This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer File: dI6Zox81gkAKtd-nd8YNFqyu3bM.cer (raw, json) Hash identifier: hNVVdaiT82fI2mtGG/yi2DYNVL1KbctlE6Rgn6xQOBU= Subject key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7F842311CC0FBDC4543B167E5AAD4F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41174 IP: 185.84.52.0/22 IP: 2a05:a140::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:84:23:11:cc:0f:bd:c4:54:3b:16:7e:5a:ad:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:99:12:18:fa:fb:24:b1:f3:2a:83:1b:3f:91: a8:10:4a:f8:4d:f3:06:bb:a1:de:15:8e:d2:8d:f9: e7:81:76:45:97:de:9c:8e:e5:fc:a0:2c:48:6a:f5: d2:7f:