This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fx1Y1i3dfkevIZb9dUuz_yZ5iSo.cer File: fx1Y1i3dfkevIZb9dUuz_yZ5iSo.cer (raw, json) Hash identifier: Y48Nc9UyR0enUMmK/HApn3GJkjjxwn02yLuBWI512co= Subject key identifier: 7F:1D:58:D6:2D:DD:7E:47:AF:21:96:FD:75:4B:B3:FF:26:79:89:2A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DC9EC5154E44A91F9A51A6272E778B9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/290a60-792f-4475-a9f4-e3b9e0bae6ab/1/fx1Y1i3dfkevIZb9dUuz_yZ5iSo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/290a60-792f-4475-a9f4-e3b9e0bae6ab/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.102.216.0/22 IP: 2a00:e3c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:ec:51:54:e4:4a:91:f9:a5:1a:62:72:e7:78:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7f1d58d62ddd7e47af2196fd754bb3ff2679892a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e7:b3:16:22:c5:93:e1:80:3e:e8:aa:e4:1c: 0d:ce:10:5e:28:9d:6e:48:af:de:d5:e3:6e:8c:0b: 33:65:a4:f9:3b:ed:63:04:fd:9f:d5:1f:5e:2a:1c: 28:b6:de:af:10:dd:47:92:35:c4:2e:48:85:0d:19: de:77:12:2d:b9:5c:db:21:26:d0:62:19:3b:78:7e: fd:83:84:66:c8:5b:9c:c7:91:5c:7e:0a:c0:5b:fe: 50:f1:27:ef:6a:f2:15:23:02:d7:24:3c:fa:f2:bd: 02:8c:6d:98:ca:82:7f:63:a1:86:c7:80:bd:96:db: 03:45:57:8a:6c:27:78:1f:b2:c7:88:4a:a2:8e:16: 9d:c6:4a:41:8d:a1:4f:d2:4a:b3:1a:e8:dd:9c:f9: 42:af:a5:ba:4e:33:a8:65:ad:58:08:03:07:f9:a5: c3:d5:91:64:47:22:54:b1:7d:22:21:ba:48:16:2a: 7d:96:b8:7d:ed:29:6d:96:4b:3a:9b:90:a0:ec:01: 7b:46:23:9b:0f:b6:94:64:20:0f:b4:0d:c8:72:80: c0:61:28:34:ff:f9:5b:81:e8:82:6f:5a:b9:db:fc: 7f:a3:3c:35:60:ab:ce:32:55:ec:b7:53:3b:56:59: d8:9f:f7:bc:11:8d:1b:7d:00:9b:29:b9:3b:f9:7b: 76:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:1D:58:D6:2D:DD:7E:47:AF:21:96:FD:75:4B:B3:FF:26:79:89:2A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/290a60-792f-4475-a9f4-e3b9e0bae6ab/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/290a60-792f-4475-a9f4-e3b9e0bae6ab/1/fx1Y1i3dfkevIZb9dUuz_yZ5iSo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.102.216.0/22 IPv6: 2a00:e3c0::/32 Signature Algorithm: sha256WithRSAEncryption 2b:cb:35:c4:67:51:42:e5:c0:20:d3:af:e3:ce:35:b1:2b:8c: 02:9c:d1:73:4d:51:5e:c2:79:2e:31:62:6b:e6:d9:d5:69:e6: 2c:4a:d9:98:9b:9e:a2:5d:9b:67:41:94:77:76:4f:3d:87:fc: b5:14:5c:72:c0:56:4d:3c:25:ae:20:31:94:b1:29:61:2e:a3: bd:46:64:7f:b9:d9:c2:a1:6a:6e:0f:51:c1:69:2a:36:a9:30: 38:9e:d8:bf:85:a1:64:d2:9c:b9:07:d8:4f:f5:c6:b6:aa:c3: 55:7b:79:92:c6:a4:9b:8c:7b:bb:0e:df:65:f7:54:26:b6:44: 5c:34:b6:87:35:ee:8c:d8:e3:79:8f:10:e3:d0:a5:82:60:fe: 8d:3a:fc:27:ce:1f:8c:5a:e7:05:0e:2b:d4:06:76:0a:34:da: 22:15:9d:cb:5e:05:d2:51:e3:c5:5d:71:dd:66:90:2f:b4:19: 56:43:e0:37:00:e2:82:ee:a4:e9:6a:73:82:22:a0:f1:84:4e: 7b:f2:d0:a5:2f:91:2d:d9:bf:97:90:68:4f:8b:8e:c8:ee:c7: 27:67:af:86:ec:50:47:1d:c6:54:d9:7d:26:76:57:a5:62:e0: 6e:79:ac:81:be:b8:2f:c0:31:df:cf:c0:3d:73:90:dc:c8:bd: 23:ca:9f:e1 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt9yexRVORKkfmlGmJy53i5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZjFkNThkNjJkZGQ3ZTQ3YWYyMTk2ZmQ3NTRiYjNmZjI2Nzk4OTJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuezFiLFk+GAPuiq5BwNzhBeKJ1u SK/e1eNujAszZaT5O+1jBP2f1R9eKhwott6vEN1HkjXELkiFDRnedxItuVzbISbQ Yhk7eH79g4RmyFucx5FcfgrAW/5Q8SfvavIVIwLXJDz68r0CjG2YyoJ/Y6GGx4C9 ltsDRVeKbCd4H7LHiEqijhadxkpBjaFP0kqzGujdnPlCr6W6TjOoZa1YCAMH+aXD 1ZFkRyJUsX0iIbpIFip9lrh97Sltlks6m5Cg7AF7RiObD7aUZCAPtA3IcoDAYSg0 //lbgeiCb1q52/x/ozw1YKvOMlXst1M7VlnYn/e8EY0bfQCbKbk7+Xt2DwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFH8dWNYt3X5HryGW/XVLs/8meYkqMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ2LzI5MGE2 MC03OTJmLTQ0NzUtYTlmNC1lM2I5ZTBiYWU2YWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYvMjkwYTYw LTc5MmYtNDQ3NS1hOWY0LWUzYjllMGJhZTZhYi8xL2Z4MVkxaTNkZmtldklaYjlk VXV6X3laNWlTby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuWbYMA0EAgACMAcDBQAqAOPAMA0GCSqGSIb3 DQEBCwUAA4IBAQAryzXEZ1FC5cAg06/jzjWxK4wCnNFzTVFewnkuMWJr5tnVaeYs StmYm56iXZtnQZR3dk89h/y1FFxywFZNPCWuIDGUsSlhLqO9RmR/udnCoWpuD1HB aSo2qTA4nti/haFk0py5B9hP9ca2qsNVe3mSxqSbjHu7Dt9l91QmtkRcNLaHNe6M 2ON5jxDj0KWCYP6NOvwnzh+MWucFDivUBnYKNNoiFZ3LXgXSUePFXXHdZpAvtBlW Q+A3AOKC7qTpanOCIqDxhE578tClL5Et2b+XkGhPi47I7scnZ6+G7FBHHcZU2X0m dlelYuBueayBvrgvwDHfz8A9c5DcyL0jyp/h -----END CERTIFICATE-----Generated at Sun Jan 25 21:29:47 2026 by rpki-client