This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer File: p2i77FqeEb-9rthKqNOqzaKYifk.cer (raw, json) Hash identifier: 6cn0GE7sPGRgPCBmju8B0ImC/dfXUcgLeLBtAbI8BLE= Subject key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B35AA09292F98EC35A15B3498119B8A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:17:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197731 IP: 31.3.104.0/21 IP: 185.119.28.0/22 IP: 2a03:7900::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:aa:09:29:2f:98:ec:35:a1:5b:34:98:11:9b:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6c:e1:89:1e:a2:8d:0c:f5:4a:bb:f8:c8:dd: 2c:59:82:a3:a7:24:b3:10:4b:6c:3d:f3:7a:c6:14: 53:63:4e:c2:c8:32:66:1b:51:69:49:48:3f:28:33: 8e:d3:cd:ae:ab:06:12:a3:c6:34:b8:62:40:cf:da: 9c:fb:a4:b1:21:1f:e4:d0:a9:f4:c8:23:3d:55:5b: 1a:10:1e:87:02:7c:64:2e:b6:1c:f5:58:e9:5d:3d: 1c:52:51:92:c5:cd:51:fc:f7:0c:3e:6d:c2:36:8e: 9e:e5:7f:65:7c:1e:6a:da:d5:56:3c:9c:7d:02:b5: 4e:fc:92:ed:31:71:1e:dd:57:36:07:d2:ff:ae:90: 60:c7:c6:09:49:df:7e:88:e9:36:68:28:05:55:22: 35:cf:0f:3c:69:77:84:9c:25:fd:b3:45:57:41:9d: 2e:a2:c3:75:98:06:ec:18:48:cd:76:a7:fd:2d:51: fa:f8:c9:4f:08:6f:4d:50:4a:22:b0:3c:20:ec:37: 12:ad:65:e7:d5:51:7a:e5:33:7f:9e:09:04:e0:cc: 75:27:0c:a4:70:51:05:34:86:bb:d0:22:cd:13:1b: db:e0:31:c1:ec:e0:86:b3:1d:57:27:63:ce:30:bf: 3b:c8:65:56:07:e6:38:f3:37:9a:7c:82:32:51:cd: dc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.3.104.0/21 185.119.28.0/22 IPv6: 2a03:7900::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 197731 Signature Algorithm: sha256WithRSAEncryption 41:04:02:26:0f:42:53:dd:14:4e:b4:6f:1d:91:85:e2:f3:cd: ce:2d:49:1d:36:ca:02:51:d0:4c:a1:5c:d0:1c:ae:88:00:dc: cf:61:08:4d:6a:cc:37:d0:76:79:f7:95:00:9a:80:28:4f:e3: 8f:fa:55:08:f3:3d:b3:3b:26:af:e9:d5:b0:2d:08:31:57:c9: 04:ef:65:1d:7d:ad:14:39:ea:0e:8f:6c:de:aa:5d:ab:e2:3f: d9:56:38:46:fe:9b:24:56:b4:3c:d0:60:79:11:5c:f6:6f:f1: e3:0a:90:09:d9:a3:85:29:33:4d:8c:39:11:47:89:2d:46:e4: 1c:14:65:14:55:f2:13:1e:c3:07:83:c4:81:63:a1:d6:68:4d: 81:31:f3:2c:db:4f:56:ec:c2:9e:05:7f:a8:ab:6d:29:32:75: 0a:37:4e:09:ef:1d:65:e8:c5:76:e2:2a:c0:1c:68:7c:4f:73: 37:e2:bf:02:d6:ba:86:4f:22:80:e4:01:d5:d9:f1:3e:8b:08: 3b:fa:b6:45:30:8c:57:a4:c4:59:34:7d:40:79:13:37:af:34: 46:ae:a2:35:2c:ff:0a:57:03:49:1a:ba:be:54:2e:4a:ad:bb: 4f:e1:c0:12:1a:15:f7:71:db:93:a6:4c:ed:35:7d:be:15:62: a6:b7:95:1b -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt7NaoJKS+Y7DWhWzSYEZuKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzY4YmJlYzVhOWUxMWJmYmRhZWQ4NGFhOGQzYWFjZGEyOTg4OWY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWzhiR6ijQz1Srv4yN0sWYKjpySz EEtsPfN6xhRTY07CyDJmG1FpSUg/KDOO082uqwYSo8Y0uGJAz9qc+6SxIR/k0Kn0 yCM9VVsaEB6HAnxkLrYc9VjpXT0cUlGSxc1R/PcMPm3CNo6e5X9lfB5q2tVWPJx9 ArVO/JLtMXEe3Vc2B9L/rpBgx8YJSd9+iOk2aCgFVSI1zw88aXeEnCX9s0VXQZ0u osN1mAbsGEjNdqf9LVH6+MlPCG9NUEoisDwg7DcSrWXn1VF65TN/ngkE4Mx1Jwyk cFEFNIa70CLNExvb4DHB7OCGsx1XJ2POML87yGVWB+Y48zeafIIyUc3cBQIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFKdou+xanhG/va7YSqjTqs2imIn5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JjL2VhYzFm NC1hY2UxLTRjZTEtYTE4MS1jZmNhYmIxOWY5ODkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMvZWFjMWY0 LWFjZTEtNGNlMS1hMTgxLWNmY2FiYjE5Zjk4OS8xL3AyaTc3RnFlRWItOXJ0aEtx Tk9xemFLWWlmay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDHwNoAwQCuXccMA0EAgACMAcDBQAqA3kAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMEYzANBgkqhkiG9w0BAQsFAAOCAQEAQQQC Jg9CU90UTrRvHZGF4vPNzi1JHTbKAlHQTKFc0ByuiADcz2EITWrMN9B2efeVAJqA KE/jj/pVCPM9szsmr+nVsC0IMVfJBO9lHX2tFDnqDo9s3qpdq+I/2VY4Rv6bJFa0 PNBgeRFc9m/x4wqQCdmjhSkzTYw5EUeJLUbkHBRlFFXyEx7DB4PEgWOh1mhNgTHz LNtPVuzCngV/qKttKTJ1CjdOCe8dZejFduIqwBxofE9zN+K/Ata6hk8igOQB1dnx PosIO/q2RTCMV6TEWTR9QHkTN680Rq6iNSz/ClcDSRq6vlQuSq27T+HAEhoV93Hb k6ZM7TV9vhVipreVGw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:00 2026 by rpki-client