This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/A6bcLyZo69z4a2wCWKgYfl984nA.cer File: A6bcLyZo69z4a2wCWKgYfl984nA.cer (raw, json) Hash identifier: Y4KNk0i/kSHKXM18ZOKqOoL/YzsNkuj71IXxJFXCJQ4= Subject key identifier: 03:A6:DC:2F:26:68:EB:DC:F8:6B:6C:02:58:A8:18:7E:5F:7C:E2:70 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA53475F3E9AAFD45A646E8DD7752EB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/28b303-47a5-4a92-b02e-ebd0c3ee44ae/1/A6bcLyZo69z4a2wCWKgYfl984nA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/28b303-47a5-4a92-b02e-ebd0c3ee44ae/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:43 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 20799 IP: 77.241.176.0/20 IP: 80.68.32.0/19 IP: 185.115.68.0/22 IP: 2a02:df8::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:34:75:f3:e9:aa:fd:45:a6:46:e8:dd:77:52:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03a6dc2f2668ebdcf86b6c0258a8187e5f7ce270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:fd:61:0e:54:9a:9b:fe:af:7c:57:37:d4:8a: b1:00:4a:60:c0:ef:f4:56:29:4e:2a:81:3c:1f:bd: b6:c3:7f:2f:bc:19:3b:f6:62:bb:b6:8c:1a:62:ff: e1:07:85:ec:b2:73:4b:6b:60:8f:9e:a4:0f:49:29: 3b:62:3a:31:62:22:fc:4c:fb:56:6d:04:68:20:d6: ca:a8:28:24:79:5d:9c:3d:26:cc:b9:53:0e:73:45: fb:17:a5:4c:d7:f5:43:cb:29:71:03:79:e7:f0:17: fd:6c:5d:4e:e8:ba:02:3a:60:50:dc:21:5f:22:a9: 84:f4:e1:9b:62:88:a5:98:11:32:0b:87:16:b7:7f: 95:47:67:5a:c5:f0:e6:7e:50:e2:fa:3f:ee:3c:05: 30:31:5f:83:ca:89:a9:a5:15:0e:c6:f2:bf:98:cd: 6c:1f:d6:f9:22:6f:51:d2:36:1f:24:d4:2a:75:92: 99:84:c0:bf:ab:7d:69:e9:f4:dc:8a:4e:57:7a:f4: 37:e3:ad:17:65:80:f5:ce:ed:03:1c:8b:5d:c0:a5: 21:b7:cf:80:56:a7:6e:4d:58:3a:f8:de:40:f1:d0: b0:56:f0:2d:3e:f3:54:e0:b0:14:2a:e9:70:ab:1a: ed:ea:8c:0e:77:64:bf:7e:e2:d9:26:67:22:44:71: fc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:A6:DC:2F:26:68:EB:DC:F8:6B:6C:02:58:A8:18:7E:5F:7C:E2:70 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/28b303-47a5-4a92-b02e-ebd0c3ee44ae/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/28b303-47a5-4a92-b02e-ebd0c3ee44ae/1/A6bcLyZo69z4a2wCWKgYfl984nA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.241.176.0/20 80.68.32.0/19 185.115.68.0/22 IPv6: 2a02:df8::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 20799 Signature Algorithm: sha256WithRSAEncryption 00:51:ee:ca:48:94:3e:5e:5d:73:97:36:57:3f:73:3a:cd:1b: 6a:30:21:c4:af:f8:e0:f9:a8:b5:42:b6:24:b3:79:c7:cc:8d: 9c:ec:dd:fc:b5:50:ad:5d:ca:4d:44:c7:ed:bc:bb:f7:89:c1: fd:24:e0:e0:3e:85:ed:24:22:e2:af:83:bb:18:94:e4:8d:a3: 19:80:ea:fc:eb:af:a8:a1:20:09:33:38:c8:4e:fc:67:71:1c: 86:43:16:fd:f0:10:40:57:85:33:c8:f6:1f:75:41:c7:89:b0: 09:f6:6f:e8:9e:8b:d2:e6:2a:a4:80:db:5e:44:47:c2:4f:0a: f7:4f:a0:a8:df:a4:69:c8:d3:50:d9:8a:34:fd:0f:35:1f:12: e7:72:c5:30:c6:f9:1a:bc:cf:c2:77:71:78:ab:a8:50:f4:38: 86:c2:0a:13:7f:fa:86:59:7f:b0:e3:d9:44:2a:dd:6d:2e:d2: d1:e2:de:90:76:dc:4b:20:d2:24:81:1a:a8:73:2b:92:39:31: 24:82:69:72:dd:cf:26:40:1b:07:10:83:cf:80:0a:31:b4:3d: 3c:c7:68:44:d3:e8:90:65:e9:bf:61:5f:8a:9f:33:b6:a6:4c: 52:9b:f8:19:24:0d:14:80:28:f8:6b:fe:fe:14:23:a5:e5:56: b6:e0:00:58 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt7pTR18+mq/UWmRujdd1LrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwM2E2ZGMyZjI2NjhlYmRjZjg2YjZjMDI1OGE4MTg3ZTVmN2NlMjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkv1hDlSam/6vfFc31IqxAEpgwO/0 VilOKoE8H722w38vvBk79mK7towaYv/hB4XssnNLa2CPnqQPSSk7YjoxYiL8TPtW bQRoINbKqCgkeV2cPSbMuVMOc0X7F6VM1/VDyylxA3nn8Bf9bF1O6LoCOmBQ3CFf IqmE9OGbYoilmBEyC4cWt3+VR2daxfDmflDi+j/uPAUwMV+DyomppRUOxvK/mM1s H9b5Im9R0jYfJNQqdZKZhMC/q31p6fTcik5XevQ3460XZYD1zu0DHItdwKUht8+A VqduTVg6+N5A8dCwVvAtPvNU4LAUKulwqxrt6owOd2S/fuLZJmciRHH8DwIDAQAB o4ICujCCArYwHQYDVR0OBBYEFAOm3C8maOvc+GtsAlioGH5ffOJwMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ2LzI4YjMw My00N2E1LTRhOTItYjAyZS1lYmQwYzNlZTQ0YWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYvMjhiMzAz LTQ3YTUtNGE5Mi1iMDJlLWViZDBjM2VlNDRhZS8xL0E2YmNMeVpvNjl6NGEyd0NX S2dZZmw5ODRuQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQETfGwAwQFUEQgAwQCuXNEMA0EAgACMAcDBQMq Ag34MBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAlE/MA0GCSqGSIb3DQEBCwUAA4IB AQAAUe7KSJQ+Xl1zlzZXP3M6zRtqMCHEr/jg+ai1QrYks3nHzI2c7N38tVCtXcpN RMftvLv3icH9JODgPoXtJCLir4O7GJTkjaMZgOr866+ooSAJMzjITvxncRyGQxb9 8BBAV4UzyPYfdUHHibAJ9m/onovS5iqkgNteREfCTwr3T6Co36RpyNNQ2Yo0/Q81 HxLncsUwxvkavM/Cd3F4q6hQ9DiGwgoTf/qGWX+w49lEKt1tLtLR4t6QdtxLINIk gRqocyuSOTEkgmly3c8mQBsHEIPPgAoxtD08x2hE0+iQZem/YV+KnzO2pkxSm/gZ JA0UgCj4a/7+FCOl5Va24ABY -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:46 2026 by rpki-client