This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/n78C8E7EMIy1tgeL0GoXywDYM2k.cer File: n78C8E7EMIy1tgeL0GoXywDYM2k.cer (raw, json) Hash identifier: WSMTWhI+5KwKo15J3mmYtp1HO4U98mje0sN4K6YvPjo= Subject key identifier: 9F:BF:02:F0:4E:C4:30:8C:B5:B6:07:8B:D0:6A:17:CB:00:D8:33:69 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CECD3C8F4291FBF2F38C0EA0F384E2F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d6/caf466-6e6c-4009-a55a-5fa9da03f570/1/n78C8E7EMIy1tgeL0GoXywDYM2k.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d6/caf466-6e6c-4009-a55a-5fa9da03f570/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:34 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216391 IP: 2001:67c:d0c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:d3:c8:f4:29:1f:bf:2f:38:c0:ea:0f:38:4e:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9fbf02f04ec4308cb5b6078bd06a17cb00d83369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:66:ba:5c:d1:33:43:7f:15:85:1b:23:a2:a5: e4:83:a0:fa:ed:14:69:1e:b4:89:db:42:73:92:63: 1c:4c:6a:b0:9a:98:05:20:f2:9b:87:b7:a9:8b:a0: 75:92:16:f0:a1:a4:bf:7a:60:f4:2c:12:d4:2e:8b: 06:3b:e6:a0:d7:85:3c:4b:fc:f8:dd:47:72:4a:6d: 3f:14:f0:ef:e9:fc:35:98:2d:e2:cd:25:06:8f:38: 01:0d:54:4a:33:51:5b:5e:69:83:59:a3:a4:41:96: b1:6d:e7:ef:53:d2:41:11:f8:bd:5d:1c:17:04:81: 93:57:4e:af:d2:ac:a0:d3:6b:e3:32:1a:46:ba:0d: f2:e5:37:37:f2:fe:a9:40:d6:14:00:dd:00:67:f3: 11:cf:e5:04:c9:89:7c:8f:1f:74:65:3d:60:7b:d0: eb:08:b2:c2:ba:ac:74:f2:c8:2c:dc:c5:ae:13:6d: 47:d9:a1:b4:72:c7:4b:26:c0:10:c8:e5:4f:16:5f: 02:13:ef:2c:fa:21:d4:fc:49:51:23:37:c8:2d:b4: d2:78:23:c1:c1:9e:cf:cf:8c:c6:b4:46:fe:da:6d: ac:65:b0:9d:48:27:59:26:9f:8e:cb:6b:4a:4c:f5: 19:68:3b:31:f3:90:fb:9b:73:0f:33:8e:4b:ac:c0: 88:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:BF:02:F0:4E:C4:30:8C:B5:B6:07:8B:D0:6A:17:CB:00:D8:33:69 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/caf466-6e6c-4009-a55a-5fa9da03f570/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/caf466-6e6c-4009-a55a-5fa9da03f570/1/n78C8E7EMIy1tgeL0GoXywDYM2k.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:d0c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 216391 Signature Algorithm: sha256WithRSAEncryption 16:91:7e:fa:9f:ed:d9:90:22:4e:9a:15:f2:d0:72:b8:3c:45: c2:3d:70:5a:5c:eb:76:10:46:82:c6:6b:80:b8:02:6a:6c:88: a5:4e:09:ad:53:f0:a3:d9:ca:67:18:ba:af:6c:a4:4f:33:a9: cb:4d:3e:86:b7:ce:87:42:3e:db:f8:8b:da:2f:0b:bb:83:01: 61:11:00:7a:17:be:c0:0e:d5:bc:85:da:23:bc:33:9e:5b:eb: f4:42:74:da:b8:0a:2f:be:d3:9a:c4:0d:4b:a5:a5:38:cc:b3: 13:e3:b6:32:bf:aa:a0:1b:38:0e:82:58:a1:b4:48:66:a1:a6: 14:56:7b:93:2b:5d:c1:49:db:bb:23:26:94:5e:7d:dc:e5:56: a5:f5:3a:24:6f:75:13:da:66:76:5f:e5:a3:ea:fa:3c:9d:fe: 1b:b4:6c:f2:9e:0a:9a:62:04:d2:a7:5a:3c:22:a5:30:62:74: 2b:8d:89:3c:81:e1:70:be:4c:29:06:8c:d0:03:32:50:11:9b: 3f:e4:55:bb:97:3c:6e:3a:ad:18:e8:43:70:5f:0c:ac:21:d9: 96:3b:31:b1:55:65:de:9c:1a:d2:85:56:4a:f0:fd:f2:e5:48: 49:5c:e6:1e:3b:7c:03:41:47:c2:24:2b:52:5f:83:8e:38:dc: 8f:ab:3c:b1 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt87NPI9Ckfvy84wOoPOE4vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZmJmMDJmMDRlYzQzMDhjYjViNjA3OGJkMDZhMTdjYjAwZDgzMzY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Ga6XNEzQ38VhRsjoqXkg6D67RRp HrSJ20JzkmMcTGqwmpgFIPKbh7epi6B1khbwoaS/emD0LBLULosGO+ag14U8S/z4 3UdySm0/FPDv6fw1mC3izSUGjzgBDVRKM1FbXmmDWaOkQZaxbefvU9JBEfi9XRwX BIGTV06v0qyg02vjMhpGug3y5Tc38v6pQNYUAN0AZ/MRz+UEyYl8jx90ZT1ge9Dr CLLCuqx08sgs3MWuE21H2aG0csdLJsAQyOVPFl8CE+8s+iHU/ElRIzfILbTSeCPB wZ7Pz4zGtEb+2m2sZbCdSCdZJp+Oy2tKTPUZaDsx85D7m3MPM45LrMCI0wIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFJ+/AvBOxDCMtbYHi9BqF8sA2DNpMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q2L2NhZjQ2 Ni02ZTZjLTQwMDktYTU1YS01ZmE5ZGEwM2Y1NzAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDYvY2FmNDY2 LTZlNmMtNDAwOS1hNTVhLTVmYTlkYTAzZjU3MC8xL243OEM4RTdFTUl5MXRnZUww R29YeXdEWU0yay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA0MMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwNNRzANBgkqhkiG9w0BAQsFAAOCAQEAFpF++p/t2ZAiTpoV8tByuDxFwj1w WlzrdhBGgsZrgLgCamyIpU4JrVPwo9nKZxi6r2ykTzOpy00+hrfOh0I+2/iL2i8L u4MBYREAehe+wA7VvIXaI7wznlvr9EJ02rgKL77TmsQNS6WlOMyzE+O2Mr+qoBs4 DoJYobRIZqGmFFZ7kytdwUnbuyMmlF593OVWpfU6JG91E9pmdl/lo+r6PJ3+G7Rs 8p4KmmIE0qdaPCKlMGJ0K42JPIHhcL5MKQaM0AMyUBGbP+RVu5c8bjqtGOhDcF8M rCHZljsxsVVl3pwa0oVWSvD98uVISVzmHjt8A0FHwiQrUl+Djjjcj6s8sQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:03 2026 by rpki-client