This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t7n8UEpNIXiuT3PId8X5B7tHa_g.cer File: t7n8UEpNIXiuT3PId8X5B7tHa_g.cer (raw, json) Hash identifier: FJyFnbhaJEDlZDzxrhn9mtNGNkpMBQxnbr5kv9bmRLk= Subject key identifier: B7:B9:FC:50:4A:4D:21:78:AE:4F:73:C8:77:C5:F9:07:BB:47:6B:F8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77593657E97E10CBAB585A6ECA08CB02 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8d/321889-abc6-43a8-b28a-bb29063f4881/1/t7n8UEpNIXiuT3PId8X5B7tHa_g.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8d/321889-abc6-43a8-b28a-bb29063f4881/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:13 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43369 IP: 185.1.114.0/24 IP: 2001:7f8:c5::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 06:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:36:57:e9:7e:10:cb:ab:58:5a:6e:ca:08:cb:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b7b9fc504a4d2178ae4f73c877c5f907bb476bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:58:f7:c2:19:c6:b5:be:b3:6b:66:7b:b6:fc: 10:5f:d3:3c:f3:8b:bd:8c:79:e1:67:d6:e3:8c:c0: 2e:92:28:05:d7:38:4f:eb:e2:8d:15:c5:cd:ae:b2: 44:05:b3:51:80:d3:15:17:72:72:68:97:e7:76:fd: 2f:da:e0:e4:47:8d:ad:04:f1:88:a3:c2:24:1f:e4: 2b:7e:4d:cd:e6:13:58:cb:0a:ea:84:5b:d3:f4:c8: f8:74:92:c0:d2:b7:d0:9b:48:31:b6:a8:66:d0:44: db:e6:c4:c2:53:0d:68:2e:75:ca:a4:6c:0a:87:67: 8f:f2:15:0c:b6:4d:1e:9d:a7:9f:dd:29:50:fe:02: 53:45:58:fd:06:dc:38:b2:cd:de:d2:0d:dd:bd:ee: 57:08:f6:ba:94:4f:7d:8b:5d:17:56:f1:47:32:ff: 0d:f5:ff:74:c9:a7:84:49:f0:5a:e5:db:2c:43:05: 23:4c:5e:d0:9c:5e:40:21:6c:c1:ee:53:c9:ce:2d: 86:ab:ec:0a:e8:d9:0b:2f:01:ed:c2:69:7d:64:40: 9d:df:30:1a:71:4d:04:f3:b5:5e:77:5e:d6:c9:87: 4b:b6:d9:e3:42:85:3f:f4:4d:b5:58:1f:10:94:33: 7a:f6:b2:01:23:08:7c:fc:e8:ed:f9:0a:4b:65:dd: a1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B9:FC:50:4A:4D:21:78:AE:4F:73:C8:77:C5:F9:07:BB:47:6B:F8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/321889-abc6-43a8-b28a-bb29063f4881/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/321889-abc6-43a8-b28a-bb29063f4881/1/t7n8UEpNIXiuT3PId8X5B7tHa_g.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.114.0/24 IPv6: 2001:7f8:c5::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43369 Signature Algorithm: sha256WithRSAEncryption 53:c1:8f:f9:fb:12:fd:a8:76:c2:7a:e0:a0:9d:81:fa:88:7c: 41:e1:8f:f6:75:ab:d6:89:9b:19:02:67:e8:a7:05:cc:6a:9e: 12:69:22:34:00:2c:0c:a6:99:73:24:30:08:98:0e:23:4a:76: d0:e9:87:40:58:a7:e7:02:b9:ed:69:53:9b:ab:4b:9d:13:c7: 93:25:ac:89:3e:e6:71:cc:51:50:87:15:ee:aa:19:f4:57:bd: b7:9d:29:35:a3:be:8a:58:70:54:88:68:84:59:fa:f9:0f:d4: 7b:03:d7:9d:33:1f:ab:84:b7:51:c0:bf:7e:7f:65:dc:76:01: 3c:ee:ed:35:50:27:39:6b:86:c0:97:69:be:b2:61:1a:b5:00: db:8d:6f:d6:ed:51:0b:dd:47:b7:a8:d1:ce:7f:85:3a:17:cf: 2e:0f:be:53:bf:78:10:2a:c6:79:0a:2c:0f:fa:06:85:d4:d2: 7e:91:8e:af:26:59:9b:e3:81:f3:c2:e2:7e:ea:5e:58:cb:8d: 64:8a:ed:c2:c5:32:39:a0:80:28:c4:6f:76:46:61:10:69:11: bd:60:82:87:2b:9c:9c:d0:4c:fb:93:57:3e:04:43:79:69:e5: a8:60:81:d1:a0:29:2e:ed:fe:97:36:05:48:fc:d6:c6:7c:c5: 95:64:e4:3f -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt3WTZX6X4Qy6tYWm7KCMsCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiN2I5ZmM1MDRhNGQyMTc4YWU0ZjczYzg3N2M1ZjkwN2JiNDc2YmY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA01j3whnGtb6za2Z7tvwQX9M884u9 jHnhZ9bjjMAukigF1zhP6+KNFcXNrrJEBbNRgNMVF3JyaJfndv0v2uDkR42tBPGI o8IkH+Qrfk3N5hNYywrqhFvT9Mj4dJLA0rfQm0gxtqhm0ETb5sTCUw1oLnXKpGwK h2eP8hUMtk0enaef3SlQ/gJTRVj9Btw4ss3e0g3dve5XCPa6lE99i10XVvFHMv8N 9f90yaeESfBa5dssQwUjTF7QnF5AIWzB7lPJzi2Gq+wK6NkLLwHtwml9ZECd3zAa cU0E87Ved17WyYdLttnjQoU/9E21WB8QlDN69rIBIwh8/Ojt+QpLZd2hBQIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFLe5/FBKTSF4rk9zyHfF+Qe7R2v4MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkLzMyMTg4 OS1hYmM2LTQzYTgtYjI4YS1iYjI5MDYzZjQ4ODEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGQvMzIxODg5 LWFiYzYtNDNhOC1iMjhhLWJiMjkwNjNmNDg4MS8xL3Q3bjhVRXBOSVhpdVQzUElk OFg1Qjd0SGFfZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAuQFyMA8EAgACMAkDBwAgAQf4AMUwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAKlpMA0GCSqGSIb3DQEBCwUAA4IBAQBTwY/5+xL9 qHbCeuCgnYH6iHxB4Y/2davWiZsZAmfopwXMap4SaSI0ACwMpplzJDAImA4jSnbQ 6YdAWKfnArntaVObq0udE8eTJayJPuZxzFFQhxXuqhn0V723nSk1o76KWHBUiGiE Wfr5D9R7A9edMx+rhLdRwL9+f2XcdgE87u01UCc5a4bAl2m+smEatQDbjW/W7VEL 3Ue3qNHOf4U6F88uD75Tv3gQKsZ5CiwP+gaF1NJ+kY6vJlmb44HzwuJ+6l5Yy41k iu3CxTI5oIAoxG92RmEQaRG9YIKHK5yc0Ez7k1c+BEN5aeWoYIHRoCku7f6XNgVI /NbGfMWVZOQ/ -----END CERTIFICATE-----Generated at Sat Jan 10 14:26:27 2026 by rpki-client