This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xFa7Guri5zRfE-sjz434DzEkb2c.cer File: xFa7Guri5zRfE-sjz434DzEkb2c.cer (raw, json) Hash identifier: UmF96PHobCpMZvp9wKmSTv2O3dqA2KYcMJ95v1O3jCk= Subject key identifier: C4:56:BB:1A:EA:E2:E7:34:5F:13:EB:23:CF:8D:F8:0F:31:24:6F:67 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B16858721EEEF364B03E42C176FAEBB6E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/1b22759c-d097-4faa-9dce-dd46c1d30ec8/0/C456BB1AEAE2E7345F13EB23CF8DF80F31246F67.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/1b22759c-d097-4faa-9dce-dd46c1d30ec8/0/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Sat 13 Dec 2025 07:03:28 +0000 Certificate not after: Wed 01 Jul 2026 00:00:00 +0000 Subordinate resources: AS: 210352 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 22:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:16:85:87:21:ee:ef:36:4b:03:e4:2c:17:6f:ae:bb:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Dec 13 07:03:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=c456bb1aeae2e7345f13eb23cf8df80f31246f67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ad:14:c2:dc:27:c2:7b:1a:1c:b4:85:65:57: ef:5d:ba:5f:84:bd:9d:ff:6f:2b:7d:d3:db:ca:ed: 11:66:91:3f:ea:b7:77:17:e4:b2:5a:cd:80:9e:aa: d4:2b:ff:ae:39:d3:e6:ad:5a:32:82:b7:d6:89:44: e8:88:c3:47:88:d1:2a:ed:9a:8b:eb:c8:7e:9d:54: 9d:7b:0f:01:39:64:01:a2:de:5f:30:0f:a2:10:1a: a3:af:a4:5d:6c:ec:93:b4:e7:ae:23:c3:12:f3:b4: 6f:c1:50:d5:b4:c6:ef:5c:b4:aa:b7:d7:8e:cc:6b: 5a:92:52:89:1f:38:fa:9d:b9:57:49:c2:15:28:d0: da:03:c2:7a:78:ab:95:6b:a0:f2:77:61:e6:17:51: 68:28:e6:00:3c:fa:f1:9a:41:f8:1f:0c:97:19:c4: 59:ad:44:37:54:21:db:57:86:27:ee:2e:72:a1:ae: 3a:49:e3:9a:eb:ec:97:fc:86:9e:be:81:e5:66:d2: 8f:17:31:1c:6f:93:97:25:18:55:c4:56:9b:f2:b8: cd:72:b1:85:e3:ee:60:0a:0d:9a:5c:80:3d:d0:95: 3c:da:28:b9:3b:f6:76:db:99:2b:02:6f:40:e3:58: db:9b:b5:e3:94:a6:03:37:48:d4:ef:76:77:d0:57: ef:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:56:BB:1A:EA:E2:E7:34:5F:13:EB:23:CF:8D:F8:0F:31:24:6F:67 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/1b22759c-d097-4faa-9dce-dd46c1d30ec8/0/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/1b22759c-d097-4faa-9dce-dd46c1d30ec8/0/C456BB1AEAE2E7345F13EB23CF8DF80F31246F67.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 210352 Signature Algorithm: sha256WithRSAEncryption a9:c8:ad:fe:20:77:9e:ec:23:2d:29:e7:3b:32:7b:a3:08:cc: ff:78:98:20:91:57:51:07:71:fa:e4:b0:2e:76:80:7f:c4:39: 8a:a2:05:a5:90:8d:55:4b:2d:84:2f:22:c8:56:c3:30:ac:1d: 03:07:2a:6e:9b:05:64:c0:3c:53:00:85:c2:6e:68:d1:2e:17: 57:77:8b:e7:c5:fb:90:df:e0:2a:f1:02:66:32:8d:e9:0f:0d: 43:2e:84:93:61:20:7c:b2:2c:98:ac:92:d4:22:3d:1a:99:78: 0f:35:86:bb:cc:08:60:26:39:11:69:47:3d:51:93:d6:41:81: e2:04:2a:0e:cd:f3:44:5f:c4:c4:ee:59:69:bb:5a:8b:4e:0b: e5:94:6d:09:a0:03:ac:2b:03:d3:9c:2d:7d:35:b3:ff:3c:3d: dd:38:16:36:90:54:b9:0b:c7:9e:1e:55:a6:69:d1:91:4b:98: e4:04:75:eb:4b:d9:9c:e6:cc:73:62:e1:44:9c:8e:c7:69:e0: 92:11:02:61:96:f7:76:71:e7:78:f2:65:a4:d4:f8:cd:cd:2b: 9f:7a:61:0c:bb:d7:e2:d8:68:ec:eb:b4:21:c6:33:05:8a:28: 76:4b:fc:7b:fd:af:ff:5a:89:34:b8:a3:87:9b:63:19:ac:2c: 0a:02:41:df -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgISAZsWhYch7u82SwPkLBdvrrtuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjUxMjEzMDcwMzI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDU2YmIxYWVhZTJlNzM0NWYxM2ViMjNjZjhkZjgwZjMxMjQ2ZjY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzq0UwtwnwnsaHLSFZVfvXbpfhL2d /28rfdPbyu0RZpE/6rd3F+SyWs2AnqrUK/+uOdPmrVoygrfWiUToiMNHiNEq7ZqL 68h+nVSdew8BOWQBot5fMA+iEBqjr6RdbOyTtOeuI8MS87RvwVDVtMbvXLSqt9eO zGtaklKJHzj6nblXScIVKNDaA8J6eKuVa6Dyd2HmF1FoKOYAPPrxmkH4HwyXGcRZ rUQ3VCHbV4Yn7i5yoa46SeOa6+yX/IaevoHlZtKPFzEcb5OXJRhVxFab8rjNcrGF 4+5gCg2aXIA90JU82ii5O/Z225krAm9A41jbm7XjlKYDN0jU73Z30FfvrwIDAQAB o4ICmzCCApcwHQYDVR0OBBYEFMRWuxrq4uc0XxPrI8+N+A8xJG9nMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzFiMjI3 NTljLWQwOTctNGZhYS05ZGNlLWRkNDZjMWQzMGVjOC8wLzCBiwYIKwYBBQUHMAqG f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWIy Mjc1OWMtZDA5Ny00ZmFhLTlkY2UtZGQ0NmMxZDMwZWM4LzAvQzQ1NkJCMUFFQUUy RTczNDVGMTNFQjIzQ0Y4REY4MEYzMTI0NkY2Ny5tZnQwPAYIKwYBBQUHMA2GMGh0 dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgMDNbAw DQYJKoZIhvcNAQELBQADggEBAKnIrf4gd57sIy0p5zsye6MIzP94mCCRV1EHcfrk sC52gH/EOYqiBaWQjVVLLYQvIshWwzCsHQMHKm6bBWTAPFMAhcJuaNEuF1d3i+fF +5Df4CrxAmYyjekPDUMuhJNhIHyyLJisktQiPRqZeA81hrvMCGAmORFpRz1Rk9ZB geIEKg7N80RfxMTuWWm7WotOC+WUbQmgA6wrA9OcLX01s/88Pd04FjaQVLkLx54e VaZp0ZFLmOQEdetL2ZzmzHNi4UScjsdp4JIRAmGW93Zx53jyZaTU+M3NK596YQy7 1+LYaOzrtCHGMwWKKHZL/Hv9r/9aiTS4o4ebYxmsLAoCQd8= -----END CERTIFICATE-----Generated at Tue Dec 16 04:32:32 2025 by rpki-client