This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6_WDiMYxyXfqUfyttQzSCnSS9ec.cer File: 6_WDiMYxyXfqUfyttQzSCnSS9ec.cer (raw, json) Hash identifier: 6ca+EhNq+IXkhEjB9yIWTGrp4emfluOmrYDw91QnCyM= Subject key identifier: EB:F5:83:88:C6:31:C9:77:EA:51:FC:AD:B5:0C:D2:0A:74:92:F5:E7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCA0FE8C3316C31E1F065FA0E00549D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/73/1c8bee-8df8-4102-a4ec-4f1ade1da20d/1/6_WDiMYxyXfqUfyttQzSCnSS9ec.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/73/1c8bee-8df8-4102-a4ec-4f1ade1da20d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 213270 IP: 37.200.86.0/24 IP: 2a02:f980::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:0f:e8:c3:31:6c:31:e1:f0:65:fa:0e:00:54:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ebf58388c631c977ea51fcadb50cd20a7492f5e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9a:5b:88:7a:27:f8:04:20:0e:80:45:ac:d2: 26:38:1f:09:3a:c5:74:f5:0d:c9:28:3f:bf:71:b3: 1e:81:e4:e2:55:e7:50:7f:44:fb:ba:9d:ad:2b:aa: 53:f0:ef:b3:37:0d:2d:59:5d:37:18:8d:6a:43:24: 3b:60:08:0a:0d:3c:6d:af:c2:68:5f:c5:bd:a4:23: d7:b4:15:17:db:41:f9:7b:82:b0:db:9f:03:36:68: 5b:1a:51:ad:95:e1:0b:af:d8:2f:48:59:3f:10:9a: 4c:13:db:2c:b6:6b:4c:65:48:a8:6c:6e:41:46:6c: 42:88:a9:20:88:e4:cf:f6:76:2f:1b:48:cd:6a:be: bb:a2:d4:cf:9b:c0:05:34:1d:54:0f:8c:b7:47:9c: cb:6f:9b:6e:58:c1:77:0d:e9:04:84:1c:01:a2:54: 9c:a2:32:88:b0:25:07:a7:3f:29:ca:af:44:ec:67: 42:90:b1:ef:32:89:6f:05:7b:76:a8:0d:a8:33:8d: 48:45:ba:79:f5:8a:65:0d:34:2a:17:ad:fd:8e:49: 84:4e:e4:24:f8:2f:0b:b9:96:8c:20:44:82:1c:83: d5:8b:82:93:31:c0:00:1d:91:aa:ad:f1:de:c1:57: 71:c6:ed:3f:39:47:ce:bd:aa:97:e7:2e:db:9e:19: e3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F5:83:88:C6:31:C9:77:EA:51:FC:AD:B5:0C:D2:0A:74:92:F5:E7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/1c8bee-8df8-4102-a4ec-4f1ade1da20d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/1c8bee-8df8-4102-a4ec-4f1ade1da20d/1/6_WDiMYxyXfqUfyttQzSCnSS9ec.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.200.86.0/24 IPv6: 2a02:f980::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 213270 Signature Algorithm: sha256WithRSAEncryption 09:b7:5f:9b:73:a9:f3:2a:a2:b5:87:27:09:80:bd:97:16:03: 9c:4a:d8:65:5c:f9:b9:e1:2f:db:51:4d:45:e2:8d:18:ea:ea: 36:96:a9:44:6b:f3:2f:db:b7:15:6f:61:75:08:15:a7:ca:81: 41:5f:f4:49:64:8c:1a:d7:29:d0:5e:32:49:a9:75:95:61:60: 5d:08:b6:8e:48:ce:3b:62:c5:b5:86:e1:44:c4:73:3d:2c:03: e3:02:c1:3f:a5:36:3c:3a:b6:53:0a:95:02:6a:4b:10:29:5e: 0b:0e:8d:99:d4:79:9d:e3:a7:9e:78:c6:e4:d8:4a:d7:95:79: 30:35:20:87:3b:f5:ba:e5:35:e1:c2:03:a4:39:c0:db:14:9f: 32:6c:bf:de:0d:ec:5e:91:dc:64:a4:26:2e:27:fa:71:75:34: b1:ec:97:55:e3:63:bf:82:6f:13:40:d2:23:2d:c7:ca:8f:41: 35:59:0e:50:68:6f:f3:c4:95:48:4f:84:e4:27:92:35:14:bf: bc:d1:14:12:43:99:01:3a:ed:df:1d:15:ea:9e:f3:46:e8:5c: f3:e5:d5:c7:2e:aa:71:0e:de:f8:e7:cd:eb:77:30:d0:14:22: e1:b8:63:56:a9:21:08:8c:68:d9:a9:ed:00:d8:e7:fe:39:e7: b8:70:b3:b4 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9yg/owzFsMeHwZfoOAFSdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYmY1ODM4OGM2MzFjOTc3ZWE1MWZjYWRiNTBjZDIwYTc0OTJmNWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZpbiHon+AQgDoBFrNImOB8JOsV0 9Q3JKD+/cbMegeTiVedQf0T7up2tK6pT8O+zNw0tWV03GI1qQyQ7YAgKDTxtr8Jo X8W9pCPXtBUX20H5e4Kw258DNmhbGlGtleELr9gvSFk/EJpME9sstmtMZUiobG5B RmxCiKkgiOTP9nYvG0jNar67otTPm8AFNB1UD4y3R5zLb5tuWMF3DekEhBwBolSc ojKIsCUHpz8pyq9E7GdCkLHvMolvBXt2qA2oM41IRbp59YplDTQqF639jkmETuQk +C8LuZaMIESCHIPVi4KTMcAAHZGqrfHewVdxxu0/OUfOvaqX5y7bnhnjdQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFOv1g4jGMcl36lH8rbUM0gp0kvXnMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzczLzFjOGJl ZS04ZGY4LTQxMDItYTRlYy00ZjFhZGUxZGEyMGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzMvMWM4YmVl LThkZjgtNDEwMi1hNGVjLTRmMWFkZTFkYTIwZC8xLzZfV0RpTVl4eVhmcVVmeXR0 UXpTQ25TUzllYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAJchWMA0EAgACMAcDBQAqAvmAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNBFjANBgkqhkiG9w0BAQsFAAOCAQEACbdfm3Op8yqi tYcnCYC9lxYDnErYZVz5ueEv21FNReKNGOrqNpapRGvzL9u3FW9hdQgVp8qBQV/0 SWSMGtcp0F4ySal1lWFgXQi2jkjOO2LFtYbhRMRzPSwD4wLBP6U2PDq2UwqVAmpL ECleCw6NmdR5neOnnnjG5NhK15V5MDUghzv1uuU14cIDpDnA2xSfMmy/3g3sXpHc ZKQmLif6cXU0seyXVeNjv4JvE0DSIy3Hyo9BNVkOUGhv88SVSE+E5CeSNRS/vNEU EkOZATrt3x0V6p7zRuhc8+XVxy6qcQ7e+OfN63cw0BQi4bhjVqkhCIxo2antANjn /jnnuHCztA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:40 2026 by rpki-client