This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer File: 8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer (raw, json) Hash identifier: 8Hac6KFuNQa2NcsMAULFvteg15/p19X8+tUwo9vDEgk= Subject key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 0BD4B5E8BC8FD3C052F54E4FE0C73048BA372927 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Sat 14 Feb 2026 10:03:26 +0000 Certificate not after: Sat 13 Feb 2027 10:08:26 +0000 Subordinate resources: IP: 2a14:7581:4000::/36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Feb 2026 22:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d4:b5:e8:bc:8f:d3:c0:52:f5:4e:4f:e0:c7:30:48:ba:37:29:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Feb 14 10:03:26 2026 GMT Not After : Feb 13 10:08:26 2027 GMT Subject: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2b:8c:a6:0b:53:f3:e3:6f:5b:4d:7f:83:43: 31:17:81:1b:08:9c:7f:cf:5c:5b:00:98:8d:ab:37: c1:ae:b0:56:29:c2:87:53:4a:27:83:00:d3:fa:62: 9d:4a:b8:21:67:49:b3:4d:8a:dd:4f:86:49:5c:63: b3:ff:d7:a3:27:53:63:97:37:b2:27:9f:1b:9d:71: 5d:98:42:e8:e7:83:a0:28:95:92:76:99:29:be:45: c1:32:e6:60:e9:7e:1a:3a:06:e5:0d:34:be:bd:24: c9:3d:bf:0d:d8:dc:bb:06:d7:91:f0:ec:88:72:8a: 78:46:e4:8d:6c:b5:68:1f:f0:b1:95:dd:93:1e:78: a3:b9:ef:0e:0b:b1:d5:9c:25:a3:4c:ad:e6:6d:21: d1:e1:83:41:48:a4:af:dc:d3:cf:04:fc:71:7d:d1: 13:0c:bd:24:65:7b:08:2d:65:5d:2d:ab:fb:90:96: 78:65:9f:79:3c:42:6d:d7:5c:ff:08:0a:b1:b7:33: 74:b2:4f:4b:09:e7:be:7b:d8:73:61:c4:28:26:3b: ff:e6:51:16:cc:52:e2:f8:86:e3:de:f2:ba:c1:35: e5:42:60:4e:d6:76:5e:63:64:4b:26:5c:54:5a:3b: 52:d4:62:c3:c5:71:ca:3c:a3:eb:71:6c:c3:82:47: 5c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4000::/36 Signature Algorithm: sha256WithRSAEncryption 76:da:40:4e:3c:57:f5:8a:3e:9f:46:2f:2c:aa:2c:df:1f:12: 77:77:db:e7:8b:0c:88:cc:0b:98:d8:f5:1b:88:2f:7a:78:32: 81:3d:1c:ab:21:5d:a9:a0:23:28:8b:74:11:41:a3:c1:d5:86: 51:72:69:d4:ac:4a:b6:b7:b1:61:d7:76:8f:ad:15:15:a8:2f: 01:8f:96:29:f4:81:6e:0b:3c:ed:7a:7b:0e:ad:76:40:41:2e: b3:f9:19:90:1c:cf:f3:d6:7a:79:17:2f:52:03:cf:bb:99:76: ec:7d:27:55:45:e7:06:91:fa:23:8e:fc:39:ac:9b:2b:95:3b: 5d:c8:d3:71:fb:71:9d:06:43:fc:1a:9a:55:f7:69:17:b4:db: 64:26:b4:a2:72:67:f6:8e:11:56:07:63:fc:c2:e4:0f:92:85: a4:98:3c:28:f2:85:bd:a0:ab:44:a7:f7:55:90:6c:25:2b:82: a6:44:ce:56:ab:7c:e8:1d:76:65:69:24:13:e1:ed:32:09:23: c9:0b:5d:15:3f:15:08:56:1d:f3:48:b2:9d:98:f8:00:3d:64: d1:1c:7d:ff:38:66:0a:e0:d6:45:03:17:89:7c:0b:f3:5c:d7: 13:63:91:9f:c6:85:a4:9e:56:7d:aa:d7:24:e6:13:20:d6:d2: c9:65:56:ec -----BEGIN CERTIFICATE----- MIIF2TCCBMGgAwIBAgIUC9S16LyP08BS9U5P4McwSLo3KScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNjAyMTQxMDAzMjZaFw0yNzAyMTMxMDA4MjZaMDMxMTAvBgNV BAMTKDhFMDdEMzFDNjQ1MkY3QTZCMjRFNjNDRERDNDkwRTEyRTBBRkIzOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5K4ymC1Pz429bTX+DQzEXgRsI nH/PXFsAmI2rN8GusFYpwodTSieDANP6Yp1KuCFnSbNNit1PhklcY7P/16MnU2OX N7InnxudcV2YQujng6AolZJ2mSm+RcEy5mDpfho6BuUNNL69JMk9vw3Y3LsG15Hw 7IhyinhG5I1stWgf8LGV3ZMeeKO57w4LsdWcJaNMreZtIdHhg0FIpK/c088E/HF9 0RMMvSRlewgtZV0tq/uQlnhln3k8Qm3XXP8ICrG3M3SyT0sJ57572HNhxCgmO//m URbMUuL4huPe8rrBNeVCYE7Wdl5jZEsmXFRaO1LUYsPFcco8o+txbMOCR1w7AgMB AAGjggLjMIIC3zAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSOB9McZFL3prJO Y83cSQ4S4K+zjDAfBgNVHSMEGDAWgBSoPUhlLzst909r+bqoqcF0zP03cjAOBgNV HQ8BAf8EBAMCAQYwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BODNENDg2NTJGM0IyREY3NEY2QkY5QkFB OEE5QzE3NENDRkQzNzcyLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKG SHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvcUQxSVpT ODdMZmRQYV9tNnFLbkJkTXo5TjNJLmNlcjCCAT8GCCsGAQUFBwELBIIBMTCCAS0w XwYIKwYBBQUHMAWGU3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3Jl cG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4NzU1LzQv MIGLBggrBgEFBQcwCoZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQv cmVwb3NpdG9yeS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUv NC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0REQzQ5MEUxMkUwQUZCMzhDLm1mdDA8 BggrBgEFBQcwDYYwaHR0cHM6Ly9ycmRwLnBhYXMucnBraS5yaXBlLm5ldC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgQqFHWBQDANBgkqhkiG9w0BAQsFAAOCAQEAdtpA TjxX9Yo+n0YvLKos3x8Sd3fb54sMiMwLmNj1G4gvengygT0cqyFdqaAjKIt0EUGj wdWGUXJp1KxKtrexYdd2j60VFagvAY+WKfSBbgs87Xp7Dq12QEEus/kZkBzP89Z6 eRcvUgPPu5l27H0nVUXnBpH6I478OaybK5U7XcjTcftxnQZD/BqaVfdpF7TbZCa0 onJn9o4RVgdj/MLkD5KFpJg8KPKFvaCrRKf3VZBsJSuCpkTOVqt86B12ZWkkE+Ht MgkjyQtdFT8VCFYd80iynZj4AD1k0Rx9/zhmCuDWRQMXiXwL81zXE2ORn8aFpJ5W farXJOYTINbSyWVW7A== -----END CERTIFICATE-----Generated at Sun Feb 15 07:42:04 2026 by rpki-client