This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3YD1VVBw1n46HRHfL6K8h9peHw.cer File: a3YD1VVBw1n46HRHfL6K8h9peHw.cer (raw, json) Hash identifier: focmLHTUYdaWKWP7GRkZd0urR4eKOHWl27VdPrHfiqA= Subject key identifier: 6B:76:03:D5:55:41:C3:59:F8:E8:74:47:7C:BE:8A:F2:1F:69:78:7C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B35EA24F75C0A97BA89E3C274F65AA4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/a3YD1VVBw1n46HRHfL6K8h9peHw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206830 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ea:24:f7:5c:0a:97:ba:89:e3:c2:74:f6:5a:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b7603d55541c359f8e874477cbe8af21f69787c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d1:1a:5b:f4:f5:ef:f2:55:72:4c:67:cc:fb: ff:d5:b8:6b:5c:27:8b:39:b0:59:c2:ef:91:b0:61: 79:39:7b:ad:f1:e1:e7:02:2c:61:01:f9:57:2b:e4: 69:58:b5:b4:94:66:7f:e1:12:67:0f:a1:d2:47:d0: bd:ad:7c:fc:7f:38:98:c7:f7:01:1c:93:07:8e:e1: 9a:05:b9:79:64:b6:42:ea:c1:6d:25:20:f1:27:b4: 6c:fe:83:95:5a:23:c9:3f:d9:78:a1:96:16:0a:f0: ac:ad:aa:ee:4e:f5:fe:6d:5f:5a:f1:17:62:eb:09: 86:47:47:3c:8d:6f:fb:1b:9a:bb:ea:b8:7d:cb:e1: 85:be:7c:76:d3:20:8e:b4:8a:f7:52:5e:8f:04:5a: 16:b9:3a:5d:27:33:42:31:90:51:d0:f6:1b:44:a9: aa:e5:8a:06:99:d8:66:23:e0:03:46:c8:39:5c:97: bf:5d:ea:67:91:05:9b:0f:72:09:f3:84:cc:54:95: 29:fa:6d:b0:bb:e7:7d:7c:7e:cc:96:e9:a2:e9:f4: 5a:87:a1:1e:3e:a7:85:cc:77:bc:05:99:db:d8:6d: fd:d6:7b:f6:85:05:4f:0f:68:42:59:ef:27:7f:4c: 1b:45:58:ad:37:db:77:77:a5:c7:fa:e7:f2:b7:ba: 56:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:76:03:D5:55:41:C3:59:F8:E8:74:47:7C:BE:8A:F2:1F:69:78:7C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/a3YD1VVBw1n46HRHfL6K8h9peHw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 206830 Signature Algorithm: sha256WithRSAEncryption 18:eb:6c:b0:a4:2a:f8:1e:a5:48:8a:1d:46:45:55:6c:da:23: 25:17:7f:d6:70:73:5a:eb:a5:b4:cb:eb:06:24:b5:d2:20:62: 80:ed:8e:40:83:15:fc:45:14:8a:3f:96:7a:42:65:15:d2:7b: b8:4c:38:46:d1:31:83:f1:97:7a:8a:52:ca:1c:47:dd:08:de: 11:b4:bc:51:7e:f5:06:c2:c5:e0:76:ed:5f:2f:b7:45:bc:ae: bf:e5:6f:05:a8:70:57:69:6d:6e:a5:ab:ab:b6:8e:96:c2:6a: d0:64:c5:8e:84:9d:92:87:8c:17:f0:68:2c:91:9d:71:df:91: 8e:e0:f0:d6:55:19:2c:2d:a0:1f:83:dd:09:a4:f5:3d:df:30: 59:e4:eb:f0:75:e0:49:81:08:3a:32:04:3b:82:90:cb:57:60: ca:c9:36:c1:79:ea:68:63:94:64:0f:26:31:7e:b5:19:59:a0: dc:e5:71:10:0d:6b:47:3d:a3:16:48:a2:eb:f2:20:02:67:ec: 76:14:2f:15:9d:82:30:49:2f:cc:69:ab:89:4b:6c:a6:11:57: 1c:eb:ac:47:16:43:26:5d:d2:c0:b0:69:1e:45:56:0b:c6:fe: 27:aa:12:25:d4:54:b4:78:c8:be:cb:d9:03:5f:8e:fd:4c:c2: a4:f2:72:3d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt7Neok91wKl7qJ48J09lqkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Yjc2MDNkNTU1NDFjMzU5ZjhlODc0NDc3Y2JlOGFmMjFmNjk3ODdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9EaW/T17/JVckxnzPv/1bhrXCeL ObBZwu+RsGF5OXut8eHnAixhAflXK+RpWLW0lGZ/4RJnD6HSR9C9rXz8fziYx/cB HJMHjuGaBbl5ZLZC6sFtJSDxJ7Rs/oOVWiPJP9l4oZYWCvCsraruTvX+bV9a8Rdi 6wmGR0c8jW/7G5q76rh9y+GFvnx20yCOtIr3Ul6PBFoWuTpdJzNCMZBR0PYbRKmq 5YoGmdhmI+ADRsg5XJe/XepnkQWbD3IJ84TMVJUp+m2wu+d9fH7Mlumi6fRah6Ee PqeFzHe8BZnb2G391nv2hQVPD2hCWe8nf0wbRVitN9t3d6XH+ufyt7pWBwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFGt2A9VVQcNZ+Oh0R3y+ivIfaXh8MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJjLzNjNTg5 Zi0yYmQyLTQ5YmQtYmQ4MS01N2U2MzIwYjExOGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmMvM2M1ODlm LTJiZDItNDliZC1iZDgxLTU3ZTYzMjBiMTE4Zi8xL2EzWUQxVlZCdzFuNDZIUkhm TDZLOGg5cGVIdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMn7jANBgkqhkiG9w0BAQsFAAOCAQEAGOtssKQq+B6l SIodRkVVbNojJRd/1nBzWuultMvrBiS10iBigO2OQIMV/EUUij+WekJlFdJ7uEw4 RtExg/GXeopSyhxH3QjeEbS8UX71BsLF4HbtXy+3Rbyuv+VvBahwV2ltbqWrq7aO lsJq0GTFjoSdkoeMF/BoLJGdcd+RjuDw1lUZLC2gH4PdCaT1Pd8wWeTr8HXgSYEI OjIEO4KQy1dgysk2wXnqaGOUZA8mMX61GVmg3OVxEA1rRz2jFkii6/IgAmfsdhQv FZ2CMEkvzGmriUtsphFXHOusRxZDJl3SwLBpHkVWC8b+J6oSJdRUtHjIvsvZA1+O /UzCpPJyPQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:14 2026 by rpki-client