This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6lPzPM38X-hLhMFfBDIpBpka-ec.cer File: 6lPzPM38X-hLhMFfBDIpBpka-ec.cer (raw, json) Hash identifier: KkMPzbO0lD5e5GL6e1wajLTmEpG4O83ckM0IVBAb11c= Subject key identifier: EA:53:F3:3C:CD:FC:5F:E8:4B:84:C1:5F:04:32:29:06:99:1A:F9:E7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E4DBD863DB4DE85FE70188EAF29B3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/6lPzPM38X-hLhMFfBDIpBpka-ec.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:17:59 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205581 IP: 185.213.36.0/22 IP: 2a0b:8240::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:4d:bd:86:3d:b4:de:85:fe:70:18:8e:af:29:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ea53f33ccdfc5fe84b84c15f04322906991af9e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:10:7f:e7:7d:3b:95:5d:54:ba:d7:72:43:74: 0a:7d:99:3e:6b:2f:24:64:3b:65:7c:cf:07:95:c9: df:4a:1e:8b:5f:b9:86:20:f7:3d:06:ac:85:75:6a: de:a2:13:cf:20:3d:c4:2a:05:9a:0e:6c:e7:88:fb: 7c:aa:8b:fa:cc:ec:ec:7b:5b:e0:c3:5a:37:f9:df: 61:5e:3b:b6:50:5d:68:4b:b9:18:21:0d:14:64:c9: f3:ee:f1:f8:82:23:5f:78:f7:af:7e:89:0c:09:81: 62:1f:3d:29:09:da:f1:e1:67:09:d0:0e:8e:e3:22: 0e:6f:81:54:e7:9d:07:55:cf:05:af:bd:78:d5:94: 83:ef:16:d1:e9:8c:a7:8c:71:e0:b5:5c:dd:8d:9f: 6f:ad:be:9e:60:92:ff:10:61:be:12:e4:79:6a:2a: b6:f4:5d:58:cd:78:66:9e:a4:e6:2a:c7:6d:50:58: f7:04:21:c8:ed:cc:62:11:c3:e9:b1:d9:89:6b:85: 20:fd:78:73:4c:ff:a7:77:6a:37:34:8b:ca:b8:0f: fa:85:bc:c5:27:6f:50:37:aa:81:df:bd:7d:41:61: 00:d6:53:fa:0e:14:c2:69:4f:8c:ee:9e:3b:e8:5c: 5f:79:c4:b2:ea:88:8f:dc:39:2b:9a:c0:02:85:19: 58:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:53:F3:3C:CD:FC:5F:E8:4B:84:C1:5F:04:32:29:06:99:1A:F9:E7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/6lPzPM38X-hLhMFfBDIpBpka-ec.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.213.36.0/22 IPv6: 2a0b:8240::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205581 Signature Algorithm: sha256WithRSAEncryption 92:e1:b1:52:3d:b8:a5:82:b8:e3:5b:49:6e:df:05:bc:3d:c8: fa:f0:07:36:0d:c6:d8:e5:09:db:b9:3c:78:25:bf:64:85:cf: 7f:6e:0b:04:b5:5a:6f:dc:6c:c3:53:76:d3:e8:b7:e3:69:2e: 21:76:2e:4d:10:00:da:7d:86:46:45:6a:ba:ed:32:8e:a5:00: 92:8b:65:87:5d:3a:0c:81:d1:e3:45:85:a6:2a:c8:1a:4c:c9: f9:83:55:21:91:3e:e3:d4:2e:57:6e:53:1d:af:5b:96:fa:37: 95:27:29:17:ff:2d:c6:14:c9:c1:ef:0c:1d:70:0b:bc:b7:52: ce:97:b9:1a:6d:9c:b1:3e:40:9b:90:a7:99:4b:89:73:53:5f: 47:c9:bc:30:0d:e8:a3:da:73:9a:33:d6:52:6b:93:3e:d9:2c: 20:ad:54:99:d5:e1:18:a0:d6:a5:ab:dc:45:a2:d8:ed:9e:ce: 84:e8:7d:96:ac:51:cb:c6:f2:ba:c8:e6:dd:dd:5b:59:fb:aa: 6e:9b:65:28:55:ba:c3:e9:fe:9d:85:11:4f:fe:ab:88:ea:08: 94:f7:02:27:40:a3:28:af:93:95:88:d6:f9:bb:ea:7b:2e:0d: 4d:1e:4c:dc:82:55:01:7c:23:f9:da:c3:6e:d2:98:d8:45:c0: 97:17:16:0e -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5fk29hj203oX+cBiOrymzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYTUzZjMzY2NkZmM1ZmU4NGI4NGMxNWYwNDMyMjkwNjk5MWFmOWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhB/5307lV1UutdyQ3QKfZk+ay8k ZDtlfM8HlcnfSh6LX7mGIPc9BqyFdWreohPPID3EKgWaDmzniPt8qov6zOzse1vg w1o3+d9hXju2UF1oS7kYIQ0UZMnz7vH4giNfePevfokMCYFiHz0pCdrx4WcJ0A6O 4yIOb4FU550HVc8Fr7141ZSD7xbR6YynjHHgtVzdjZ9vrb6eYJL/EGG+EuR5aiq2 9F1YzXhmnqTmKsdtUFj3BCHI7cxiEcPpsdmJa4Ug/XhzTP+nd2o3NIvKuA/6hbzF J29QN6qB3719QWEA1lP6DhTCaU+M7p476FxfecSy6oiP3DkrmsAChRlYBQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFOpT8zzN/F/oS4TBXwQyKQaZGvnnMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhiL2Y5NTI5 OC1mOTA5LTQ1YzktOTEwNC04YTRmNjNlYTliZjEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGIvZjk1Mjk4 LWY5MDktNDVjOS05MTA0LThhNGY2M2VhOWJmMS8xLzZsUHpQTTM4WC1oTGhNRmZC RElwQnBrYS1lYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCudUkMA0EAgACMAcDBQMqC4JAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMjDTANBgkqhkiG9w0BAQsFAAOCAQEAkuGxUj24pYK4 41tJbt8FvD3I+vAHNg3G2OUJ27k8eCW/ZIXPf24LBLVab9xsw1N20+i342kuIXYu TRAA2n2GRkVquu0yjqUAkotlh106DIHR40WFpirIGkzJ+YNVIZE+49QuV25THa9b lvo3lScpF/8txhTJwe8MHXALvLdSzpe5Gm2csT5Am5CnmUuJc1NfR8m8MA3oo9pz mjPWUmuTPtksIK1UmdXhGKDWpavcRaLY7Z7OhOh9lqxRy8byusjm3d1bWfuqbptl KFW6w+n+nYURT/6riOoIlPcCJ0CjKK+TlYjW+bvqey4NTR5M3IJVAXwj+drDbtKY 2EXAlxcWDg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:19 2026 by rpki-client