This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.cer File: 6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.cer (raw, json) Hash identifier: dm6km9NljhsMnaQLBcPwl2g7Db3BKDNL28tzs8gg0lU= Subject key identifier: E9:20:23:7E:72:5C:F0:A5:3E:F4:3A:74:B5:56:95:51:AF:F7:4E:04 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F154225B12DE30085BA0E2EF4E5D276 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:20:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 61999 IP: 185.52.104.0/22 IP: 2a04:c780::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:42:25:b1:2d:e3:00:85:ba:0e:2e:f4:e5:d2:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:20:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e920237e725cf0a53ef43a74b5569551aff74e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0e:6c:2f:2d:96:d5:9e:9a:62:75:61:95:d0: 48:d9:be:7f:b1:e5:53:ef:cd:11:7b:f4:b7:64:61: 44:89:28:31:a8:db:5b:35:6d:8f:3d:e1:9b:04:d8: 4c:fd:09:b3:24:1e:af:2d:32:ce:0d:26:a4:bc:68: 69:5e:1a:7b:50:1d:e5:f9:fd:ca:b2:9a:d3:0e:5c: 9f:c0:bd:46:6b:ac:4c:87:53:4f:9b:20:dd:95:5b: 9b:53:1c:82:ed:d6:93:b6:d9:a0:1d:7a:28:21:40: d5:24:a3:c9:e0:a2:88:e3:c7:00:a8:5f:1c:c8:d7: 84:e0:6a:31:ad:66:4d:bd:62:a0:7e:34:46:6e:9e: 63:02:33:b8:52:25:b5:af:15:71:0c:86:9f:e5:99: c6:99:ef:21:50:bc:4e:a6:a8:80:c7:47:e8:87:02: 7e:e0:03:8d:cd:33:f0:c4:15:06:03:e1:67:12:d1: c8:ef:cf:d8:3c:96:e8:66:d6:48:b5:26:fc:3c:4a: 7c:8c:60:53:fe:e1:e1:f4:41:dd:7f:93:9f:5c:0f: 85:6b:da:2c:26:2c:54:a8:97:60:ce:db:f8:7d:87: 10:37:55:a7:65:c1:eb:ce:d3:74:10:59:c5:69:35: 19:37:7e:26:fa:76:59:20:5d:54:f3:4e:cf:58:83: 3b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:20:23:7E:72:5C:F0:A5:3E:F4:3A:74:B5:56:95:51:AF:F7:4E:04 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.52.104.0/22 IPv6: 2a04:c780::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 61999 Signature Algorithm: sha256WithRSAEncryption 97:27:0b:b0:2a:58:a1:79:a8:55:5e:a7:ab:ea:df:c9:3d:40: 83:46:82:20:fd:70:4d:d5:bf:dc:2c:9a:f0:f2:4e:e7:d3:64: 65:2f:95:8b:03:80:cf:14:89:d0:6b:ef:7a:1d:c4:8d:8e:a8: 5a:12:b0:9b:c4:10:c7:36:5c:ef:3b:38:91:a6:f3:9c:bf:c0: d8:c9:70:51:f2:ac:b0:d8:89:62:cf:f9:c0:be:20:c0:cb:51: 86:48:ed:52:30:67:01:17:9b:c3:62:e9:29:dd:f8:17:1b:aa: f2:89:f6:85:9f:6a:d6:e5:e0:df:bd:bf:82:c6:2e:a2:85:da: 34:d3:c1:6b:2c:40:76:45:55:93:b1:9a:7d:2c:5c:54:be:49: a7:33:d9:bc:0e:b2:5b:dd:ca:f8:47:46:68:9f:11:03:9e:04: 57:dd:2f:bd:ca:df:10:10:d9:5b:d5:c1:57:6d:51:fa:0b:a7: 40:b3:ab:c5:51:c5:7c:5b:cf:97:f9:de:67:25:c4:08:da:06: eb:55:4a:64:d7:21:9a:37:da:57:d3:c0:14:21:bc:d7:f9:ec: 25:75:39:fb:a0:4f:4c:ad:b7:22:95:1c:a4:21:82:7e:5b:fd: bc:94:0f:2e:62:33:89:b1:c9:45:be:ac:88:19:f3:d7:b1:2f: 4d:49:03:de -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/FUIlsS3jAIW6Di705dJ2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMDU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlOTIwMjM3ZTcyNWNmMGE1M2VmNDNhNzRiNTU2OTU1MWFmZjc0ZTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAog5sLy2W1Z6aYnVhldBI2b5/seVT 780Re/S3ZGFEiSgxqNtbNW2PPeGbBNhM/QmzJB6vLTLODSakvGhpXhp7UB3l+f3K sprTDlyfwL1Ga6xMh1NPmyDdlVubUxyC7daTttmgHXooIUDVJKPJ4KKI48cAqF8c yNeE4GoxrWZNvWKgfjRGbp5jAjO4UiW1rxVxDIaf5ZnGme8hULxOpqiAx0fohwJ+ 4AONzTPwxBUGA+FnEtHI78/YPJboZtZItSb8PEp8jGBT/uHh9EHdf5OfXA+Fa9os JixUqJdgztv4fYcQN1WnZcHrztN0EFnFaTUZN34m+nZZIF1U807PWIM7YwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFOkgI35yXPClPvQ6dLVWlVGv904EMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FjL2E1NjBk MC0wMzY4LTQ5YzMtOWI4OC1lYjExMzlhMzNkMGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMvYTU2MGQw LTAzNjgtNDljMy05Yjg4LWViMTEzOWEzM2QwYS8xLzZTQWpmbkpjOEtVLTlEcDB0 VmFWVWFfM1RnUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuTRoMA0EAgACMAcDBQMqBMeAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDyLzANBgkqhkiG9w0BAQsFAAOCAQEAlycLsCpYoXmo VV6nq+rfyT1Ag0aCIP1wTdW/3Cya8PJO59NkZS+ViwOAzxSJ0Gvveh3EjY6oWhKw m8QQxzZc7zs4kabznL/A2MlwUfKssNiJYs/5wL4gwMtRhkjtUjBnARebw2LpKd34 Fxuq8on2hZ9q1uXg372/gsYuooXaNNPBayxAdkVVk7GafSxcVL5JpzPZvA6yW93K +EdGaJ8RA54EV90vvcrfEBDZW9XBV21R+gunQLOrxVHFfFvPl/neZyXECNoG61VK ZNchmjfaV9PAFCG81/nsJXU5+6BPTK23IpUcpCGCflv9vJQPLmIzibHJRb6siBnz 17EvTUkD3g== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:18 2026 by rpki-client