This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6suWQTrI8sFrlHlWiRdNenIgHvU.cer File: 6suWQTrI8sFrlHlWiRdNenIgHvU.cer (raw, json) Hash identifier: bhtXm1wDtMVZtxxbYPL63XaXLp8HET8GXn9S6l3eyfc= Subject key identifier: EA:CB:96:41:3A:C8:F2:C1:6B:94:79:56:89:17:4D:7A:72:20:1E:F5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA4D51FA4EA3E8E384488D802776A02 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/83/d41df7-941d-47ae-b15c-37fe6b65f68f/1/6suWQTrI8sFrlHlWiRdNenIgHvU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/83/d41df7-941d-47ae-b15c-37fe6b65f68f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:18 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 20634 IP: 80.66.224.0/20 IP: 80.72.48.0/20 IP: 80.248.192.0/20 IP: 89.248.144.0/20 IP: 185.112.48.0/22 IP: 217.173.224.0/20 IP: 2a00:ec0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:d5:1f:a4:ea:3e:8e:38:44:88:d8:02:77:6a:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eacb96413ac8f2c16b94795689174d7a72201ef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:af:84:91:6b:35:39:e2:71:29:e1:1c:8c:d9: 51:cb:09:c9:9f:3c:bc:5c:c3:8c:cc:b6:7b:2b:41: be:fc:70:30:d0:9f:2c:99:01:0b:b3:4d:4c:2b:10: 67:60:93:ae:03:6d:da:9f:29:f1:aa:a9:e4:ad:62: 35:b5:13:73:e3:2b:b9:23:a4:ff:5e:96:c7:68:8d: 0a:ef:4f:12:aa:8a:46:2b:69:31:55:1e:e7:6c:89: f3:88:59:33:b9:fe:72:f9:54:c6:47:08:e2:8e:4a: ee:6a:b7:dd:d0:31:ac:e4:f4:93:87:99:c8:ef:66: 36:99:6d:8f:72:f6:8b:51:39:e1:e9:c5:b1:7d:cf: 2b:5f:b2:4a:e2:1b:9d:3f:19:a8:e9:13:18:0a:65: ad:c3:e9:31:0b:57:e9:8d:13:ad:2f:bb:9c:3b:22: c9:16:9d:79:00:25:79:9c:be:09:70:92:9d:93:84: da:b4:c3:0d:d9:18:02:44:bf:ab:a5:93:1e:e3:93: 27:6c:16:ad:cd:f0:a2:02:53:cb:1e:4c:b1:b2:94: bc:93:2b:5a:8c:ab:be:a8:8a:d6:09:6e:98:c2:8a: 17:42:ee:ec:3a:3c:2f:e8:e1:60:d4:43:27:70:0c: ce:c7:8f:e4:6a:36:00:cc:3c:89:81:f0:4f:f4:c1: cf:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:CB:96:41:3A:C8:F2:C1:6B:94:79:56:89:17:4D:7A:72:20:1E:F5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d41df7-941d-47ae-b15c-37fe6b65f68f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d41df7-941d-47ae-b15c-37fe6b65f68f/1/6suWQTrI8sFrlHlWiRdNenIgHvU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.66.224.0/20 80.72.48.0/20 80.248.192.0/20 89.248.144.0/20 185.112.48.0/22 217.173.224.0/20 IPv6: 2a00:ec0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 20634 