This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fTRqzk5lKHDxaHRQ1cNOFMsAlLU.cer File: fTRqzk5lKHDxaHRQ1cNOFMsAlLU.cer (raw, json) Hash identifier: g+R1WYCrZOdb6OnK0xYcFdijI+8MkpXu1iZ/K0KBa6g= Subject key identifier: 7D:34:6A:CE:4E:65:28:70:F1:68:74:50:D5:C3:4E:14:CB:00:94:B5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B775969EC01FE8492A0559D488349235D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/c676d7-fbfe-4ae6-be51-327acc1b1e59/1/fTRqzk5lKHDxaHRQ1cNOFMsAlLU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/c676d7-fbfe-4ae6-be51-327acc1b1e59/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:27 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 37.48.128.0 -- 37.48.223.255 IP: 46.58.128.0/17 IP: 130.0.240.0/20 IP: 130.180.128.0/18 IP: 178.171.128.0/17 IP: 188.160.0.0/16 IP: 188.229.128.0/17 IP: 2a00:1ee8::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:69:ec:01:fe:84:92:a0:55:9d:48:83:49:23:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d346ace4e652870f1687450d5c34e14cb0094b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:03:b3:54:74:69:30:f5:d9:af:ec:85:da:e8: eb:56:c4:8a:f7:6b:bd:46:b2:d7:e8:20:f6:60:e3: 25:78:ff:5d:90:45:20:e8:c0:77:d0:0f:85:e4:e2: 0d:85:de:ff:2e:e9:e7:61:85:cc:90:37:5f:53:1e: 6f:7f:46:a4:a6:d1:65:59:0e:32:81:59:19:83:f8: 65:53:b9:74:5a:62:72:72:c1:8d:0f:93:49:99:83: 64:8d:f0:7e:29:a0:51:9b:36:b6:04:32:b8:d4:c7: b5:73:81:e5:33:32:94:5a:00:8f:45:a7:59:a2:b7: 1a:8d:8e:96:8c:74:de:1f:bb:19:06:51:6e:d2:ff: 66:54:17:b5:46:ee:60:31:95:3b:e3:f4:a9:4d:b0: 19:e9:2a:ad:2b:f7:50:33:1d:e1:21:99:30:e3:e0: 38:a0:0d:44:0a:11:b6:9e:d8:93:4c:5d:70:e6:ea: 20:a9:15:b5:3b:3b:d6:ea:4b:db:b6:ad:77:bf:0b: 39:5c:11:50:c9:5a:97:c3:28:de:6b:73:db:6d:ce: 53:99:d7:8c:29:80:16:9e:62:79:c4:37:d5:9a:5c: cb:06:b8:62:c0:ff:8c:8c:93:b4:5b:d5:55:8a:98: 1c:66:0e:c7:3e:c5:d1:7e:28:3c:36:d7:50:55:98: 6f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:34:6A:CE:4E:65:28:70:F1:68:74:50:D5:C3:4E:14:CB:00:94:B5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c676d7-fbfe-4ae6-be51-327acc1b1e59/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c676d7-fbfe-4ae6-be51-327acc1b1e59/1/fTRqzk5lKHDxaHRQ1cNOFMsAlLU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.48.128.0-37.48.223.255 46.58.128.0/17 130.0.240.0/20 130.180.128.0/18 178.171.128.0/17 188.160.0.0/16 188.229.128.0/17 IPv6: 