This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lIlI8N1eL7CpArl5ypxcGkT5j6E.cer File: lIlI8N1eL7CpArl5ypxcGkT5j6E.cer (raw, json) Hash identifier: 8WenuXEA4A++1AqC5u175018oUZ9XPAJd2sonZ1qWlY= Subject key identifier: 94:89:48:F0:DD:5E:2F:B0:A9:02:B9:79:CA:9C:5C:1A:44:F9:8F:A1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7F31FFE88C9C6D3F5506D9FEB0110E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/abb885-a794-4bd5-861e-8961c7a3bbab/1/lIlI8N1eL7CpArl5ypxcGkT5j6E.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/abb885-a794-4bd5-861e-8961c7a3bbab/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:17:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212977 IP: 2001:67c:1298::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:31:ff:e8:8c:9c:6d:3f:55:06:d9:fe:b0:11:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=948948f0dd5e2fb0a902b979ca9c5c1a44f98fa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ee:75:51:07:10:ed:92:7e:9f:8a:31:2e:cd: 78:05:58:84:56:ee:d8:9b:7c:2f:62:97:c7:3a:24: 56:67:81:a8:5c:61:e7:6b:c6:fe:f7:df:1e:e5:ae: 2b:2d:08:c9:5f:6a:e4:55:1c:22:d8:b4:ff:bf:31: 44:db:d1:41:7b:9f:64:35:d2:fa:90:f0:3b:56:ba: d7:8a:5b:9f:3a:aa:0e:22:06:07:23:18:84:02:02: 82:ae:60:5e:9e:ab:c0:c1:a6:4e:ca:d0:87:e6:8b: 29:73:09:7d:ad:4c:d1:ec:22:c3:f9:fb:d0:46:9c: a3:6f:78:00:82:e2:87:3e:91:c5:53:f5:d3:18:51: f1:de:b6:6c:74:f5:64:51:7d:da:e7:a7:e5:98:75: db:bd:52:18:65:66:65:86:4b:dd:eb:a8:d3:fd:4c: 8d:2b:fa:93:51:49:28:75:53:94:2f:9c:6a:7f:ff: e2:88:57:25:0b:5b:24:2c:eb:18:4a:6e:f4:01:41: 2d:c8:ca:0d:57:3e:6c:d9:f4:84:23:46:cc:92:c6: 56:a3:03:4a:17:8c:6e:62:6b:14:05:56:1c:1c:15: f1:f9:77:82:fb:64:0d:42:b4:a2:f9:2d:a3:45:bd: d5:93:c0:c7:5e:88:b2:8a:c6:3b:ce:95:b5:f8:42: 93:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:89:48:F0:DD:5E:2F:B0:A9:02:B9:79:CA:9C:5C:1A:44:F9:8F:A1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abb885-a794-4bd5-861e-8961c7a3bbab/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abb885-a794-4bd5-861e-8961c7a3bbab/1/lIlI8N1eL7CpArl5ypxcGkT5j6E.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:1298::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212977 Signature Algorithm: sha256WithRSAEncryption 54:e9:8a:5e:ed:b7:fb:df:64:49:8a:f5:fb:a6:ae:77:9e:e0: bb:a9:2f:18:1d:bd:c3:d3:83:e6:5f:e5:d4:01:73:0d:13:e2: 52:f4:3a:dc:92:28:79:6f:2a:45:c2:d8:d4:ba:c4:8c:c0:f3: 90:b7:6b:64:38:3d:26:d7:eb:8f:fe:8f:a0:66:ac:1f:be:88: 81:2e:c0:3f:25:02:f8:57:8f:57:7f:06:89:b1:9b:f1:ef:f7: 1b:31:31:af:81:3a:f6:3b:89:7b:76:6b:9a:1c:d7:e1:19:5b: 92:82:c2:17:99:2a:30:27:2a:b9:d0:b8:f0:d8:00:01:1c:b2: 9f:f0:8b:ce:9c:1c:df:8b:7a:9a:97:4d:97:f3:cd:0a:e4:fb: 84:81:f3:30:ed:1e:08:af:5c:47:b2:75:ba:ec:d8:0a:7f:db: 75:c7:c4:ce:34:f8:5e:e6:82:da:2f:6b:8b:54:fd:d1:48:47: e2:78:6c:3a:8d:6a:e3:85:45:75:19:27:a1:f6:78:95:e0:6a: 12:83:e8:a3:94:08:f5:e7:84:cf:37:9e:c2:99:ef:36:b7:cf: c7:cd:1a:90:cb:a0:75:c5:79:b1:12:d9:13:a2:dd:b7:73:b7: b2:71:9f:73:fe:90:d5:64:e2:c8:0c:8e:df:0c:69:de:6a:a8: ff:dc:71:c2 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt8fzH/6IycbT9VBtn+sBEOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDg5NDhmMGRkNWUyZmIwYTkwMmI5NzljYTljNWMxYTQ0Zjk4ZmExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmO51UQcQ7ZJ+n4oxLs14BViEVu7Y m3wvYpfHOiRWZ4GoXGHna8b+998e5a4rLQjJX2rkVRwi2LT/vzFE29FBe59kNdL6 kPA7VrrXilufOqoOIgYHIxiEAgKCrmBenqvAwaZOytCH5ospcwl9rUzR7CLD+fvQ Rpyjb3gAguKHPpHFU/XTGFHx3rZsdPVkUX3a56flmHXbvVIYZWZlhkvd66jT/UyN K/qTUUkodVOUL5xqf//iiFclC1skLOsYSm70AUEtyMoNVz5s2fSEI0bMksZWowNK F4xuYmsUBVYcHBXx+XeC+2QNQrSi+S2jRb3Vk8DHXoiyisY7zpW1+EKTGQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFJSJSPDdXi+wqQK5ecqcXBpE+Y+hMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZkL2FiYjg4 NS1hNzk0LTRiZDUtODYxZS04OTYxYzdhM2JiYWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQvYWJiODg1 LWE3OTQtNGJkNS04NjFlLTg5NjFjN2EzYmJhYi8xL2xJbEk4TjFlTDdDcEFybDV5 cHhjR2tUNWo2RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBKYMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwM/8TANBgkqhkiG9w0BAQsFAAOCAQEAVOmKXu23+99kSYr1+6aud57gu6kv GB29w9OD5l/l1AFzDRPiUvQ63JIoeW8qRcLY1LrEjMDzkLdrZDg9Jtfrj/6PoGas H76IgS7APyUC+FePV38GibGb8e/3GzExr4E69juJe3ZrmhzX4RlbkoLCF5kqMCcq udC48NgAARyyn/CLzpwc34t6mpdNl/PNCuT7hIHzMO0eCK9cR7J1uuzYCn/bdcfE zjT4XuaC2i9ri1T90UhH4nhsOo1q44VFdRknofZ4leBqEoPoo5QI9eeEzzeewpnv NrfPx80akMugdcV5sRLZE6Ldt3O3snGfc/6Q1WTiyAyO3wxp3mqo/9xxwg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:22 2026 by rpki-client