Signature Algorithm: sha256WithRSAEncryption a8:91:f3:d8:1e:4a:4b:f2:2c:9a:8c:20:be:49:51:26:35:be: 4c:f6:26:26:9c:29:f3:aa:48:01:7b:b5:0f:81:45:64:de:10: 53:9f:45:40:07:c3:1d:0d:13:c3:7b:9e:e7:a4:82:bf:0a:a7: 4f:83:f3:dc:00:34:b3:41:8f:ae:67:27:89:87:df:85:c2:1a: a6:90:d7:eb:0e:6e:54:21:a3:96:c0:25:86:9b:ae:53:dc:17: 85:61:d1:b8:9a:e3:f0:b0:ab:d1:35:da:1d:80:fb:5c:a9:e7: 85:d0:2a:81:28:e4:1a:d7:fc:b0:f8:83:e0:51:e6:07:3d:b5: 6c:eb:3c:85:27:f5:fd:1a:06:ae:2e:c3:0d:f6:fa:3a:d4:d3: ce:58:c6:c9:03:2c:73:dd:89:e9:07:8e:79:84:82:32:29:9a: 18:03:f9:0e:20:13:ce:8f:dc:a5:00:31:12:c6:96:f2:c1:3e: 5c:85:ec:6a:85:ee:0a:84:75:51:c9:42:0f:ea:90:14:c9:2a: a5:02:cc:54:af:89:a7:fe:3d:8e:ba:2c:4a:84:0e:44:e1:a8: 24:ad:4b:6e:60:bb:35:49:c6:e5:1d:96:8b:21:12:87:33:df: ed:8c:00:b8:79:9f:fc:b0:f4:1a:70:f7:d4:de:b1:90:61:bb: 86:34:cd:30 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgISAZt7pNUfpOo+jjhEiNgCd2oCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYWNiOTY0MTNhYzhmMmMxNmI5NDc5NTY4OTE3NGQ3YTcyMjAxZWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxa+EkWs1OeJxKeEcjNlRywnJnzy8 XMOMzLZ7K0G+/HAw0J8smQELs01MKxBnYJOuA23anynxqqnkrWI1tRNz4yu5I6T/ XpbHaI0K708SqopGK2kxVR7nbInziFkzuf5y+VTGRwjijkruarfd0DGs5PSTh5nI 72Y2mW2PcvaLUTnh6cWxfc8rX7JK4hudPxmo6RMYCmWtw+kxC1fpjROtL7ucOyLJ Fp15ACV5nL4JcJKdk4TatMMN2RgCRL+rpZMe45MnbBatzfCiAlPLHkyxspS8kyta jKu+qIrWCW6YwooXQu7sOjwv6OFg1EMncAzOx4/kajYAzDyJgfBP9MHPzQIDAQAB o4ICzDCCAsgwHQYDVR0OBBYEFOrLlkE6yPLBa5R5VokXTXpyIB71MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgzL2Q0MWRm Ny05NDFkLTQ3YWUtYjE1Yy0zN2ZlNmI2NWY2OGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMvZDQxZGY3 LTk0MWQtNDdhZS1iMTVjLTM3ZmU2YjY1ZjY4Zi8xLzZzdVdRVHJJOHNGcmxIbFdp UmROZW5JZ0h2VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEwGCCsGAQUF BwEHAQH/BD0wOzAqBAIAATAkAwQEUELgAwQEUEgwAwQEUPjAAwQEWfiQAwQCuXAw AwQE2a3gMA0EAgACMAcDBQAqAA7AMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAlCa MA0GCSqGSIb3DQEBCwUAA4IBAQCokfPYHkpL8iyajCC+SVEmNb5M9iYmnCnzqkgB e7UPgUVk3hBTn0VAB8MdDRPDe57npIK/CqdPg/PcADSzQY+uZyeJh9+FwhqmkNfr Dm5UIaOWwCWGm65T3BeFYdG4muPwsKvRNdodgPtcqeeF0CqBKOQa1/yw+IPgUeYH PbVs6zyFJ/X9GgauLsMN9vo61NPOWMbJAyxz3YnpB455hIIyKZoYA/kOIBPOj9yl ADESxpbywT5chexqhe4KhHVRyUIP6pAUySqlAsxUr4mn/j2OuixKhA5E4agkrUtu YLs1ScblHZaLIRKHM9/tjAC4eZ/8sPQacPfU3rGQYbuGNM0w -----END CERTIFICATE-----Generated at Mon Feb 9 19:46:32 2026 by rpki-client