This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/btSqOMC1kdSms-WFaFxtQ4gNrHg.cer File: btSqOMC1kdSms-WFaFxtQ4gNrHg.cer (raw, json) Hash identifier: HciCUSVTinaXmpUTG4DNVB2rrYdZvpfPJiHAKjy7s40= Subject key identifier: 6E:D4:AA:38:C0:B5:91:D4:A6:B3:E5:85:68:5C:6D:43:88:0D:AC:78 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7FA02EB90763034C08BCC548CB188A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/31/9a8786-09f4-4b60-867a-c8b2df23d519/1/btSqOMC1kdSms-WFaFxtQ4gNrHg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/31/9a8786-09f4-4b60-867a-c8b2df23d519/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:17 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 213959 IP: 2001:67c:f54::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:a0:2e:b9:07:63:03:4c:08:bc:c5:48:cb:18:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ed4aa38c0b591d4a6b3e585685c6d43880dac78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2a:c4:49:03:29:6e:f9:96:a3:1d:11:c3:af: 7d:32:30:53:ac:7c:61:e7:a5:cc:75:0a:8f:c8:15: 27:17:c3:26:3e:43:25:20:71:14:0d:ae:a2:09:8c: 4d:16:c8:42:4f:72:cd:07:45:9a:c1:f1:2b:f0:20: 8b:83:d1:bf:ec:ec:91:25:65:9e:83:e0:65:e8:6b: 00:97:b8:78:7d:3b:11:45:d1:78:2f:f3:54:2f:e8: eb:15:ef:07:e7:d9:c9:3a:d2:ae:73:a2:1d:ee:a4: 12:7b:fb:29:6e:6e:7d:28:73:74:79:06:d7:b4:02: 05:cb:ed:ad:fe:c1:72:2c:0f:e8:b7:47:f2:9f:58: 9a:96:17:76:f4:d2:76:3d:7b:23:09:51:3b:7b:a3: e8:8a:57:8a:25:22:52:68:bf:db:85:29:dc:1b:a6: 86:41:f2:fb:fa:a5:82:42:8d:45:0b:61:17:58:28: ea:e2:85:88:82:0f:06:a9:15:6b:37:4d:10:97:6f: 89:70:90:f2:25:81:07:f5:9c:7e:05:08:19:b6:80: a6:70:ea:43:30:15:fc:cb:4b:98:43:fe:6b:41:4d: 8f:e1:28:76:dc:97:7e:3a:12:4d:7a:6b:14:45:76: 1a:0d:8f:60:26:51:d6:d8:11:fc:79:72:fd:c8:a7: 7c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D4:AA:38:C0:B5:91:D4:A6:B3:E5:85:68:5C:6D:43:88:0D:AC:78 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/9a8786-09f4-4b60-867a-c8b2df23d519/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/9a8786-09f4-4b60-867a-c8b2df23d519/1/btSqOMC1kdSms-WFaFxtQ4gNrHg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:f54::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 213959 Signature Algorithm: sha256WithRSAEncryption 7c:40:dc:2a:00:0f:24:f1:45:1b:21:9e:70:f4:73:e7:2d:31: bc:4c:2e:1d:b1:c3:36:ab:e8:5c:5c:5b:a5:35:6d:85:8f:4c: a1:df:bf:ad:1d:84:c8:d2:21:00:23:b8:07:0b:7b:ae:ae:4c: cf:a3:e8:58:53:a6:cf:d6:9d:32:fa:18:30:e6:9b:07:de:af: e9:cb:3c:7c:2f:04:a4:a7:00:89:bf:83:99:b9:d4:03:a8:9f: 68:f9:7c:bd:f5:53:2f:64:ed:2c:3c:c3:ff:27:13:25:90:ff: d5:d9:b7:7e:88:4a:c9:cf:d4:72:f0:ef:e0:1c:c0:82:1b:3e: ed:2f:ee:9f:dc:ca:5b:ba:be:82:50:eb:cc:68:36:e2:9e:27: 1f:1f:46:dc:f2:25:53:9d:a0:af:3f:c6:93:6e:68:07:1b:7b: 7d:00:2d:dc:c0:b4:03:5b:dc:de:fb:b0:72:a9:85:10:46:3c: fe:05:3c:92:d9:e6:6c:4e:0a:15:f9:fc:1f:f2:7d:5c:f4:c5: dd:78:59:55:b0:b3:f0:45:64:a7:a4:f3:7e:aa:a5:ff:d4:ea: 6e:91:40:0d:f8:25:ae:27:26:73:92:2b:70:b0:ba:b6:69:ba: 25:fe:20:29:11:a8:bf:b0:4f:23:d8:f0:1e:bb:be:44:08:6a: c0:94:c5:16 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt8f6AuuQdjA0wIvMVIyxiKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZWQ0YWEzOGMwYjU5MWQ0YTZiM2U1ODU2ODVjNmQ0Mzg4MGRhYzc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2yrESQMpbvmWox0Rw699MjBTrHxh 56XMdQqPyBUnF8MmPkMlIHEUDa6iCYxNFshCT3LNB0WawfEr8CCLg9G/7OyRJWWe g+Bl6GsAl7h4fTsRRdF4L/NUL+jrFe8H59nJOtKuc6Id7qQSe/spbm59KHN0eQbX tAIFy+2t/sFyLA/ot0fyn1ialhd29NJ2PXsjCVE7e6PoileKJSJSaL/bhSncG6aG QfL7+qWCQo1FC2EXWCjq4oWIgg8GqRVrN00Ql2+JcJDyJYEH9Zx+BQgZtoCmcOpD MBX8y0uYQ/5rQU2P4Sh23Jd+OhJNemsURXYaDY9gJlHW2BH8eXL9yKd8jwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFG7UqjjAtZHUprPlhWhcbUOIDax4MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMxLzlhODc4 Ni0wOWY0LTRiNjAtODY3YS1jOGIyZGYyM2Q1MTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEvOWE4Nzg2 LTA5ZjQtNGI2MC04NjdhLWM4YjJkZjIzZDUxOS8xL2J0U3FPTUMxa2RTbXMtV0Zh Rnh0UTRnTnJIZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA9UMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwNDxzANBgkqhkiG9w0BAQsFAAOCAQEAfEDcKgAPJPFFGyGecPRz5y0xvEwu HbHDNqvoXFxbpTVthY9Mod+/rR2EyNIhACO4Bwt7rq5Mz6PoWFOmz9adMvoYMOab B96v6cs8fC8EpKcAib+DmbnUA6ifaPl8vfVTL2TtLDzD/ycTJZD/1dm3fohKyc/U cvDv4BzAghs+7S/un9zKW7q+glDrzGg24p4nHx9G3PIlU52grz/Gk25oBxt7fQAt 3MC0A1vc3vuwcqmFEEY8/gU8ktnmbE4KFfn8H/J9XPTF3XhZVbCz8EVkp6Tzfqql /9TqbpFADfglricmc5IrcLC6tmm6Jf4gKRGov7BPI9jwHru+RAhqwJTFFg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:41 2026 by rpki-client