This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_EjmUG7G1TxZFdyPKWREhd-S_Ok.cer File: _EjmUG7G1TxZFdyPKWREhd-S_Ok.cer (raw, json) Hash identifier: p/ZKXR+odExaBfbJE48Ey5gpLtWhyoWiWTkVY6VvsAk= Subject key identifier: FC:48:E6:50:6E:C6:D5:3C:59:15:DC:8F:29:64:44:85:DF:92:FC:E9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C135489636B4D193A35228865A1D9B2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/_EjmUG7G1TxZFdyPKWREhd-S_Ok.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:20:00 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 91.220.68.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:54:89:63:6b:4d:19:3a:35:22:88:65:a1:d9:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fc48e6506ec6d53c5915dc8f29644485df92fce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:98:fb:25:85:32:e7:f3:37:66:b5:e2:36:f5: f2:88:a7:c6:3d:50:eb:99:65:53:a0:21:47:a4:40: 30:bd:f3:6b:0f:bd:ce:61:2d:9a:41:27:99:77:3e: 7d:9a:40:5f:91:41:ac:06:00:d9:21:ed:44:37:89: ee:6f:54:ed:47:23:34:11:a5:96:a2:81:ef:08:39: 35:5e:48:43:29:f9:d5:8a:3b:bc:ad:82:07:a9:35: 25:d2:e3:2e:38:16:1a:f7:1f:fa:6a:89:9d:d4:cc: dd:94:de:7b:f8:a5:fc:7b:dd:9a:31:f2:d3:d5:d1: 67:e0:f6:0d:fb:c1:0e:a1:f7:a5:9d:34:12:57:31: ed:b7:0a:38:f9:64:18:05:dc:52:88:85:e7:bd:7f: 80:c1:a4:ab:fe:e1:dd:96:25:75:41:6d:68:db:94: 39:40:16:a9:af:45:ca:2e:3b:b9:af:fa:fd:03:61: 9c:84:d2:53:64:96:76:29:0c:18:8c:6f:ba:a9:f3: 04:c5:b3:d7:ae:55:b6:00:b2:c2:01:4b:e1:9a:12: bb:c5:e3:c9:86:20:15:04:d1:51:7a:03:e1:0d:e1: 08:52:e0:25:df:fc:cd:62:fb:8b:d6:15:07:28:0b: c1:28:34:9f:61:12:75:cd:38:01:8a:fa:15:e0:ec: 6f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:48:E6:50:6E:C6:D5:3C:59:15:DC:8F:29:64:44:85:DF:92:FC:E9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/_EjmUG7G1TxZFdyPKWREhd-S_Ok.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.68.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:4a:02:a0:69:92:aa:57:49:25:8c:56:4b:fd:12:0b:9b:4b: 6a:9c:06:e5:ca:32:ff:99:54:67:34:c3:01:40:5b:f1:42:b6: 41:ae:91:21:1f:43:29:0d:87:e8:5c:9a:bd:f2:47:ba:51:fb: ba:43:9e:ac:bb:4d:0e:08:4a:60:e8:a7:12:4a:0b:34:0d:81: 08:76:c8:33:54:5f:35:88:a8:0f:e2:ec:e9:13:91:95:bd:44: 2c:59:e7:57:74:f7:06:2a:42:fc:40:d8:b8:88:89:ff:04:33: 52:69:f9:89:11:49:76:89:24:c3:a0:19:8f:f6:bd:3c:af:78: 6f:fb:e3:7a:4b:24:ce:26:f9:3f:79:90:19:42:0a:08:7a:6c: 61:24:4f:ee:69:f0:79:36:af:c6:8c:73:7d:5a:83:4c:12:37: 29:e7:c3:c5:23:e8:92:51:49:01:d9:1a:4f:11:11:59:35:14: 21:28:5c:23:3d:e7:e6:53:7e:36:e6:62:c4:e4:68:80:02:c4: 85:f9:2c:00:b8:59:4e:1c:62:13:3d:d2:96:78:c0:90:54:fc: 25:4d:48:09:32:ea:14:89:d3:7d:b7:d3:1c:e9:4b:79:7a:98: 39:9b:4a:3c:e4:cd:f4:32:ef:e8:c2:6b:1e:35:4b:e6:19:f0: 93:77:fd:83 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt8E1SJY2tNGTo1IohlodmyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYzQ4ZTY1MDZlYzZkNTNjNTkxNWRjOGYyOTY0NDQ4NWRmOTJmY2U5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5j7JYUy5/M3ZrXiNvXyiKfGPVDr mWVToCFHpEAwvfNrD73OYS2aQSeZdz59mkBfkUGsBgDZIe1EN4nub1TtRyM0EaWW ooHvCDk1XkhDKfnViju8rYIHqTUl0uMuOBYa9x/6aomd1MzdlN57+KX8e92aMfLT 1dFn4PYN+8EOofelnTQSVzHttwo4+WQYBdxSiIXnvX+AwaSr/uHdliV1QW1o25Q5 QBapr0XKLju5r/r9A2GchNJTZJZ2KQwYjG+6qfMExbPXrlW2ALLCAUvhmhK7xePJ hiAVBNFRegPhDeEIUuAl3/zNYvuL1hUHKAvBKDSfYRJ1zTgBivoV4OxvXQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFPxI5lBuxtU8WRXcjylkRIXfkvzpMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZhLzNhYjZj Zi05OWNkLTRhYzQtOTAxMy1mNWJlZTE2ZWQzYTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEvM2FiNmNm LTk5Y2QtNGFjNC05MDEzLWY1YmVlMTZlZDNhNy8xL19Fam1VRzdHMVR4WkZkeVBL V1JFaGQtU19Pay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9xEMA0GCSqGSIb3DQEBCwUAA4IBAQBtSgKg aZKqV0kljFZL/RILm0tqnAblyjL/mVRnNMMBQFvxQrZBrpEhH0MpDYfoXJq98ke6 Ufu6Q56su00OCEpg6KcSSgs0DYEIdsgzVF81iKgP4uzpE5GVvUQsWedXdPcGKkL8 QNi4iIn/BDNSafmJEUl2iSTDoBmP9r08r3hv++N6SyTOJvk/eZAZQgoIemxhJE/u afB5Nq/GjHN9WoNMEjcp58PFI+iSUUkB2RpPERFZNRQhKFwjPefmU3425mLE5GiA AsSF+SwAuFlOHGITPdKWeMCQVPwlTUgJMuoUidN9t9Mc6Ut5epg5m0o85M30Mu/o wmseNUvmGfCTd/2D -----END CERTIFICATE-----Generated at Mon Jan 26 00:18:06 2026 by rpki-client