This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer File: jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer (raw, json) Hash identifier: BOaxhzpKZynH6tWAIaA7WJL9o7ZSu1103uGy1WD7+VU= Subject key identifier: 8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79108D731DCD8E64272CD773273391D6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215387 IP: 2001:67c:e24::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:8d:73:1d:cd:8e:64:27:2c:d7:73:27:33:91:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e0f683867ef769a0a22ade17118ed06fa57b81f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ef:46:9d:6f:57:95:64:20:61:1f:9c:ca:58: 5d:04:26:6d:99:13:5f:fd:a5:b1:d6:96:7e:7f:ab: d8:4b:8d:68:c9:4f:db:a9:77:15:6e:c7:a4:8a:eb: e2:e2:f4:76:85:c8:b3:76:db:69:a8:e5:23:8d:f3: fd:00:5c:0a:0d:70:43:f0:cc:e2:d0:46:60:e2:93: 08:60:86:02:3d:de:d1:00:96:bf:f0:94:95:fd:04: d8:c7:e3:a3:9b:0c:76:83:27:35:0a:59:b0:10:f4: 64:48:d5:a6:8c:41:87:db:34:55:d3:38:3f:43:75: 2e:9f:32:5d:92:28:9b:f9:e2:7b:3f:98:3f:24:50: 55:b5:1e:a8:92:2a:71:b2:ff:e7:4d:4f:4a:5f:b9: 49:32:1c:ae:a3:ac:4c:73:48:c3:8e:c1:f2:bd:02: aa:5d:5d:68:3e:1a:51:ad:ae:c3:9b:3b:a7:ef:f1: 77:94:be:3c:a8:94:e8:be:f9:aa:7c:2b:6c:cf:b7: df:a1:a5:d2:cf:32:aa:f1:19:52:da:b6:c1:89:a2: 53:4f:43:bc:d2:83:61:37:d9:de:4b:3c:dc:86:7e: ec:12:6f:2f:6c:4c:97:9d:6b:bc:c6:79:4a:69:a7: 30:d3:5a:d7:1c:47:ce:e4:db:2f:27:5a:b7:af:38: fe:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:e24::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215387 Signature Algorithm: sha256WithRSAEncryption 8f:16:77:6e:11:2c:06:db:2c:36:88:f3:e9:4d:80:39:70:00: b6:33:77:ca:86:3e:cc:c6:e0:43:22:06:29:ef:cc:b1:3c:0c: 6e:eb:0c:a1:cc:a2:b4:82:20:aa:04:ab:48:6f:bf:dc:ee:cf: 20:69:c6:3d:70:c1:41:f6:7f:36:05:57:45:7a:32:dc:d5:b6: db:2c:bf:e1:2e:e3:54:ff:53:3f:30:58:e7:f7:fb:31:21:42: 2b:44:ad:8d:1d:a2:8e:23:96:f8:cb:c2:11:b2:64:a8:7c:38: fe:5d:f6:b7:65:dc:f5:2f:ea:49:c1:77:4f:50:a4:29:4c:a7: 7c:fd:0c:1b:20:b7:4f:66:2a:5e:20:74:8b:c6:4c:23:ce:0b: 6d:d1:18:df:29:01:b8:81:16:56:d1:9c:2f:5e:34:b6:08:1c: bf:11:d7:eb:bd:53:f2:ed:fa:40:41:c5:55:54:44:58:5e:db: d6:88:c1:7a:f7:1f:4b:74:4d:6b:b8:9e:2e:fa:88:0d:2f:19: d3:ea:b3:7a:43:a7:b1:6b:64:4b:8f:fc:57:66:18:05:8b:b5: fb:9e:20:4a:68:1d:45:e3:28:5e:95:8f:0e:59:f4:a9:af:59: 0d:0c:f8:cd:63:81:77:07:ef:84:54:a4:00:92:7d:eb:39:b4: 91:23:28:34 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt5EI1zHc2OZCcs13MnM5HWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTBmNjgzODY3ZWY3NjlhMGEyMmFkZTE3MTE4ZWQwNmZhNTdiODFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxu9GnW9XlWQgYR+cylhdBCZtmRNf /aWx1pZ+f6vYS41oyU/bqXcVbsekiuvi4vR2hcizdttpqOUjjfP9AFwKDXBD8Mzi 0EZg4pMIYIYCPd7RAJa/8JSV/QTYx+Ojmwx2gyc1ClmwEPRkSNWmjEGH2zRV0zg/ Q3UunzJdkiib+eJ7P5g/JFBVtR6okipxsv/nTU9KX7lJMhyuo6xMc0jDjsHyvQKq XV1oPhpRra7Dmzun7/F3lL48qJTovvmqfCtsz7ffoaXSzzKq8RlS2rbBiaJTT0O8 0oNhN9neSzzchn7sEm8vbEyXnWu8xnlKaacw01rXHEfO5NsvJ1q3rzj+KQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFI4PaDhn73aaCiKt4XEY7Qb6V7gfMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUwLzg2YzAw Mi03NThiLTQ5NWEtYjljZC03YjBkYzAwYThjMjAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTAvODZjMDAy LTc1OGItNDk1YS1iOWNkLTdiMGRjMDBhOGMyMC8xL2pnOW9PR2Z2ZHBvS0lxM2hj Ump0QnZwWHVCOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA4kMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwNJWzANBgkqhkiG9w0BAQsFAAOCAQEAjxZ3bhEsBtssNojz6U2AOXAAtjN3 yoY+zMbgQyIGKe/MsTwMbusMocyitIIgqgSrSG+/3O7PIGnGPXDBQfZ/NgVXRXoy 3NW22yy/4S7jVP9TPzBY5/f7MSFCK0StjR2ijiOW+MvCEbJkqHw4/l32t2Xc9S/q ScF3T1CkKUynfP0MGyC3T2YqXiB0i8ZMI84LbdEY3ykBuIEWVtGcL140tggcvxHX 671T8u36QEHFVVREWF7b1ojBevcfS3RNa7ieLvqIDS8Z0+qzekOnsWtkS4/8V2YY BYu1+54gSmgdReMoXpWPDln0qa9ZDQz4zWOBdwfvhFSkAJJ96zm0kSMoNA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:13 2026 by rpki-client