This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer File: W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer (raw, json) Hash identifier: KJTXiUnsKH/aSrCCeP4m75Ce76y3Y+6DoP6kuxRIHxU= Subject key identifier: 5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910A3056C2F8CB8F6C5224CCE59C312 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43926 IP: 46.253.40.0/21 IP: 185.182.152.0/22 IP: 2a0a:f180::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:a3:05:6c:2f:8c:b8:f6:c5:22:4c:ce:59:c3:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5baa35401e5297b3b527e84f93ea8aa110d97b95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:44:b6:0c:75:75:e4:05:6d:6f:96:d3:0a:0c: 80:26:16:76:fa:52:d1:15:3a:b5:94:2c:8f:41:c5: 55:17:51:32:e2:25:5f:3b:32:9e:30:97:f0:9f:86: b3:d9:31:a1:24:8a:6b:ee:44:f8:0e:ae:c4:16:42: 0c:28:d5:f8:ab:d8:e5:00:61:86:4d:29:9c:6b:b3: d2:0e:3c:d3:d7:6b:01:95:2c:13:dd:db:37:bb:f4: d7:b0:8d:23:b7:13:ca:09:ad:dd:af:32:35:7a:7a: 1b:86:8f:5b:52:72:b5:28:c4:6d:cc:f2:4f:8b:83: d0:34:28:c2:25:07:a1:63:de:70:db:83:15:b2:8c: 82:91:51:8d:31:04:6c:fe:77:47:a9:08:8b:7a:90: d9:87:a7:97:55:f6:84:c8:53:cd:de:1f:ac:60:0a: 54:01:8c:b9:44:bf:86:87:b7:dd:dc:da:15:05:bf: 59:22:f9:ec:64:5e:7c:b9:aa:67:a3:90:2d:24:29: 31:c1:e2:c0:aa:95:e9:7a:df:4c:e8:f7:cf:fa:7a: 93:1c:39:66:3a:cb:27:c7:af:f4:c8:31:db:74:26: c1:e7:7b:5b:81:b3:d8:35:5b:ce:de:3b:08:45:ba: 15:72:c0:92:9c:61:7c:8b:f8:1c:86:58:10:54:16: b9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.253.40.0/21 185.182.152.0/22 IPv6: 2a0a:f180::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43926 Signature Algorithm: sha256WithRSAEncryption 7a:19:b2:16:1d:d3:2d:f1:38:75:98:4e:0c:3b:0b:63:a8:79: f0:ae:7f:99:97:d5:d6:36:0a:97:27:7a:6b:9c:7e:4c:17:f7: d1:dc:d8:90:a2:80:91:7d:31:98:0e:e0:98:4d:59:28:54:fd: d6:a2:65:69:7e:5b:85:09:1d:76:0a:27:1c:ba:4d:ea:f5:ac: 28:c1:07:b7:1d:94:8f:60:27:60:15:2b:18:a7:0c:47:4a:43: a5:8a:e3:e1:67:35:3c:4b:4d:cc:13:09:70:3f:6c:b8:e1:88: 4d:f6:94:87:42:8a:38:c8:cf:cb:1c:94:1e:59:ff:be:34:b7: bf:9a:04:2c:8b:9c:b8:8e:f1:dc:94:8d:80:b0:12:1c:0d:89: 3e:d1:e8:a4:a0:56:67:96:1a:a3:92:76:af:eb:60:01:b9:f6: c3:fa:2b:31:e2:e8:b7:ba:9c:ec:e3:c2:b3:61:98:c3:31:31: 81:a3:45:b1:cb:3f:9c:e6:b5:4b:b4:70:d6:4d:80:96:7f:e6: cd:51:e6:a2:11:7b:39:7a:76:6b:33:34:d3:30:0c:6e:58:6a: 24:52:78:81:ca:ac:c3:67:cf:4b:f9:43:96:a0:5a:66:a6:c4: b7:00:7d:50:bd:1c:ee:b7:4d:c9:d2:9d:5a:b6:a4:d8:23:c6: 52:fa:c9:d5 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt5EKMFbC+MuPbFIkzOWcMSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YmFhMzU0MDFlNTI5N2IzYjUyN2U4NGY5M2VhOGFhMTEwZDk3Yjk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzES2DHV15AVtb5bTCgyAJhZ2+lLR FTq1lCyPQcVVF1Ey4iVfOzKeMJfwn4az2TGhJIpr7kT4Dq7EFkIMKNX4q9jlAGGG TSmca7PSDjzT12sBlSwT3ds3u/TXsI0jtxPKCa3drzI1enobho9bUnK1KMRtzPJP i4PQNCjCJQehY95w24MVsoyCkVGNMQRs/ndHqQiLepDZh6eXVfaEyFPN3h+sYApU AYy5RL+Gh7fd3NoVBb9ZIvnsZF58uapno5AtJCkxweLAqpXpet9M6PfP+nqTHDlm Ossnx6/0yDHbdCbB53tbgbPYNVvO3jsIRboVcsCSnGF8i/gchlgQVBa5qwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFFuqNUAeUpeztSfoT5PqiqEQ2XuVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc2L2ExZGNm Yi04MDEwLTQxNGUtOWUzYS00NDAwMTcwMGI4Y2EvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzYvYTFkY2Zi LTgwMTAtNDE0ZS05ZTNhLTQ0MDAxNzAwYjhjYS8xL1c2bzFRQjVTbDdPMUotaFBr LXFLb1JEWmU1VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDLv0oAwQCubaYMA0EAgACMAcDBQMqCvGAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwCrljANBgkqhkiG9w0BAQsFAAOCAQEAehmy Fh3TLfE4dZhODDsLY6h58K5/mZfV1jYKlyd6a5x+TBf30dzYkKKAkX0xmA7gmE1Z KFT91qJlaX5bhQkddgonHLpN6vWsKMEHtx2Uj2AnYBUrGKcMR0pDpYrj4Wc1PEtN zBMJcD9suOGITfaUh0KKOMjPyxyUHln/vjS3v5oELIucuI7x3JSNgLASHA2JPtHo pKBWZ5Yao5J2r+tgAbn2w/orMeLot7qc7OPCs2GYwzExgaNFscs/nOa1S7Rw1k2A ln/mzVHmohF7OXp2azM00zAMblhqJFJ4gcqsw2fPS/lDlqBaZqbEtwB9UL0c7rdN ydKdWrak2CPGUvrJ1Q== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:44 2026 by rpki-client