This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer File: aomTYnatLRhxB9-3QAeTADrBSac.cer (raw, json) Hash identifier: R+u1pwGXxmEx/ifLxitJk/HmU610qLoCB/m2o0JiP0I= Subject key identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ECE85FD93B3804552A521BE4FBA5B6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 2001:67c:46c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:e8:5f:d9:3b:38:04:55:2a:52:1b:e4:fb:a5:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a89936276ad2d187107dfb7400793003ac149a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:12:d0:93:92:68:53:96:46:81:13:af:7e: 4c:5d:06:39:1f:50:5c:bf:55:6a:01:ea:8d:15:52: bc:c0:2c:8f:6b:ff:25:95:90:ec:b9:42:0b:bf:f2: cd:f4:f8:fa:de:cd:e1:74:a1:8b:90:af:34:f4:fd: 51:4d:ad:e5:37:f5:64:fc:98:75:e9:9f:82:9e:ba: fc:1a:14:f6:ac:42:74:de:9a:28:5e:86:d1:98:b3: 59:46:30:24:2f:9a:58:d7:d6:be:d6:cb:0e:1c:af: cc:7a:8e:be:6b:44:9a:ee:22:c8:b4:2b:00:83:12: 28:25:1f:01:b4:e7:9c:c2:b6:53:bf:7d:20:52:b2: b1:8e:20:0d:c1:20:94:d6:5e:e3:ca:fd:0f:71:7f: 34:f7:8f:ea:bd:61:31:c8:30:cf:a6:5f:28:c3:68: dd:20:11:53:54:c5:71:2d:18:97:f4:be:a3:6e:0d: 1c:61:aa:b0:a4:61:11:11:fd:2c:53:5c:fa:49:1a: 6f:92:2b:74:16:73:71:3a:d4:d2:42:65:6a:8d:7a: cc:65:45:82:15:fb:ec:80:ae:c2:78:b2:7d:99:d9: 03:f2:18:e4:f4:b1:9a:bf:b7:f4:65:ea:4e:59:70: ac:a9:78:40:14:f3:ab:3a:57:51:68:72:d5:ae:9e: fc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:46c::/48 Signature Algorithm: sha256WithRSAEncryption 1c:9d:2b:93:d3:da:b9:4f:a4:16:eb:74:e3:22:e7:48:14:91: f2:7e:8d:1e:8f:af:00:84:aa:71:df:9a:16:9b:a6:c1:b2:f2: 0c:d8:4d:a3:6a:7b:c0:cc:56:72:5a:65:3e:9a:04:c3:82:65: bb:16:43:10:b8:1a:e0:f5:f1:f3:ed:f2:fe:44:87:c6:32:79: f7:86:4b:f2:2f:99:ed:1a:d3:49:76:10:32:54:67:cf:8f:a4: 1f:4e:1f:ac:70:53:35:78:b0:0d:1d:71:83:dd:3c:8f:3f:24: 5f:cd:c4:f7:9f:c8:8b:8d:cb:bc:63:cc:ac:49:46:1b:77:11: 83:78:46:8b:f8:89:70:3a:24:ab:9e:1a:b8:96:bc:6e:02:2b: 5b:61:92:59:fb:a1:58:7c:54:39:b4:12:15:ba:2b:62:07:9f: 15:a1:d9:15:28:0b:66:fc:60:cd:27:07:5a:ac:d8:06:02:e1: c7:09:9b:52:ac:73:1a:b3:0b:51:42:2b:a0:01:f2:d5:80:94: 01:c7:08:e4:1c:4b:2b:15:48:d4:fe:12:7b:c5:cc:36:24:20: f8:c7:c3:25:b2:cc:ee:cc:3f:1b:d5:7c:c4:d0:4e:7a:9e:b4: 8d:a6:86:d4:2b:b9:04:b1:89:98:27:38:f1:d9:75:be:69:40: 0d:11:1f:61 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgISAZt57Ohf2Ts4BFUqUhvk+6W2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTg5OTM2Mjc2YWQyZDE4NzEwN2RmYjc0MDA3OTMwMDNhYzE0OWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApt8S0JOSaFOWRoETr35MXQY5H1Bc v1VqAeqNFVK8wCyPa/8llZDsuUILv/LN9Pj63s3hdKGLkK809P1RTa3lN/Vk/Jh1 6Z+Cnrr8GhT2rEJ03pooXobRmLNZRjAkL5pY19a+1ssOHK/Meo6+a0Sa7iLItCsA gxIoJR8BtOecwrZTv30gUrKxjiANwSCU1l7jyv0PcX8094/qvWExyDDPpl8ow2jd IBFTVMVxLRiX9L6jbg0cYaqwpGEREf0sU1z6SRpvkit0FnNxOtTSQmVqjXrMZUWC FfvsgK7CeLJ9mdkD8hjk9LGav7f0ZepOWXCsqXhAFPOrOldRaHLVrp78BwIDAQAB o4IChzCCAoMwHQYDVR0OBBYEFGqJk2J2rS0YcQfft0AHkwA6wUmnMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FiLzJhYjYy ZC0wNzBjLTRiMDYtYjM4YS03M2E3YTQ3MzYwMzgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWIvMmFiNjJk LTA3MGMtNGIwNi1iMzhhLTczYTdhNDczNjAzOC8xL2FvbVRZbmF0TFJoeEI5LTNR QWVUQURyQlNhYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfARsMA0GCSqGSIb3DQEBCwUAA4IBAQAc nSuT09q5T6QW63TjIudIFJHyfo0ej68AhKpx35oWm6bBsvIM2E2janvAzFZyWmU+ mgTDgmW7FkMQuBrg9fHz7fL+RIfGMnn3hkvyL5ntGtNJdhAyVGfPj6QfTh+scFM1 eLANHXGD3TyPPyRfzcT3n8iLjcu8Y8ysSUYbdxGDeEaL+IlwOiSrnhq4lrxuAitb YZJZ+6FYfFQ5tBIVuitiB58VodkVKAtm/GDNJwdarNgGAuHHCZtSrHMaswtRQiug AfLVgJQBxwjkHEsrFUjU/hJ7xcw2JCD4x8MlsszuzD8b1XzE0E56nrSNpobUK7kE sYmYJzjx2XW+aUANER9h -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:05 2026 by rpki-client