This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6T3OhQyyYnpSvfS5k0oRKIy20nc.cer File: 6T3OhQyyYnpSvfS5k0oRKIy20nc.cer (raw, json) Hash identifier: 2WXLwhQ3LNYMrDob9o/KLckeVFQ8nG0lYCyx6q3SKpI= Subject key identifier: E9:3D:CE:85:0C:B2:62:7A:52:BD:F4:B9:93:4A:11:28:8C:B6:D2:77 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B3555938C7CA1135132DB2E4FEFC146 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3a/d4f2e8-d619-4869-98e3-f5e93646698e/1/6T3OhQyyYnpSvfS5k0oRKIy20nc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3a/d4f2e8-d619-4869-98e3-f5e93646698e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:17:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43943 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:55:93:8c:7c:a1:13:51:32:db:2e:4f:ef:c1:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e93dce850cb2627a52bdf4b9934a11288cb6d277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:65:b4:fc:3a:6a:00:8b:09:81:42:4f:73:56: 60:5f:93:fe:a5:cb:ef:8b:ce:f0:37:fe:e1:52:94: 46:3d:a8:ee:bd:4a:9b:fd:56:1f:1d:28:78:0d:11: d5:5c:a9:09:53:36:ba:74:50:d6:da:35:8f:ca:d8: 88:18:b2:bd:bc:e8:ef:4a:57:5f:65:8a:03:0a:7d: 6d:cb:91:a6:fa:52:31:82:89:16:15:09:8a:4d:0a: 84:47:f3:47:70:09:81:8a:2c:5f:ec:c6:68:0c:12: 7f:30:fb:80:41:1f:5b:7e:0a:11:2c:cf:a4:8d:43: ab:2c:64:16:d9:32:2d:27:bc:49:3c:77:f6:3b:9f: 44:70:47:a5:de:a4:73:8f:1d:39:94:cc:b2:fc:82: 5b:9a:98:76:7a:0d:8f:3d:0e:df:7d:20:4c:9b:27: b9:21:f3:49:49:02:be:bd:ea:8c:a6:2b:c0:59:e4: c7:54:8b:16:ca:03:05:a4:b2:ea:ea:88:8f:0f:98: 01:4d:2e:d3:14:6e:bd:58:30:69:9c:81:33:97:22: 32:28:92:41:ff:6e:de:e4:48:e2:7a:c8:b1:7b:6b: 89:34:b8:15:b0:53:01:0e:8b:94:be:8b:24:3d:65: 1a:a7:10:8f:7d:f6:81:b2:cf:53:b2:d3:42:5d:28: b1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3D:CE:85:0C:B2:62:7A:52:BD:F4:B9:93:4A:11:28:8C:B6:D2:77 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/d4f2e8-d619-4869-98e3-f5e93646698e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/d4f2e8-d619-4869-98e3-f5e93646698e/1/6T3OhQyyYnpSvfS5k0oRKIy20nc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 43943 Signature Algorithm: sha256WithRSAEncryption a2:e7:08:76:3a:91:71:65:a8:87:3d:87:64:b0:f1:21:cd:56: e1:7a:b4:f0:a5:2b:4c:a9:f8:bf:6f:34:f7:ef:6e:bb:ff:3e: 03:31:d9:e1:6d:99:55:fa:ae:c5:ad:d9:1a:16:44:8f:fd:89: c6:2c:fc:ba:bd:3f:78:ce:e5:bb:32:c5:15:74:66:0f:c7:ad: 57:c7:9f:a6:7d:1a:27:5c:1d:bc:01:48:bf:42:5f:00:04:45: 0f:5c:74:25:ac:60:98:9e:12:90:a0:34:f5:91:3c:cc:c4:b3: 00:d8:b5:cc:88:c5:44:d6:e0:17:68:9d:8a:c1:88:a0:4c:52: f7:8c:e3:b8:6d:04:36:f5:be:e2:75:0b:b5:a9:d3:5f:71:3c: 4b:ec:3c:63:06:13:40:50:ae:bf:7e:cd:20:f0:c0:f8:a3:7d: e8:a2:ed:4a:c9:26:eb:7d:2e:af:bb:f0:a6:48:f0:10:87:61: 61:a8:8f:c1:4c:ec:44:af:ce:8a:7e:ea:f9:7d:8b:26:21:d2: 30:f9:0d:0d:a1:c0:5e:b3:7d:4f:61:1c:bf:ab:b5:38:0d:86: d1:1a:ee:93:58:db:fd:83:45:68:55:bd:2f:07:28:a6:34:6d: 10:90:02:78:8a:d1:3b:8d:53:75:e8:12:a3:01:c8:12:62:54: b3:cf:df:60 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt7NVWTjHyhE1Ey2y5P78FGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlOTNkY2U4NTBjYjI2MjdhNTJiZGY0Yjk5MzRhMTEyODhjYjZkMjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA92W0/DpqAIsJgUJPc1ZgX5P+pcvv i87wN/7hUpRGPajuvUqb/VYfHSh4DRHVXKkJUza6dFDW2jWPytiIGLK9vOjvSldf ZYoDCn1ty5Gm+lIxgokWFQmKTQqER/NHcAmBiixf7MZoDBJ/MPuAQR9bfgoRLM+k jUOrLGQW2TItJ7xJPHf2O59EcEel3qRzjx05lMyy/IJbmph2eg2PPQ7ffSBMmye5 IfNJSQK+veqMpivAWeTHVIsWygMFpLLq6oiPD5gBTS7TFG69WDBpnIEzlyIyKJJB /27e5Ejiesixe2uJNLgVsFMBDouUvoskPWUapxCPffaBss9TstNCXSixnwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFOk9zoUMsmJ6Ur30uZNKESiMttJ3MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNhL2Q0ZjJl OC1kNjE5LTQ4NjktOThlMy1mNWU5MzY0NjY5OGUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2EvZDRmMmU4 LWQ2MTktNDg2OS05OGUzLWY1ZTkzNjQ2Njk4ZS8xLzZUM09oUXl5WW5wU3ZmUzVr MG9SS0l5MjBuYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCrpzANBgkqhkiG9w0BAQsFAAOCAQEAoucIdjqRcWWo hz2HZLDxIc1W4Xq08KUrTKn4v2809+9uu/8+AzHZ4W2ZVfquxa3ZGhZEj/2Jxiz8 ur0/eM7luzLFFXRmD8etV8efpn0aJ1wdvAFIv0JfAARFD1x0JaxgmJ4SkKA09ZE8 zMSzANi1zIjFRNbgF2idisGIoExS94zjuG0ENvW+4nULtanTX3E8S+w8YwYTQFCu v37NIPDA+KN96KLtSskm630ur7vwpkjwEIdhYaiPwUzsRK/Oin7q+X2LJiHSMPkN DaHAXrN9T2Ecv6u1OA2G0Rruk1jb/YNFaFW9LwcopjRtEJACeIrRO41TdegSowHI EmJUs8/fYA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:57 2026 by rpki-client