This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t_OeNnC0P1fxURt43eIIWWQBdFU.cer File: t_OeNnC0P1fxURt43eIIWWQBdFU.cer (raw, json) Hash identifier: S7mg3VJIIhIcBmnj2dTnJMDmcGouqJzDGe8Qt3btNMI= Subject key identifier: B7:F3:9E:36:70:B4:3F:57:F1:51:1B:78:DD:E2:08:59:64:01:74:55 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA46A1BC9BF22DDA6CC76E7C33B14E5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a64cb-a7f5-42b0-ac15-ce29fd3526a8/1/t_OeNnC0P1fxURt43eIIWWQBdFU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a64cb-a7f5-42b0-ac15-ce29fd3526a8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:17:42 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43326 IP: 185.124.242.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:6a:1b:c9:bf:22:dd:a6:cc:76:e7:c3:3b:14:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b7f39e3670b43f57f1511b78dde2085964017455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:01:4e:9b:f3:36:71:dc:eb:6a:6f:c0:05:67: 9c:09:58:c5:96:02:2f:83:47:69:93:b1:a9:d1:dc: fa:31:00:a3:c8:5f:fd:58:e6:f2:ad:76:97:7c:aa: 49:9d:96:6b:42:34:a7:25:5c:ef:bd:60:cb:d7:1d: e2:cf:9d:81:f8:a6:c7:9a:fc:b6:b6:04:b4:c6:dd: f1:2b:f7:24:60:69:a0:27:29:d3:a2:13:e0:bf:ba: 0a:6b:7b:ec:75:8f:af:eb:c7:9b:de:03:ec:c1:b1: 47:3f:9a:af:8f:a9:04:0b:3b:d7:a9:40:58:75:be: 78:13:55:a4:cd:5b:0b:b1:26:a6:c2:4e:04:bd:d7: 84:05:65:db:40:82:7d:c3:f9:21:17:5c:75:ca:23: 8b:0c:70:53:89:8b:94:0c:46:9a:de:8d:74:98:e3: 13:1c:31:61:bf:45:ef:50:5a:a7:8a:05:85:f0:ea: a8:10:6a:ed:bc:5d:44:4d:82:2b:74:23:1e:93:cf: b4:fb:7e:ee:ba:c2:f1:dd:1d:79:5d:e7:c9:0f:b1: 44:42:5e:3f:2e:fa:3a:db:5a:75:be:a5:80:cd:4e: 44:98:8c:b5:73:6f:b0:5a:cb:59:45:50:ee:b8:3a: a0:da:04:2b:2c:8e:e4:95:63:8e:17:24:9b:68:47: b3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F3:9E:36:70:B4:3F:57:F1:51:1B:78:DD:E2:08:59:64:01:74:55 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a64cb-a7f5-42b0-ac15-ce29fd3526a8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a64cb-a7f5-42b0-ac15-ce29fd3526a8/1/t_OeNnC0P1fxURt43eIIWWQBdFU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.124.242.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43326 Signature Algorithm: sha256WithRSAEncryption 1f:63:8e:2e:96:18:01:72:53:a8:0e:37:a6:f9:eb:1b:88:d4: 5c:38:10:d3:fc:f9:ce:0d:07:0d:d4:0c:03:e6:d5:42:da:70: f7:0e:e5:4a:6a:70:7a:25:b1:96:ac:3f:f4:8f:08:f3:72:62: b7:7f:43:7b:0f:84:6c:6b:a8:26:82:4f:19:fe:b2:1c:1a:66: 53:4d:0f:05:6d:2c:88:08:34:7f:ea:79:a7:9e:40:fa:0c:61: 03:81:12:ed:c4:0c:63:8a:5e:48:e5:be:f4:69:ec:b4:69:2c: ac:c9:14:f0:ac:77:d9:1f:76:d6:1f:ef:ab:01:d7:4a:fd:4f: db:d8:0c:8c:1e:84:cd:b6:0d:3d:6f:74:10:90:e3:29:2d:66: ee:b5:47:a9:5e:b9:07:d3:d7:b9:ab:ab:b2:4d:97:d6:11:f6: ed:78:0a:23:10:bd:27:cd:52:c4:05:2a:45:2f:10:d9:f7:99: 4a:17:4e:06:e2:76:5b:46:a0:a1:60:ce:8f:7b:84:10:43:fe: 9e:92:83:b4:58:0a:be:ff:a1:af:76:dc:fe:69:09:d8:8f:fd: 1b:bd:25:f9:bd:57:9a:9b:48:2a:dd:e9:0b:04:15:41:db:61: 33:2c:63:3d:c1:d1:92:78:32:3a:ef:96:84:bb:45:34:09:89: b6:98:10:15 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt+pGobyb8i3abMdufDOxTlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiN2YzOWUzNjcwYjQzZjU3ZjE1MTFiNzhkZGUyMDg1OTY0MDE3NDU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQFOm/M2cdzram/ABWecCVjFlgIv g0dpk7Gp0dz6MQCjyF/9WObyrXaXfKpJnZZrQjSnJVzvvWDL1x3iz52B+KbHmvy2 tgS0xt3xK/ckYGmgJynTohPgv7oKa3vsdY+v68eb3gPswbFHP5qvj6kECzvXqUBY db54E1WkzVsLsSamwk4EvdeEBWXbQIJ9w/khF1x1yiOLDHBTiYuUDEaa3o10mOMT HDFhv0XvUFqnigWF8OqoEGrtvF1ETYIrdCMek8+0+37uusLx3R15XefJD7FEQl4/ Lvo621p1vqWAzU5EmIy1c2+wWstZRVDuuDqg2gQrLI7klWOOFySbaEezFwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFLfznjZwtD9X8VEbeN3iCFlkAXRVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRmLzRhNjRj Yi1hN2Y1LTQyYjAtYWMxNS1jZTI5ZmQzNTI2YTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYvNGE2NGNi LWE3ZjUtNDJiMC1hYzE1LWNlMjlmZDM1MjZhOC8xL3RfT2VObkMwUDFmeFVSdDQz ZUlJV1dRQmRGVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAuXzyMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCpPjANBgkqhkiG9w0BAQsFAAOCAQEAH2OOLpYYAXJTqA43pvnrG4jUXDgQ0/z5 zg0HDdQMA+bVQtpw9w7lSmpweiWxlqw/9I8I83Jit39Dew+EbGuoJoJPGf6yHBpm U00PBW0siAg0f+p5p55A+gxhA4ES7cQMY4peSOW+9GnstGksrMkU8Kx32R921h/v qwHXSv1P29gMjB6EzbYNPW90EJDjKS1m7rVHqV65B9PXuaursk2X1hH27XgKIxC9 J81SxAUqRS8Q2feZShdOBuJ2W0agoWDOj3uEEEP+npKDtFgKvv+hr3bc/mkJ2I/9 G70l+b1XmptIKt3pCwQVQdthMyxjPcHRkngyOu+WhLtFNAmJtpgQFQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:05 2026 by rpki-client