This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x67yqz8unZrAH3J_cwr33x0EGA8.cer File: x67yqz8unZrAH3J_cwr33x0EGA8.cer (raw, json) Hash identifier: yFn7f9VY3tVil4L6IXuG9GyblZQKtPjPLB36xOFmmmM= Subject key identifier: C7:AE:F2:AB:3F:2E:9D:9A:C0:1F:72:7F:73:0A:F7:DF:1D:04:18:0F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B791058F42849AB5A52E52E3B0B00EE4E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/x67yqz8unZrAH3J_cwr33x0EGA8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:17:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49106 IP: 46.150.160.0/19 IP: 62.122.192.0/21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:58:f4:28:49:ab:5a:52:e5:2e:3b:0b:00:ee:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c7aef2ab3f2e9d9ac01f727f730af7df1d04180f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0c:da:1d:1c:4f:51:e1:e8:c1:6a:ba:f3:af: b0:09:f4:13:95:cb:b7:89:de:74:97:8f:6a:92:69: d6:6c:09:8b:8b:fd:01:07:84:ac:a3:57:27:36:59: ca:0b:72:c5:bc:98:a0:6a:f6:b9:7d:13:27:e0:7c: 3e:d1:54:e4:a6:63:ca:a6:4b:0e:ca:0d:38:59:3e: 4b:96:e0:4e:f4:0c:3a:d8:1c:cc:0e:c9:20:1c:45: fd:e6:0e:36:dd:2f:00:2c:9b:40:4d:31:d4:47:4d: a0:a2:d0:9e:22:4d:a0:d9:f7:40:69:eb:58:1d:bf: 41:1a:0d:3f:3d:ee:57:a3:50:3d:7c:7d:9d:5c:ea: 3f:61:de:05:e3:2a:9b:03:0c:62:71:e3:4f:17:c4: 52:e9:c8:d0:89:b8:b1:c4:85:00:0f:b5:e6:00:77: 12:aa:42:d3:35:a5:2a:99:06:70:46:42:54:b1:fe: 9f:2f:d7:7f:ce:f2:69:cf:d1:49:8f:2e:99:17:a3: 9e:08:15:c4:a6:52:67:02:10:2e:0a:25:00:9d:e7: d7:58:0b:ef:7b:68:e2:2b:84:49:8b:62:de:9b:ff: 5d:ef:ae:be:7c:5f:46:8f:b1:65:76:cf:6b:58:ca: af:ee:c5:d8:99:03:fe:5c:18:c0:03:df:7a:a2:27: 0e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:AE:F2:AB:3F:2E:9D:9A:C0:1F:72:7F:73:0A:F7:DF:1D:04:18:0F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/x67yqz8unZrAH3J_cwr33x0EGA8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.150.160.0/19 62.122.192.0/21 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49106 Signature Algorithm: sha256WithRSAEncryption 21:36:48:5c:8c:b1:c8:bc:84:2d:cc:0d:74:ca:41:b5:e5:b7: 32:30:ee:c3:2e:ee:d0:d5:c6:f9:ac:20:8b:2b:5b:e1:04:d7: b2:c0:ce:9d:46:d7:a5:b9:12:c9:14:7e:b0:e1:c3:82:6f:da: d2:0a:78:7b:dc:d4:ee:6e:03:0c:f7:d3:25:2e:cb:fe:2a:b6: 3e:e1:38:32:0c:64:77:86:4e:75:31:97:c5:57:ea:23:ac:ae: 1c:48:09:56:19:14:54:54:eb:9f:b9:5d:23:0b:c9:1b:1f:b4: b7:64:d9:f9:1b:ae:9b:5a:c2:3e:c9:48:b8:4d:ef:f7:25:31: ee:1f:ad:58:f9:f8:35:88:0f:bd:74:cc:4d:9c:ec:f6:9d:92: a2:cb:51:c3:2b:98:36:72:65:d9:90:0d:6a:0d:db:0f:d8:90: b3:02:54:bb:80:58:66:a9:ab:65:91:f5:b9:5f:7d:f3:c1:5b: 79:24:17:37:dd:6e:e4:67:23:61:e6:41:06:48:6d:4d:39:42: 2e:ee:9d:ea:fc:80:25:7a:30:b2:b8:80:dd:c0:d5:4c:d4:d4: b3:35:03:ec:74:dd:91:4b:9c:c9:15:b9:25:a1:c8:73:59:07: fe:57:04:03:a8:90:a5:bd:c1:85:52:07:53:9d:9f:13:cc:93: b3:53:c7:d9 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt5EFj0KEmrWlLlLjsLAO5OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjN2FlZjJhYjNmMmU5ZDlhYzAxZjcyN2Y3MzBhZjdkZjFkMDQxODBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5gzaHRxPUeHowWq686+wCfQTlcu3 id50l49qkmnWbAmLi/0BB4Sso1cnNlnKC3LFvJigava5fRMn4Hw+0VTkpmPKpksO yg04WT5LluBO9Aw62BzMDskgHEX95g423S8ALJtATTHUR02gotCeIk2g2fdAaetY Hb9BGg0/Pe5Xo1A9fH2dXOo/Yd4F4yqbAwxiceNPF8RS6cjQibixxIUAD7XmAHcS qkLTNaUqmQZwRkJUsf6fL9d/zvJpz9FJjy6ZF6OeCBXEplJnAhAuCiUAnefXWAvv e2jiK4RJi2Lem/9d766+fF9Gj7Flds9rWMqv7sXYmQP+XBjAA996oicOhQIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFMeu8qs/Lp2awB9yf3MK998dBBgPMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VjL2YzNGYy Yi0zNjYyLTQxYzQtODI3MC05MmVkMmEwMDBmMWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMvZjM0ZjJi LTM2NjItNDFjNC04MjcwLTkyZWQyYTAwMGYxZi8xL3g2N3lxejh1blpyQUgzSl9j d3IzM3gwRUdBOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQFLpagAwQDPnrAMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwC/0jANBgkqhkiG9w0BAQsFAAOCAQEAITZIXIyxyLyELcwNdMpBteW3 MjDuwy7u0NXG+awgiytb4QTXssDOnUbXpbkSyRR+sOHDgm/a0gp4e9zU7m4DDPfT JS7L/iq2PuE4Mgxkd4ZOdTGXxVfqI6yuHEgJVhkUVFTrn7ldIwvJGx+0t2TZ+Ruu m1rCPslIuE3v9yUx7h+tWPn4NYgPvXTMTZzs9p2SostRwyuYNnJl2ZANag3bD9iQ swJUu4BYZqmrZZH1uV9988FbeSQXN91u5GcjYeZBBkhtTTlCLu6d6vyAJXowsriA 3cDVTNTUszUD7HTdkUucyRW5JaHIc1kH/lcEA6iQpb3BhVIHU52fE8yTs1PH2Q== -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:24 2026 by rpki-client