This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/n6eFncOdRzYULPHiKcisS-YjuQM.cer File: n6eFncOdRzYULPHiKcisS-YjuQM.cer (raw, json) Hash identifier: 8IxMcnHF5AGohT0q7JZ74mXKx2nsa6R9osW1Z5ycsbk= Subject key identifier: 9F:A7:85:9D:C3:9D:47:36:14:2C:F1:E2:29:C8:AC:4B:E6:23:B9:03 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED14C7A94A8A1E39C0DA6EE0A10E2E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/n6eFncOdRzYULPHiKcisS-YjuQM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:50 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.1.107.0/24 IP: 2001:7f8:c1::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:14:c7:a9:4a:8a:1e:39:c0:da:6e:e0:a1:0e:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9fa7859dc39d4736142cf1e229c8ac4be623b903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:c3:69:ad:9b:4b:fa:6f:5a:f2:1f:b3:ca: cc:f9:5b:46:ac:b9:15:d0:28:f9:92:34:52:1f:c5: a9:c0:80:e2:e1:67:e4:5b:b1:84:c0:49:95:b3:2f: 2d:e8:34:7c:f8:a2:c8:e9:a2:f6:28:2a:92:eb:e4: 21:4c:8f:ff:39:c3:9f:9d:bb:6b:8a:d7:24:d5:0c: a6:10:8d:53:b6:3d:57:f7:68:d5:86:48:cc:cd:b6: 5a:44:42:0d:57:cc:da:94:6e:4c:f2:5c:f3:cc:29: 14:81:ac:86:d7:e5:de:fe:42:b6:00:b8:28:81:9a: 61:17:c6:bc:8b:37:e0:4e:18:1e:16:0e:b7:b0:9c: a2:29:4e:9d:19:28:d4:a9:0a:01:d6:24:f1:ba:c6: e5:eb:14:bf:60:3e:74:d3:07:35:9d:23:f5:ef:85: 0d:d0:2a:43:83:fe:80:3e:90:40:cb:b1:56:c1:e4: c4:7f:81:fb:47:8e:9a:8c:25:22:ad:7f:2b:de:3e: ab:a1:b9:ea:17:cf:22:d2:95:3a:24:1b:cb:5e:54: 2d:18:98:bb:22:19:16:fd:7e:45:d9:52:91:21:e1: 0c:05:f6:db:39:63:9b:d4:6f:2d:c8:b8:2c:6b:01: 9c:bc:73:3c:0b:47:bc:1e:9a:04:d3:33:e3:2a:78: 38:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A7:85:9D:C3:9D:47:36:14:2C:F1:E2:29:C8:AC:4B:E6:23:B9:03 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/n6eFncOdRzYULPHiKcisS-YjuQM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.107.0/24 IPv6: 2001:7f8:c1::/48 Signature Algorithm: sha256WithRSAEncryption 40:18:e1:aa:b0:38:39:f2:98:a2:be:c6:16:38:e2:90:b4:20: 4a:04:50:60:79:a6:20:71:1d:f2:d2:a8:97:ee:4b:44:af:d1: ea:2b:06:5a:e9:4d:5d:a1:82:30:0d:b6:01:80:ed:a3:bc:fa: fa:b8:84:f1:4f:19:e5:be:3b:f9:52:e5:0c:43:87:93:b7:12: 20:e0:be:97:4e:38:d7:8d:d8:82:34:e7:e4:30:a0:a8:26:eb: 8d:6b:aa:75:a7:0a:e1:90:c1:28:40:04:69:bc:c9:27:f9:40: 53:01:b5:fc:4f:13:f1:e8:bf:5f:59:3d:4f:e7:32:ee:9d:e7: 88:57:5c:34:5f:cf:fb:00:22:a4:e1:08:69:13:b4:b8:d0:3c: 20:0c:ea:a9:fd:58:eb:ae:dd:de:94:a4:f7:da:de:99:1c:b5: f7:d0:81:50:e6:79:f7:4c:9e:92:49:c3:d2:f6:8d:ce:5b:8d: 1d:e8:26:c0:a7:1b:7e:bb:1a:40:62:d7:1d:c4:e5:f4:d3:de: ce:e2:1f:2d:f2:a1:e7:08:91:47:6d:19:28:08:c7:31:ee:f1: c2:f8:44:99:52:b2:b1:97:62:72:13:be:60:18:a1:aa:ff:f9: 5d:2d:7d:1f:4e:f6:cf:fe:24:b8:a0:9e:4f:36:da:78:5a:ca: e4:ee:ea:bb -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgISAZt87RTHqUqKHjnA2m7goQ4uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZmE3ODU5ZGMzOWQ0NzM2MTQyY2YxZTIyOWM4YWM0YmU2MjNiOTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGfDaa2bS/pvWvIfs8rM+VtGrLkV 0Cj5kjRSH8WpwIDi4WfkW7GEwEmVsy8t6DR8+KLI6aL2KCqS6+QhTI//OcOfnbtr itck1QymEI1Ttj1X92jVhkjMzbZaREINV8zalG5M8lzzzCkUgayG1+Xe/kK2ALgo gZphF8a8izfgThgeFg63sJyiKU6dGSjUqQoB1iTxusbl6xS/YD500wc1nSP174UN 0CpDg/6APpBAy7FWweTEf4H7R46ajCUirX8r3j6robnqF88i0pU6JBvLXlQtGJi7 IhkW/X5F2VKRIeEMBfbbOWOb1G8tyLgsawGcvHM8C0e8HpoE0zPjKng4ZQIDAQAB o4IClTCCApEwHQYDVR0OBBYEFJ+nhZ3DnUc2FCzx4inIrEvmI7kDMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM0LzA2OTAw OC0yZTRmLTQzMjMtYjZhMi1lOGQ2YzJmMDcxZGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQvMDY5MDA4 LTJlNGYtNDMyMy1iNmEyLWU4ZDZjMmYwNzFkZi8xL242ZUZuY09kUnpZVUxQSGlL Y2lzUy1ZanVRTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAuQFrMA8EAgACMAkDBwAgAQf4AMEwDQYJKoZI hvcNAQELBQADggEBAEAY4aqwODnymKK+xhY44pC0IEoEUGB5piBxHfLSqJfuS0Sv 0eorBlrpTV2hgjANtgGA7aO8+vq4hPFPGeW+O/lS5QxDh5O3EiDgvpdOONeN2II0 5+QwoKgm641rqnWnCuGQwShABGm8ySf5QFMBtfxPE/Hov19ZPU/nMu6d54hXXDRf z/sAIqThCGkTtLjQPCAM6qn9WOuu3d6UpPfa3pkctffQgVDmefdMnpJJw9L2jc5b jR3oJsCnG367GkBi1x3E5fTT3s7iHy3yoecIkUdtGSgIxzHu8cL4RJlSsrGXYnIT vmAYoar/+V0tfR9O9s/+JLignk822nhayuTu6rs= -----END CERTIFICATE-----Generated at Fri Jan 9 17:09:02 2026 by rpki-client