This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bX6kOhxHVXh9SR-6VjuIgR3Mxfg.cer File: bX6kOhxHVXh9SR-6VjuIgR3Mxfg.cer (raw, json) Hash identifier: E+CXoREUkrxB86xZbXeqa+tsB1dktkClTRFIIjgmdEU= Subject key identifier: 6D:7E:A4:3A:1C:47:55:78:7D:49:1F:BA:56:3B:88:81:1D:CC:C5:F8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA54114DA0D3182A67A27FC13280366 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6f/5c9996-6f6b-4c31-863e-589d30ffaa8c/1/bX6kOhxHVXh9SR-6VjuIgR3Mxfg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6f/5c9996-6f6b-4c31-863e-589d30ffaa8c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 91.199.225.0/24 IP: 195.28.12.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:41:14:da:0d:31:82:a6:7a:27:fc:13:28:03:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d7ea43a1c4755787d491fba563b88811dccc5f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f9:f1:4c:cf:97:88:4e:53:c1:04:b4:26:49: f6:81:43:41:00:3e:ab:ec:40:fe:30:0b:cb:6d:be: 77:88:7a:90:34:93:39:14:21:54:10:62:74:7f:f5: 02:bf:5e:55:cc:fc:b3:96:31:21:52:ea:10:7e:00: 7b:4f:1e:a5:84:28:59:2b:1a:0b:17:19:d5:ea:05: cf:4c:08:ad:0e:33:bc:b3:8f:03:79:64:cc:25:0d: fb:e0:2f:db:df:0a:e1:28:5b:92:09:a0:61:c9:28: c7:3a:9c:ca:a9:bd:3c:f4:da:a8:45:2f:19:5c:4a: dc:f4:09:7a:f6:3e:1b:ca:e5:df:ca:b2:8a:d2:a2: 38:80:3b:cb:2b:85:d9:32:8b:d5:97:b6:34:3f:ae: ef:7a:a9:42:f8:96:e6:3a:86:33:ad:38:bd:f2:66: 07:f9:4e:32:c6:a2:8c:2a:f4:67:c5:b7:34:f8:40: 4c:af:8e:f0:d5:73:96:9b:3a:8c:36:ac:b7:dc:74: 8c:5c:26:f1:9a:3e:fd:01:26:80:51:42:62:7a:36: 4a:80:d1:64:b9:25:7e:4a:e4:2c:40:9a:be:b8:68: 47:1a:8b:cb:ff:df:23:90:9c:76:ba:16:46:8a:d6: e1:08:f2:e3:6f:f9:07:a0:df:be:2e:1c:f6:6c:8f: ce:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:7E:A4:3A:1C:47:55:78:7D:49:1F:BA:56:3B:88:81:1D:CC:C5:F8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5c9996-6f6b-4c31-863e-589d30ffaa8c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5c9996-6f6b-4c31-863e-589d30ffaa8c/1/bX6kOhxHVXh9SR-6VjuIgR3Mxfg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.225.0/24 195.28.12.0/23 Signature Algorithm: sha256WithRSAEncryption 71:78:42:94:6b:a6:e2:f2:f3:d2:dc:a6:2d:d8:f4:9b:22:9b: c5:af:a0:53:72:7c:c9:4e:a6:fb:a1:f5:d5:fb:23:7d:66:f2: 4c:60:b7:e0:d0:3d:a6:a2:bc:a3:dc:bd:e7:a3:a9:22:20:50: 7e:05:2a:79:df:f1:ba:78:97:b6:db:c9:42:9d:5d:62:14:43: 87:44:71:94:a8:c3:e5:87:8d:6d:f4:a5:8a:e3:1a:20:c6:67: a3:82:87:68:50:e2:85:3a:97:2d:1c:30:63:37:5f:02:7d:9e: 78:7e:27:f8:e7:d5:aa:13:6b:79:6e:86:90:c5:1a:b5:51:d2: 94:d8:e1:c2:5a:d0:8a:32:ff:0a:e9:c5:82:95:15:62:38:cb: d3:c2:70:b3:13:6c:6c:34:71:4f:84:22:f6:16:07:fa:f5:35: 79:de:95:e3:7f:39:4e:27:0c:9f:88:96:2b:af:0b:da:74:fc: 12:9f:e8:4b:31:15:b2:0f:82:66:ae:74:ca:26:fb:da:46:93: 4d:bb:97:18:9e:8b:30:e5:92:8d:84:ee:fd:f0:19:d6:fe:9c: 3d:b9:44:7b:5c:dd:ce:18:91:92:ac:74:02:95:14:ef:50:ab: ad:e8:d1:09:31:4a:40:f7:74:5c:c4:cd:5b:88:5c:68:77:36: 23:66:24:3d -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgISAZt7pUEU2g0xgqZ6J/wTKANmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDdlYTQzYTFjNDc1NTc4N2Q0OTFmYmE1NjNiODg4MTFkY2NjNWY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfnxTM+XiE5TwQS0Jkn2gUNBAD6r 7ED+MAvLbb53iHqQNJM5FCFUEGJ0f/UCv15VzPyzljEhUuoQfgB7Tx6lhChZKxoL FxnV6gXPTAitDjO8s48DeWTMJQ374C/b3wrhKFuSCaBhySjHOpzKqb089NqoRS8Z XErc9Al69j4byuXfyrKK0qI4gDvLK4XZMovVl7Y0P67veqlC+JbmOoYzrTi98mYH +U4yxqKMKvRnxbc0+EBMr47w1XOWmzqMNqy33HSMXCbxmj79ASaAUUJiejZKgNFk uSV+SuQsQJq+uGhHGovL/98jkJx2uhZGitbhCPLjb/kHoN++Lhz2bI/OoQIDAQAB o4ICijCCAoYwHQYDVR0OBBYEFG1+pDocR1V4fUkfulY7iIEdzMX4MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZmLzVjOTk5 Ni02ZjZiLTRjMzEtODYzZS01ODlkMzBmZmFhOGMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmYvNWM5OTk2 LTZmNmItNGMzMS04NjNlLTU4OWQzMGZmYWE4Yy8xL2JYNmtPaHhIVlhoOVNSLTZW anVJZ1IzTXhmZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAW8fhAwQBwxwMMA0GCSqGSIb3DQEBCwUAA4IB AQBxeEKUa6bi8vPS3KYt2PSbIpvFr6BTcnzJTqb7ofXV+yN9ZvJMYLfg0D2moryj 3L3no6kiIFB+BSp53/G6eJe228lCnV1iFEOHRHGUqMPlh41t9KWK4xogxmejgodo UOKFOpctHDBjN18CfZ54fif459WqE2t5boaQxRq1UdKU2OHCWtCKMv8K6cWClRVi OMvTwnCzE2xsNHFPhCL2Fgf69TV53pXjfzlOJwyfiJYrrwvadPwSn+hLMRWyD4Jm rnTKJvvaRpNNu5cYnosw5ZKNhO798BnW/pw9uUR7XN3OGJGSrHQClRTvUKut6NEJ MUpA93RcxM1biFxodzYjZiQ9 -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:55 2026 by rpki-client