This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6QOzpacoCqn-K_-pBlwrKgGld8w.cer File: 6QOzpacoCqn-K_-pBlwrKgGld8w.cer (raw, json) Hash identifier: UHBmyJ18sZt3y1kVmPD7ZJFgZHQtJirgKKxcvn28UtU= Subject key identifier: E9:03:B3:A5:A7:28:0A:A9:FE:2B:FF:A9:06:5C:2B:2A:01:A5:77:CC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EAD062178FA80E165EA9349377DE58 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/25/58b557-27a9-46aa-9dee-4cec696833ed/1/6QOzpacoCqn-K_-pBlwrKgGld8w.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/25/58b557-27a9-46aa-9dee-4cec696833ed/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:17:38 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201441 IP: 193.168.16.0 -- 193.168.45.255 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:d0:62:17:8f:a8:0e:16:5e:a9:34:93:77:de:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e903b3a5a7280aa9fe2bffa9065c2b2a01a577cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:79:e3:94:d9:8d:29:b8:9f:4a:e5:3a:5a:c7: b8:6e:78:ee:ba:49:f8:74:db:2a:88:fb:e4:ab:59: 8a:82:9a:dc:b7:db:96:18:d1:b2:05:71:16:1f:2e: c7:e1:2c:e2:c0:06:dc:33:1c:72:8d:fe:e3:89:93: b5:bc:9a:27:14:79:8e:b8:c3:3a:91:5a:4a:54:82: bf:0e:a1:e5:1e:3b:5c:5c:c9:0e:ad:1f:19:48:8c: 27:67:56:1a:bd:d2:b4:ee:ae:6d:d6:87:7b:db:04: 7f:99:29:c4:53:b9:f4:83:01:f1:49:3f:d1:c7:7e: 3c:ef:0e:35:4a:b8:da:12:40:1e:84:33:95:11:c9: 0d:cb:b0:5c:91:ab:9e:47:51:fb:32:bd:f6:ec:31: b6:9d:32:86:77:f7:a0:fc:ef:34:ff:b7:b0:5e:8e: cd:1c:77:e0:cc:08:9b:5d:5d:5c:48:04:92:56:a4: fb:b8:fa:cd:fc:a7:83:0a:a2:9d:1f:64:b7:60:17: 7b:f8:ba:75:4b:40:6a:11:9f:03:b2:56:db:07:54: 18:36:d3:b1:8e:9f:53:7f:65:f0:85:0c:54:16:9f: 5b:32:48:af:c1:2d:34:8b:83:33:19:3f:e3:a8:23: 18:32:7b:d8:04:83:ae:d6:ec:cf:3f:4d:79:5f:7c: 99:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:03:B3:A5:A7:28:0A:A9:FE:2B:FF:A9:06:5C:2B:2A:01:A5:77:CC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58b557-27a9-46aa-9dee-4cec696833ed/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58b557-27a9-46aa-9dee-4cec696833ed/1/6QOzpacoCqn-K_-pBlwrKgGld8w.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.168.16.0-193.168.45.255 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201441 Signature Algorithm: sha256WithRSAEncryption 26:20:c0:7b:8c:ca:8d:0b:0d:09:3b:c1:c4:6d:fc:02:c8:56: 16:2e:8d:6b:6d:e4:92:11:16:c6:16:aa:3d:cb:54:a8:f0:a5: 93:d5:7c:05:eb:0d:eb:a6:af:4a:33:92:30:9e:8c:7a:3b:56: fe:46:df:27:ab:9a:07:ef:45:dd:fe:e5:d3:89:b4:12:0c:9a: f4:87:3c:58:07:24:0c:0f:68:8a:f3:8e:74:9c:04:4a:8c:43: e8:91:cd:c0:15:f3:66:d0:76:bb:9f:b8:45:57:2b:fd:ff:8b: 86:49:28:47:02:97:69:af:56:04:7f:80:d3:af:bb:f0:8f:20: ba:7a:76:e1:8e:fb:38:e2:eb:70:a7:7d:80:41:2b:94:7d:c7: dd:a2:36:1a:8d:bf:ae:b7:1f:81:57:e9:6e:55:d1:8f:62:f5: 57:16:06:1b:85:b4:51:b6:06:e0:18:15:7e:bd:89:15:77:aa: dd:01:31:53:3f:a2:da:44:78:6c:7e:4d:28:47:41:1f:90:3e: 5c:27:0b:8a:de:d0:5a:84:ba:15:f8:99:91:fb:b3:6b:d3:9c: 29:0a:5d:06:40:bb:b5:e3:f2:1a:16:37:84:fa:71:e5:01:56: 0e:9a:85:48:a0:0b:94:80:6a:76:f1:e4:40:14:76:a8:7e:ff: 77:52:f5:a1 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgISAZt26tBiF4+oDhZeqTSTd95YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlOTAzYjNhNWE3MjgwYWE5ZmUyYmZmYTkwNjVjMmIyYTAxYTU3N2NjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXnjlNmNKbifSuU6Wse4bnjuukn4 dNsqiPvkq1mKgprct9uWGNGyBXEWHy7H4SziwAbcMxxyjf7jiZO1vJonFHmOuMM6 kVpKVIK/DqHlHjtcXMkOrR8ZSIwnZ1YavdK07q5t1od72wR/mSnEU7n0gwHxST/R x3487w41SrjaEkAehDOVEckNy7BckaueR1H7Mr327DG2nTKGd/eg/O80/7ewXo7N HHfgzAibXV1cSASSVqT7uPrN/KeDCqKdH2S3YBd7+Lp1S0BqEZ8DslbbB1QYNtOx jp9Tf2XwhQxUFp9bMkivwS00i4MzGT/jqCMYMnvYBIOu1uzPP015X3yZHwIDAQAB o4ICqDCCAqQwHQYDVR0OBBYEFOkDs6WnKAqp/iv/qQZcKyoBpXfMMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI1LzU4YjU1 Ny0yN2E5LTQ2YWEtOWRlZS00Y2VjNjk2ODMzZWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUvNThiNTU3 LTI3YTktNDZhYS05ZGVlLTRjZWM2OTY4MzNlZC8xLzZRT3pwYWNvQ3FuLUtfLXBC bHdyS2dHbGQ4dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUF BwEHAQH/BBgwFjAUBAIAATAOMAwDBATBqBADBAHBqCwwGgYIKwYBBQUHAQgBAf8E CzAJoAcwBQIDAxLhMA0GCSqGSIb3DQEBCwUAA4IBAQAmIMB7jMqNCw0JO8HEbfwC yFYWLo1rbeSSERbGFqo9y1So8KWT1XwF6w3rpq9KM5Iwnox6O1b+Rt8nq5oH70Xd /uXTibQSDJr0hzxYByQMD2iK8450nARKjEPokc3AFfNm0Ha7n7hFVyv9/4uGSShH Apdpr1YEf4DTr7vwjyC6enbhjvs44utwp32AQSuUfcfdojYajb+utx+BV+luVdGP YvVXFgYbhbRRtgbgGBV+vYkVd6rdATFTP6LaRHhsfk0oR0EfkD5cJwuK3tBahLoV +JmR+7Nr05wpCl0GQLu14/IaFjeE+nHlAVYOmoVIoAuUgGp28eRAFHaofv93UvWh -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:50 2026 by rpki-client