This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer File: aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer (raw, json) Hash identifier: gj5CnwDq5DR0AA0qgdYWnLv3vYr8O/gB1GVVyBL4EFQ= Subject key identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7FF2044ECD85C0C4CBA5CBCE319C3DBF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 18:22:05 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202525 AS: 215913 IP: 46.29.36.0/24 IP: 2a13:d040::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:04:4e:cd:85:c0:c4:cb:a5:cb:ce:31:9c:3d:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 18:22:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6aa8fa75c5020cd6218cf7f109de420265204bac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b0:ba:9e:40:86:ff:ce:e5:b1:3c:ac:87:2e: e2:e6:cf:04:7e:d2:0c:10:26:c6:c4:a8:49:49:c0: 16:19:1d:c2:ad:fb:c1:28:9b:c9:83:78:a9:cb:87: 91:85:c8:d7:a3:d9:b7:a8:13:ce:7e:48:1a:f6:99: e0:d9:8c:6d:1c:95:40:0a:e4:e8:fb:ae:62:76:57: 6f:05:e9:bf:93:75:32:e9:8c:2b:43:1f:f8:fa:64: 22:e1:d7:0c:6a:c5:5f:2d:49:53:6b:c0:f2:0c:a9: 30:fe:a0:b3:a9:46:67:92:f6:1f:1e:61:83:e9:48: 37:93:d7:b5:bb:2a:c2:1a:98:de:54:28:a2:0c:f0: c4:68:c2:b6:73:d1:5e:c1:0b:c1:0d:41:09:a9:f7: 1e:73:8d:71:9a:ab:ba:70:cb:a7:65:e8:a9:a4:c1: f9:e3:70:b7:b0:77:e9:e9:4a:81:09:51:c1:af:5d: f3:65:09:1c:34:d1:02:07:b2:03:6b:8d:c9:c9:79: b5:9f:c0:9b:d8:ad:ff:8d:19:0e:62:cd:64:50:19: 9b:3b:93:ad:f4:09:f6:57:3f:39:eb:58:a1:5b:43: f4:7c:b2:a4:25:cc:8d:d2:d9:6b:7b:48:c8:d6:01: 0d:4b:e3:8c:87:ee:b7:41:b9:e9:ad:6a:d1:85:fd: e7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.29.36.0/24 IPv6: 2a13:d040::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202525 215913 Signature Algorithm: sha256WithRSAEncryption 1c:5e:13:4c:c7:6c:d6:1e:63:ad:f0:3b:5e:1f:c5:5d:fe:65: a5:ae:80:d0:c0:e2:7c:1a:43:e0:d8:27:7b:fe:76:81:27:92: 24:b8:8c:1c:45:26:4d:2d:7e:fe:97:2b:75:0d:eb:11:ff:b3: d8:22:53:b5:c8:be:2c:0f:f5:ec:bb:8b:b7:da:78:4f:4e:d9: ef:c6:b8:d9:0c:41:0e:18:30:5b:ba:b8:53:11:c4:90:2d:17: 93:aa:a7:c8:f0:8b:ca:65:5e:d5:dd:77:47:c1:ea:03:94:43: 56:c8:d4:d6:c3:dd:fa:98:7f:a5:cd:84:f2:08:6c:82:3d:aa: e3:32:5c:ae:1b:85:9c:19:f1:72:1b:18:7c:db:1f:c1:3b:ea: 95:cd:22:25:c7:b0:8e:6e:84:18:7c:25:af:c8:e0:67:bc:c3: 44:a2:18:8b:18:15:db:d0:de:30:6f:2d:4b:e4:9e:c6:37:a2: 58:15:13:12:a9:a5:2f:86:45:56:e6:a8:8f:8e:48:30:7a:40: a5:b0:5f:a4:d9:ef:ed:ee:ef:d6:64:08:4d:fc:22:83:2e:ec: 0b:f3:4c:15:08:37:bc:c7:52:57:78:ae:55:df:c3:02:c5:0c: 70:69:4c:70:57:2b:c1:be:ee:ff:2d:ce:25:09:f4:84:b8:23: 1e:67:7c:d5 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt/8gROzYXAxMuly84xnD2/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTgyMjA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YWE4ZmE3NWM1MDIwY2Q2MjE4Y2Y3ZjEwOWRlNDIwMjY1MjA0YmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7C6nkCG/87lsTyshy7i5s8EftIM ECbGxKhJScAWGR3CrfvBKJvJg3ipy4eRhcjXo9m3qBPOfkga9png2YxtHJVACuTo +65idldvBem/k3Uy6YwrQx/4+mQi4dcMasVfLUlTa8DyDKkw/qCzqUZnkvYfHmGD 6Ug3k9e1uyrCGpjeVCiiDPDEaMK2c9FewQvBDUEJqfcec41xmqu6cMunZeippMH5 43C3sHfp6UqBCVHBr13zZQkcNNECB7IDa43JyXm1n8Cb2K3/jRkOYs1kUBmbO5Ot 9An2Vz8561ihW0P0fLKkJcyN0tlre0jI1gENS+OMh+63QbnprWrRhf3nkQIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFGqo+nXFAgzWIYz38QneQgJlIEusMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBjLzcwMTJk OC1hZmExLTQxOWItOGI2MC0zNWM2M2ZhNzY1YTIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMvNzAxMmQ4 LWFmYTEtNDE5Yi04YjYwLTM1YzYzZmE3NjVhMi8xL2FxajZkY1VDRE5ZaGpQZnhD ZDVDQW1VZ1M2dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQALh0kMA0EAgACMAcDBQMqE9BAMB8GCCsGAQUF BwEIAQH/BBAwDqAMMAoCAwMXHQIDA0tpMA0GCSqGSIb3DQEBCwUAA4IBAQAcXhNM x2zWHmOt8DteH8Vd/mWlroDQwOJ8GkPg2Cd7/naBJ5IkuIwcRSZNLX7+lyt1DesR /7PYIlO1yL4sD/Xsu4u32nhPTtnvxrjZDEEOGDBburhTEcSQLReTqqfI8IvKZV7V 3XdHweoDlENWyNTWw936mH+lzYTyCGyCParjMlyuG4WcGfFyGxh82x/BO+qVzSIl x7COboQYfCWvyOBnvMNEohiLGBXb0N4wby1L5J7GN6JYFRMSqaUvhkVW5qiPjkgw ekClsF+k2e/t7u/WZAhN/CKDLuwL80wVCDe8x1JXeK5V38MCxQxwaUxwVyvBvu7/ Lc4lCfSEuCMeZ3zV -----END CERTIFICATE-----Generated at Sat Jan 10 07:02:52 2026 by rpki-client