This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x3ER7FVJEVyzR2VNj-WycJ0n998.cer File: x3ER7FVJEVyzR2VNj-WycJ0n998.cer (raw, json) Hash identifier: AsOi/yJiqJMo+uf+dvaPcWe/D3OYRLIVUGbAIaiSLNY= Subject key identifier: C7:71:11:EC:55:49:11:5C:B3:47:65:4D:8F:E5:B2:70:9D:27:F7:DF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B35CD54E8B25E3087A0C547256D1D3C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/x3ER7FVJEVyzR2VNj-WycJ0n998.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:02 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41505 IP: 91.208.101.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:cd:54:e8:b2:5e:30:87:a0:c5:47:25:6d:1d:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c77111ec5549115cb347654d8fe5b2709d27f7df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:89:1f:03:7a:97:9a:4c:af:66:f6:83:33:27: de:c2:b4:40:db:b3:25:bb:98:31:5f:e2:21:68:58: 6f:c8:0f:b7:d7:0d:54:e2:41:84:f0:f0:0d:a3:f9: 03:80:71:63:c5:33:20:e7:8a:5f:a7:b0:ba:ac:cf: 07:a7:57:fa:2d:76:3d:c3:b5:41:cc:48:91:5b:cc: f2:1f:68:c4:41:12:d9:fa:26:2e:64:c0:82:42:d6: 74:b6:bf:7d:8c:58:22:83:46:fc:4a:bf:b1:17:1b: 84:ef:a5:32:ed:25:9e:7a:47:57:a8:c9:b7:14:f2: 56:6c:2b:e4:c7:de:20:5e:7b:29:0e:b4:29:da:79: da:19:53:1f:13:18:c2:66:36:2d:60:88:2e:99:c5: 30:17:7f:d7:a4:18:01:62:e2:e7:fb:86:ba:d4:14: 92:86:3e:d5:1b:21:30:53:7b:24:7f:c2:29:4e:02: ad:7f:c3:06:f5:53:b4:cb:64:1e:44:ae:7c:e4:b4: 79:92:97:5d:f0:44:39:f5:83:1e:ef:26:07:34:1b: 73:df:92:f6:46:5d:be:d5:42:d3:d7:f8:38:2c:f0: 30:19:51:1f:2d:99:ba:f2:90:12:75:fa:4a:aa:3d: 70:c0:36:61:45:7c:17:3b:f4:c4:50:4e:03:e2:b0: ee:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:71:11:EC:55:49:11:5C:B3:47:65:4D:8F:E5:B2:70:9D:27:F7:DF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/x3ER7FVJEVyzR2VNj-WycJ0n998.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.208.101.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41505 Signature Algorithm: sha256WithRSAEncryption 4f:91:cd:ed:7e:6c:6e:46:ec:d1:79:d0:76:8c:57:4e:91:72: bf:f1:da:51:e6:85:0b:72:09:88:5e:0c:c5:de:71:f6:c5:47: 19:6a:7d:fb:77:02:5c:b2:2c:34:24:4b:cb:72:05:87:41:bb: 26:b9:06:70:28:5d:27:f0:c8:6f:c7:51:31:4a:ba:c4:f2:eb: d3:25:ab:c3:39:64:4e:a4:40:62:4a:dc:21:37:5e:bb:1d:36: 86:00:0c:af:e1:ba:50:17:57:11:06:d1:1b:93:a5:00:44:b9: b0:87:46:b2:c6:bf:ba:2b:6a:e2:46:37:d7:7c:44:0a:10:77: 52:f3:22:89:d7:f4:1e:d3:65:a7:6d:e7:a1:3d:af:6e:fa:92: 44:20:e0:dc:e6:61:b4:5b:45:66:c1:ad:c6:d7:cf:18:29:93: 9b:f2:f5:74:61:06:47:91:92:21:ae:56:d2:ec:e1:db:49:d0: 4e:0c:1f:56:59:fb:05:85:7c:a2:5b:d7:46:71:d6:3b:7f:db: 0a:c3:2c:99:01:10:46:8b:1c:d0:be:b4:98:30:d0:84:9e:f6: d3:87:86:fb:9c:58:5d:2e:16:81:d7:45:64:c1:21:90:bf:ee: 9b:30:fc:5a:2c:be:94:83:05:eb:2b:ec:99:ea:35:79:f1:17: 33:c1:2d:49 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt7Nc1U6LJeMIegxUclbR08MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNzcxMTFlYzU1NDkxMTVjYjM0NzY1NGQ4ZmU1YjI3MDlkMjdmN2RmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYkfA3qXmkyvZvaDMyfewrRA27Ml u5gxX+IhaFhvyA+31w1U4kGE8PANo/kDgHFjxTMg54pfp7C6rM8Hp1f6LXY9w7VB zEiRW8zyH2jEQRLZ+iYuZMCCQtZ0tr99jFgig0b8Sr+xFxuE76Uy7SWeekdXqMm3 FPJWbCvkx94gXnspDrQp2nnaGVMfExjCZjYtYIgumcUwF3/XpBgBYuLn+4a61BSS hj7VGyEwU3skf8IpTgKtf8MG9VO0y2QeRK585LR5kpdd8EQ59YMe7yYHNBtz35L2 Rl2+1ULT1/g4LPAwGVEfLZm68pASdfpKqj1wwDZhRXwXO/TEUE4D4rDuuwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFMdxEexVSRFcs0dlTY/lsnCdJ/ffMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EwL2UyZDFh ZC1jZmUwLTQ0OTQtYWE3NS1lMGMyYjk0NzkyY2EvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAvZTJkMWFk LWNmZTAtNDQ5NC1hYTc1LWUwYzJiOTQ3OTJjYS8xL3gzRVI3RlZKRVZ5elIyVk5q LVd5Y0owbjk5OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9BlMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCiITANBgkqhkiG9w0BAQsFAAOCAQEAT5HN7X5sbkbs0XnQdoxXTpFyv/HaUeaF C3IJiF4Mxd5x9sVHGWp9+3cCXLIsNCRLy3IFh0G7JrkGcChdJ/DIb8dRMUq6xPLr 0yWrwzlkTqRAYkrcITdeux02hgAMr+G6UBdXEQbRG5OlAES5sIdGssa/uitq4kY3 13xEChB3UvMiidf0HtNlp23noT2vbvqSRCDg3OZhtFtFZsGtxtfPGCmTm/L1dGEG R5GSIa5W0uzh20nQTgwfVln7BYV8olvXRnHWO3/bCsMsmQEQRosc0L60mDDQhJ72 04eG+5xYXS4WgddFZMEhkL/umzD8Wiy+lIMF6yvsmeo1efEXM8EtSQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:00 2026 by rpki-client