This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jn_O1PNOfzfnUbW0XzC5nGMR-X4.cer File: jn_O1PNOfzfnUbW0XzC5nGMR-X4.cer (raw, json) Hash identifier: MP1K0CwAoipdzh77Pd8uqmP0O8AiOJVRINjY8+SlPOM= Subject key identifier: 8E:7F:CE:D4:F3:4E:7F:37:E7:51:B5:B4:5F:30:B9:9C:63:11:F9:7E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A2B87A662B484DBE79E27F8FE30BB3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/jn_O1PNOfzfnUbW0XzC5nGMR-X4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198126 IP: 91.231.228.0/24 IP: 2001:678:3bc::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:b8:7a:66:2b:48:4d:be:79:e2:7f:8f:e3:0b:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e7fced4f34e7f37e751b5b45f30b99c6311f97e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:9e:b8:aa:01:bb:3b:89:13:d4:ac:fe:3f:72: 6d:02:f0:27:60:da:84:f1:26:fa:45:14:34:44:d9: 8b:da:db:47:29:b6:b1:38:d8:06:5c:52:b3:76:a9: 37:ef:3a:20:53:90:98:25:92:ca:b8:c2:7d:2a:e4: c1:9a:f9:59:59:be:2c:c5:03:13:ff:c4:ec:83:76: d9:4f:7a:78:f2:77:5e:5d:1e:69:0d:0f:a7:c9:01: d5:97:00:28:a1:ef:e0:91:b5:7d:9b:2d:39:41:01: a4:1b:f2:ce:d6:2c:12:1b:4d:96:8a:98:f6:7e:ef: d3:46:f5:8c:23:68:b6:0b:e9:c1:04:fd:26:2f:29: 68:9c:37:c7:c5:5c:60:c5:e6:09:11:2b:93:cd:f1: 4f:00:86:bd:b6:16:4c:dd:d6:b3:8f:47:90:7a:4e: 0a:97:b3:8c:09:07:df:ad:3e:a9:2c:94:f2:f3:cf: 92:f0:d9:85:f2:3b:41:c6:f4:e7:ed:fa:4d:b0:47: 11:76:ef:f2:f0:b6:80:0d:72:e0:17:e3:d6:d3:a8: 9f:6e:76:7b:a7:7f:58:77:d3:f7:54:55:9d:29:70: 16:17:07:6a:2b:60:cc:6d:fe:c7:ce:5c:59:18:e8: e6:14:81:94:75:4c:88:b7:c2:e9:96:52:73:60:e9: b5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:7F:CE:D4:F3:4E:7F:37:E7:51:B5:B4:5F:30:B9:9C:63:11:F9:7E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/jn_O1PNOfzfnUbW0XzC5nGMR-X4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.231.228.0/24 IPv6: 2001:678:3bc::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198126 Signature Algorithm: sha256WithRSAEncryption 19:98:3f:63:19:8d:0c:cd:15:c1:6f:1e:4d:e5:a7:3c:e7:08: c9:5c:b5:3c:60:76:a1:c0:1a:c0:4a:40:5e:a4:47:92:41:cb: 08:49:e0:55:3d:4e:b3:b5:8b:64:d8:f8:7a:3f:65:ae:cf:c2: 78:3f:5a:1e:21:9c:e4:9f:12:da:fc:b8:ed:00:e5:7c:7d:10: f5:2a:97:74:06:7f:f2:d2:6f:19:f9:c4:dc:32:78:75:97:75: bc:70:31:89:e9:22:fa:aa:c7:73:3c:91:b4:af:bc:18:d2:b4: 1f:17:be:8b:12:fc:ad:94:a4:c0:77:69:56:bd:1f:2b:30:7a: 3c:d6:d4:af:d7:5c:fb:46:2a:f9:ab:30:50:ae:47:4e:57:6d: a4:59:31:31:89:35:f3:d3:20:89:fa:9c:ee:70:2a:d9:9b:77: 87:7a:d3:62:fb:e1:79:d0:8c:d0:13:b4:47:54:ac:48:a7:f5: 4f:7c:12:c3:b0:1c:15:bd:5f:6a:7f:16:07:8a:91:ff:1e:23: d0:7e:84:ed:7e:22:9c:10:c4:6b:df:3f:81:ee:88:08:c9:d5: 26:8a:27:be:bb:9e:0b:5e:06:6e:8f:b3:c9:d2:77:33:f4:a9: b6:00:19:c3:5d:e7:5d:aa:e8:59:d7:c6:13:73:2d:7c:9c:66: 7a:b0:a4:7b -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt4orh6ZitITb554n+P4wuzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTdmY2VkNGYzNGU3ZjM3ZTc1MWI1YjQ1ZjMwYjk5YzYzMTFmOTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/p64qgG7O4kT1Kz+P3JtAvAnYNqE 8Sb6RRQ0RNmL2ttHKbaxONgGXFKzdqk37zogU5CYJZLKuMJ9KuTBmvlZWb4sxQMT /8Tsg3bZT3p48ndeXR5pDQ+nyQHVlwAooe/gkbV9my05QQGkG/LO1iwSG02Wipj2 fu/TRvWMI2i2C+nBBP0mLylonDfHxVxgxeYJESuTzfFPAIa9thZM3dazj0eQek4K l7OMCQffrT6pLJTy88+S8NmF8jtBxvTn7fpNsEcRdu/y8LaADXLgF+PW06ifbnZ7 p39Yd9P3VFWdKXAWFwdqK2DMbf7HzlxZGOjmFIGUdUyIt8LpllJzYOm1vQIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFI5/ztTzTn8351G1tF8wuZxjEfl+MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5LzkxM2Nk Ny01OTNmLTRlOTktYjVlZS0wZDA1MDM1OGU2NTYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvOTEzY2Q3 LTU5M2YtNGU5OS1iNWVlLTBkMDUwMzU4ZTY1Ni8xL2puX08xUE5PZnpmblViVzBY ekM1bkdNUi1YNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAW+fkMA8EAgACMAkDBwAgAQZ4A7wwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAwXuMA0GCSqGSIb3DQEBCwUAA4IBAQAZmD9jGY0M zRXBbx5N5ac85wjJXLU8YHahwBrASkBepEeSQcsISeBVPU6ztYtk2Ph6P2Wuz8J4 P1oeIZzknxLa/LjtAOV8fRD1Kpd0Bn/y0m8Z+cTcMnh1l3W8cDGJ6SL6qsdzPJG0 r7wY0rQfF76LEvytlKTAd2lWvR8rMHo81tSv11z7Rir5qzBQrkdOV22kWTExiTXz 0yCJ+pzucCrZm3eHetNi++F50IzQE7RHVKxIp/VPfBLDsBwVvV9qfxYHipH/HiPQ foTtfiKcEMRr3z+B7ogIydUmiie+u54LXgZuj7PJ0ncz9Km2ABnDXeddquhZ18YT cy18nGZ6sKR7 -----END CERTIFICATE-----Generated at Tue Feb 10 04:18:59 2026 by rpki-client