This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b_QQQx787sddbGKyx6WOTrSGyY.cer File: 6b_QQQx787sddbGKyx6WOTrSGyY.cer (raw, json) Hash identifier: ljEr5CPPRHt+kkA4j9urYrrDIAAKYbnvsYyGdkIkYiU= Subject key identifier: E9:BF:D0:41:0C:7B:F3:BB:1D:75:B1:8A:CB:1E:96:39:3A:D2:1B:26 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BB79A3133ED27A1F8AA32589F08E732D5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/6b_QQQx787sddbGKyx6WOTrSGyY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Tue 13 Jan 2026 13:44:54 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 214494 IP: 185.196.4.0/22 IP: 2a0a:62c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b7:9a:31:33:ed:27:a1:f8:aa:32:58:9f:08:e7:32:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 13 13:44:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e9bfd0410c7bf3bb1d75b18acb1e96393ad21b26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:22:b1:a5:07:7f:92:46:ff:7e:8a:7c:c9:0d: f0:ee:71:b7:ca:c6:49:65:fd:62:af:bc:f0:93:a9: 0b:43:8e:91:ff:45:83:89:92:e3:62:b2:d4:e3:d5: 27:62:e5:3d:6c:24:70:c6:25:8e:f7:78:e8:f8:fd: 61:ce:e1:d9:13:e5:5d:b5:27:97:03:9e:61:4f:a3: 0a:09:8a:e7:f0:8a:44:d4:b4:39:e6:46:df:b5:93: 39:a0:e8:7e:9a:af:e5:cb:f1:66:16:2d:a2:a5:13: 58:7b:3e:55:ae:1f:cf:04:7c:3d:75:3c:1c:50:25: 3d:c6:93:7e:5a:00:31:63:69:25:cb:74:64:06:a6: a8:c8:f6:6b:7e:56:d6:18:bf:53:7f:84:ca:c3:e1: db:e5:c5:22:e0:72:17:b4:fd:96:7a:23:e0:17:b5: 2f:e3:8f:b6:09:9c:03:dd:69:5b:84:7f:1e:27:2d: e4:d6:64:45:33:41:a4:43:7d:69:7e:04:23:18:ca: 23:05:ed:88:51:79:35:27:d6:71:a9:32:2c:4f:86: 83:54:cf:6d:3b:57:d2:30:ec:96:85:3b:e5:de:64: f7:3b:f9:fb:eb:86:73:d4:8c:78:ae:0c:21:dd:4d: 0b:70:ef:6c:42:97:2b:d1:fc:73:70:c3:88:95:cd: d6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:BF:D0:41:0C:7B:F3:BB:1D:75:B1:8A:CB:1E:96:39:3A:D2:1B:26 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/6b_QQQx787sddbGKyx6WOTrSGyY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.196.4.0/22 IPv6: 2a0a:62c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 214494 Signature Algorithm: sha256WithRSAEncryption 84:15:ec:d5:92:3c:5a:8c:51:68:d1:b8:5f:ba:ff:aa:c0:e0: 9d:ba:d1:5c:e3:2f:ad:de:cd:db:cb:84:47:13:0e:7f:8b:09: 02:21:20:56:6c:e9:8b:6b:ac:e1:cf:44:d4:a3:67:f0:1c:ed: e9:98:b4:42:b8:34:7a:28:77:eb:89:f6:fa:ba:5a:78:32:68: 00:a2:74:27:5d:4e:f0:42:fb:97:32:ef:ca:53:cf:ee:cf:76: bc:57:c7:0b:a8:3d:60:47:53:69:4a:c6:ec:69:6b:f1:b3:b7: 1d:90:c0:bf:88:3a:7c:bd:fd:4e:bd:20:ba:2a:5e:cb:eb:db: 1f:e0:fd:d6:f1:de:3e:37:43:e2:65:aa:c8:5f:31:9d:75:02: 03:ce:98:05:56:19:62:05:c7:2d:68:29:1c:87:bb:1b:ec:c1: 97:44:1d:be:7f:14:34:c0:22:9b:58:d0:a1:d5:49:6d:bc:4b: e0:0a:02:2e:d5:02:47:5a:c0:7f:0c:54:ff:c8:d8:e9:e9:c7: 1f:09:41:76:32:d3:e6:63:b4:6d:56:57:14:cd:dd:2c:10:5d: 64:d2:20:ea:f3:22:08:92:48:69:8c:28:94:e0:28:f2:f8:7d: bb:04:aa:1e:4f:c8:ab:7c:72:e7:d6:c9:4f:a4:70:77:71:79: dc:0d:6c:1b -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZu3mjEz7Seh+KoyWJ8I5zLVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTEzMTM0NDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlOWJmZDA0MTBjN2JmM2JiMWQ3NWIxOGFjYjFlOTYzOTNhZDIxYjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CKxpQd/kkb/fop8yQ3w7nG3ysZJ Zf1ir7zwk6kLQ46R/0WDiZLjYrLU49UnYuU9bCRwxiWO93jo+P1hzuHZE+VdtSeX A55hT6MKCYrn8IpE1LQ55kbftZM5oOh+mq/ly/FmFi2ipRNYez5Vrh/PBHw9dTwc UCU9xpN+WgAxY2kly3RkBqaoyPZrflbWGL9Tf4TKw+Hb5cUi4HIXtP2WeiPgF7Uv 44+2CZwD3WlbhH8eJy3k1mRFM0GkQ31pfgQjGMojBe2IUXk1J9ZxqTIsT4aDVM9t O1fSMOyWhTvl3mT3O/n764Zz1Ix4rgwh3U0LcO9sQpcr0fxzcMOIlc3WJQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFOm/0EEMe/O7HXWxisseljk60hsmMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBmLzhkOTM5 Zi05ZWY5LTQwNzYtYThmMy03YTcwYjc4N2QyZWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGYvOGQ5Mzlm LTllZjktNDA3Ni1hOGYzLTdhNzBiNzg3ZDJlZi8xLzZiX1FRUXg3ODdzZGRiR0t5 eDZXT1RyU0d5WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCucQEMA0EAgACMAcDBQAqCmLAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNF3jANBgkqhkiG9w0BAQsFAAOCAQEAhBXs1ZI8WoxR aNG4X7r/qsDgnbrRXOMvrd7N28uERxMOf4sJAiEgVmzpi2us4c9E1KNn8Bzt6Zi0 Qrg0eih364n2+rpaeDJoAKJ0J11O8EL7lzLvylPP7s92vFfHC6g9YEdTaUrG7Glr 8bO3HZDAv4g6fL39Tr0guipey+vbH+D91vHePjdD4mWqyF8xnXUCA86YBVYZYgXH LWgpHIe7G+zBl0Qdvn8UNMAim1jQodVJbbxL4AoCLtUCR1rAfwxU/8jY6enHHwlB djLT5mO0bVZXFM3dLBBdZNIg6vMiCJJIaYwolOAo8vh9uwSqHk/Iq3xy59bJT6Rw d3F53A1sGw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:46 2026 by rpki-client