2a00:1ee8::/32 Signature Algorithm: sha256WithRSAEncryption 04:b0:15:54:0c:31:90:1b:a5:51:58:76:c5:5b:cb:c7:3a:57: 56:f9:c9:7a:a5:3b:25:c4:38:1b:88:e7:4a:39:a8:2a:70:bd: f9:65:22:4e:f6:71:fb:4c:e4:2e:ad:01:96:15:b7:dd:6d:f0: 22:45:ac:c2:c3:51:be:0e:5f:db:cb:f8:c4:65:5f:ef:76:0a: 0e:5c:b0:dd:c2:f2:df:5a:08:e7:cc:0b:43:63:44:17:d3:38: 0d:c4:db:aa:7f:f8:a5:7a:4a:8e:e6:26:00:72:85:77:53:c9: 5c:f7:86:97:4b:6a:e4:ad:a1:9d:22:fa:f8:95:0a:7a:81:1c: a8:90:b4:6e:ab:10:a4:3f:b6:da:e9:17:4c:48:79:3b:43:7a: 61:2f:58:6c:60:bd:c2:18:0d:49:05:3c:9e:03:ac:c5:c4:6f: 13:b7:07:95:16:a4:be:b8:37:dd:da:05:f7:55:16:cc:f5:f0: 88:92:65:ed:fe:fc:75:9b:ea:3d:5a:29:1d:8b:09:99:a8:31: c6:ac:49:68:9c:ef:77:d6:ce:f7:f2:2b:fb:93:1b:79:c1:d5: 04:e5:07:89:98:10:77:3d:7f:9c:58:1a:40:ee:c9:95:16:7e: b0:54:c9:0b:a7:f0:98:e3:30:a4:02:fb:16:12:4e:78:ac:e8: 56:60:c1:38 -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgISAZt3WWnsAf6EkqBVnUiDSSNdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDM0NmFjZTRlNjUyODcwZjE2ODc0NTBkNWMzNGUxNGNiMDA5NGI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgOzVHRpMPXZr+yF2ujrVsSK92u9 RrLX6CD2YOMleP9dkEUg6MB30A+F5OINhd7/LunnYYXMkDdfUx5vf0akptFlWQ4y gVkZg/hlU7l0WmJycsGND5NJmYNkjfB+KaBRmza2BDK41Me1c4HlMzKUWgCPRadZ orcajY6WjHTeH7sZBlFu0v9mVBe1Ru5gMZU74/SpTbAZ6SqtK/dQMx3hIZkw4+A4 oA1EChG2ntiTTF1w5uogqRW1OzvW6kvbtq13vws5XBFQyVqXwyjea3Pbbc5TmdeM KYAWnmJ5xDfVmlzLBrhiwP+MjJO0W9VVipgcZg7HPsXRfig8NtdQVZhvVQIDAQAB o4ICvjCCArowHQYDVR0OBBYEFH00as5OZShw8Wh0UNXDThTLAJS1MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VkL2M2NzZk Ny1mYmZlLTRhZTYtYmU1MS0zMjdhY2MxYjFlNTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQvYzY3NmQ3 LWZiZmUtNGFlNi1iZTUxLTMyN2FjYzFiMWU1OS8xL2ZUUnF6azVsS0hEeGFIUlEx Y05PRk1zQWxMVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGCCsGAQUF BwEHAQH/BEowSDA3BAIAATAxMAwDBAclMIADBAUlMMADBAcuOoADBASCAPADBAaC tIADBAeyq4ADAwC8oAMEB7zlgDANBAIAAjAHAwUAKgAe6DANBgkqhkiG9w0BAQsF AAOCAQEABLAVVAwxkBulUVh2xVvLxzpXVvnJeqU7JcQ4G4jnSjmoKnC9+WUiTvZx +0zkLq0BlhW33W3wIkWswsNRvg5f28v4xGVf73YKDlyw3cLy31oI58wLQ2NEF9M4 DcTbqn/4pXpKjuYmAHKFd1PJXPeGl0tq5K2hnSL6+JUKeoEcqJC0bqsQpD+22ukX TEh5O0N6YS9YbGC9whgNSQU8ngOsxcRvE7cHlRakvrg33doF91UWzPXwiJJl7f78 dZvqPVopHYsJmagxxqxJaJzvd9bO9/Ir+5MbecHVBOUHiZgQdz1/nFgaQO7JlRZ+ sFTJC6fwmOMwpAL7FhJOeKzoVmDBOA== -----END CERTIFICATE-----Generated at Mon Jan 26 02:45:57 2026 by rpki-client