 86:65:ee:76:08:b9:aa:ac:8d:60:19:81:eb:53:3b: b2:85:ac:c4:8a:c1:02:00:ba:95:51:1d:b5:af:21: 8c:be:2d:d2:51:61:5d:c7:27:7e:50:56:1c:95:cf: 70:9d:06:83:c8:9f:61:ce:54:08:f4:00:6c:08:57: 9f:93:0f:42:86:97:fe:de:88:26:fe:07:2b:d0:86: 4d:5f:1c:fe:26:40:f7:b7:85:e2:a4:49:ad:93:b0: 78:85:e4:d9:1d:21:0a:2e:b4:db:f5:ed:d4:f7:2e: 36:04:b9:8f:16:12:fa:b7:3e:29:1c:ab:34:79:2b: 3b:68:f4:6b:e6:6a:23:a4:58:91:19:62:df:37:19: e4:c4:65:0c:90:70:69:3d:0f:c0:92:68:c4:7f:e6: 12:2e:6c:00:20:64:f9:6d:e1:9d:20:75:7c:02:c3: a5:f1:d1:ac:83:1b:af:46:af:5d:72:68:15:03:cb: 10:26:49:d6:97:24:df:97:93:eb:6b:aa:b1:5e:33: 97:c7:25:da:b1:7f:52:39:a4:fd:6f:3e:d8:0b:02: 87:a4:77:58:c4:a8:94:36:31:95:89:b1:9b:e1:1e: c1:4d:75:00:29:18:e8:6c:ac:37:46:bb:fb:b6:9a: 40:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:AC:67:9B:48:0A:78:EA:D7:97:F2:E0:B7:77:9E:58:F2:27:1F:24 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/778ce0-2cc2-490b-a6e2-6020e8a56556/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/778ce0-2cc2-490b-a6e2-6020e8a56556/1/jaxnm0gKeOrXl_Lgt3eeWPInHyQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.236.39.0/24 185.110.244.0/22 IPv6: 2a14:9b00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 213807 Signature Algorithm: sha256WithRSAEncryption 22:4d:42:df:a1:7c:ac:67:87:6d:6c:6e:8a:55:1a:6b:92:60: 88:50:b3:4b:d8:f0:73:c1:f3:50:92:e8:66:76:3f:2c:b0:8b: f4:5d:9c:aa:7c:78:8e:f7:82:b3:06:f9:8c:cc:cb:61:da:e8: f1:47:6c:d1:17:8e:3e:69:b8:94:a1:f6:08:62:95:31:20:14: de:39:e9:9c:3c:3e:4b:2d:c7:b6:a9:ad:72:fc:b3:fe:13:dd: 8a:a4:cc:0f:eb:94:cc:4f:5d:94:9b:2e:0a:d4:c1:f1:10:77: 81:93:47:98:7e:71:fc:c1:29:93:34:e7:4e:97:d9:37:4f:5f: 7a:4f:76:96:b2:9b:09:ef:51:b8:dd:24:d9:34:4c:af:95:6d: 53:77:4e:77:6e:fc:d5:1b:9e:24:db:09:d8:5d:74:0c:bd:d4: d9:ba:ae:9c:20:7f:fb:1c:3d:8b:68:4c:a5:40:61:ab:4d:13: d1:61:60:32:a6:99:98:dd:45:6c:48:88:62:4d:c5:03:b0:ce: f3:80:df:16:56:f2:34:9f:8a:b1:b8:b5:75:5a:96:75:86:f0: e7:46:da:c9:dc:15:21:99:a1:7e:c0:f8:0c:7a:e2:25:0c:6a: d6:2e:e0:db:4f:0b:5b:54:10:8d:6c:92:10:6f:a9:3d:e6:d9: 1f:21:bf:2a -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt4osey4UTb/z/l55Gl/30zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZGFjNjc5YjQ4MGE3OGVhZDc5N2YyZTBiNzc3OWU1OGYyMjcxZjI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWp6Z/k5OqDhB/4RZI6GZe52CLmq rI1gGYHrUzuyhazEisECALqVUR21ryGMvi3SUWFdxyd+UFYclc9wnQaDyJ9hzlQI 9ABsCFefkw9Chpf+3ogm/gcr0IZNXxz+JkD3t4XipEmtk7B4heTZHSEKLrTb9e3U 9y42BLmPFhL6tz4pHKs0eSs7aPRr5mojpFiRGWLfNxnkxGUMkHBpPQ/AkmjEf+YS LmwAIGT5beGdIHV8AsOl8dGsgxuvRq9dcmgVA8sQJknWlyTfl5Pra6qxXjOXxyXa sX9SOaT9bz7YCwKHpHdYxKiUNjGVibGb4R7BTXUAKRjobKw3Rrv7tppAdwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFI2sZ5tICnjq15fy4Ld3nljyJx8kMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NiLzc3OGNl MC0yY2MyLTQ5MGItYTZlMi02MDIwZThhNTY1NTYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2IvNzc4Y2Uw LTJjYzItNDkwYi1hNmUyLTYwMjBlOGE1NjU1Ni8xL2pheG5tMGdLZU9yWGxfTGd0 M2VlV1BJbkh5US5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAV+wnAwQCuW70MA0EAgACMAcDBQMqFJsAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwNDLzANBgkqhkiG9w0BAQsFAAOCAQEAIk1C 36F8rGeHbWxuilUaa5JgiFCzS9jwc8HzUJLoZnY/LLCL9F2cqnx4jveCswb5jMzL Ydro8Uds0ReOPmm4lKH2CGKVMSAU3jnpnDw+Sy3Htqmtcvyz/hPdiqTMD+uUzE9d lJsuCtTB8RB3gZNHmH5x/MEpkzTnTpfZN09fek92lrKbCe9RuN0k2TRMr5VtU3dO d2781RueJNsJ2F10DL3U2bqunCB/+xw9i2hMpUBhq00T0WFgMqaZmN1FbEiIYk3F A7DO84DfFlbyNJ+Ksbi1dVqWdYbw50baydwVIZmhfsD4DHriJQxq1i7g208LW1QQ jWySEG+pPebZHyG/Kg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:19 2026 by rpki-client