This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer File: tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer (raw, json) Hash identifier: plJ2M+bl+BzjKFlgrOfD21yt69MN229CeL32Dh8PnUs= Subject key identifier: B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE6DEB0E564E258F4FDD64F929D6CF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:19:19 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212430 IP: 2001:67c:209c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:6d:eb:0e:56:4e:25:8f:4f:dd:64:f9:29:d6:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:26:5b:92:6e:23:98:89:6d:5d:20:c5:23:a1: 10:5f:2f:f9:b0:c1:87:30:70:4e:8d:83:72:1c:ca: e2:c3:bf:c4:64:8f:88:c2:bc:09:a1:08:9d:49:b6: 4b:e4:f5:98:e4:d2:ce:d0:d3:68:d3:26:7f:29:d8: a8:6c:10:ad:2a:f1:6f:48:b5:78:4a:2d:d0:8a:e3: 92:64:b8:73:0e:e7:ec:7c:5c:3b:84:e9:60:46:a9: 9b:ae:45:b1:9e:30:c6:01:0f:42:ba:23:aa:5f:31: f7:30:6c:2d:d5:7f:5f:0d:b3:ee:38:52:83:e4:d7: 9b:5c:37:04:d6:7f:c1:c0:2e:be:ab:f8:65:9c:1f: 14:63:3d:bd:fe:9d:e6:34:7d:c6:8b:f7:af:75:12: bc:ec:89:df:7e:aa:1c:e7:73:04:80:af:3b:3d:65: 67:51:7d:1c:70:ac:f4:84:e4:70:c8:f1:45:9e:12: 8d:a6:8e:d4:f0:1d:24:0b:94:5d:05:f1:3c:fe:b3: c3:28:c2:3f:88:bb:87:cb:33:1e:cd:39:ee:05:9d: 08:41:69:dd:cf:43:c7:9b:69:85:19:5b:65:62:25: 05:cb:4e:b6:8a:46:02:62:85:46:71:72:b4:b6:09: 3e:55:31:bb:86:e7:be:df:04:56:46:a2:b9:4d:6d: 74:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:209c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212430 Signature Algorithm: sha256WithRSAEncryption 30:a2:95:88:5e:ff:98:b8:a6:a1:ec:9b:2a:e3:0e:81:55:c5: c5:52:21:65:32:94:3a:9e:c4:41:19:25:9f:17:c8:d0:8b:44: 4e:7e:94:23:c0:6e:bf:11:60:f8:b7:07:60:d8:7f:42:0d:cf: 70:15:5c:47:00:2e:4a:ce:aa:6d:f0:86:4b:bd:9c:ae:a3:b0: dd:b1:ad:cb:48:4c:42:4f:51:fa:82:ed:91:5f:d2:24:47:ae: 55:df:a2:19:80:a1:f4:1a:9a:9c:58:99:1a:0c:64:f3:e9:41: 49:0d:97:2f:b7:64:9a:7b:03:60:c5:8c:ed:c2:df:00:bc:d4: 6d:9a:52:e2:54:4f:7a:b7:ec:55:ca:ae:21:0e:03:69:ad:c7: 1c:7d:b7:e1:aa:f5:e5:4a:12:4a:12:67:ad:f7:9c:57:dd:cf: f9:12:01:38:c9:66:9e:16:7b:db:07:52:15:5c:7c:bd:b1:d7: 14:5e:5b:9e:28:b2:a2:ef:3b:20:07:18:eb:86:ad:2a:bc:3e: 8d:e3:d5:f5:79:07:b9:be:3e:21:ef:42:53:dc:fe:43:9a:69: 79:b4:57:11:a9:fe:2c:68:fc:f1:9e:04:d6:64:f4:83:08:e1: 2b:3c:9a:e8:84:e6:41:7b:de:15:3a:21:8f:97:c2:7e:ce:86: 57:8f:c3:b8 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt87m3rDlZOJY9P3WT5KdbPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDcxNGJmZDk4MmVkMjk3ZTVjNzNlY2U3NGQyMjJlNTI3NGMxZmI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryZbkm4jmIltXSDFI6EQXy/5sMGH MHBOjYNyHMriw7/EZI+IwrwJoQidSbZL5PWY5NLO0NNo0yZ/KdiobBCtKvFvSLV4 Si3QiuOSZLhzDufsfFw7hOlgRqmbrkWxnjDGAQ9CuiOqXzH3MGwt1X9fDbPuOFKD 5NebXDcE1n/BwC6+q/hlnB8UYz29/p3mNH3Gi/evdRK87Inffqoc53MEgK87PWVn UX0ccKz0hORwyPFFnhKNpo7U8B0kC5RdBfE8/rPDKMI/iLuHyzMezTnuBZ0IQWnd z0PHm2mFGVtlYiUFy062ikYCYoVGcXK0tgk+VTG7hue+3wRWRqK5TW10QwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFLRxS/2YLtKX5cc+znTSIuUnTB+1MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAxL2NmNzcx OC0yNzRkLTQxMmItYjc1NS02MmVhMWU3ZThmYzYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEvY2Y3NzE4 LTI3NGQtNDEyYi1iNzU1LTYyZWExZTdlOGZjNi8xL3RIRkxfWmd1MHBmbHh6N09k TklpNVNkTUg3VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCCcMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwM9zjANBgkqhkiG9w0BAQsFAAOCAQEAMKKViF7/mLimoeybKuMOgVXFxVIh ZTKUOp7EQRklnxfI0ItETn6UI8BuvxFg+LcHYNh/Qg3PcBVcRwAuSs6qbfCGS72c rqOw3bGty0hMQk9R+oLtkV/SJEeuVd+iGYCh9BqanFiZGgxk8+lBSQ2XL7dkmnsD YMWM7cLfALzUbZpS4lRPerfsVcquIQ4Daa3HHH234ar15UoSShJnrfecV93P+RIB OMlmnhZ72wdSFVx8vbHXFF5bniiyou87IAcY64atKrw+jePV9XkHub4+Ie9CU9z+ Q5ppebRXEan+LGj88Z4E1mT0gwjhKzya6ITmQXveFTohj5fCfs6GV4/DuA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:51:02 2026 by rpki-client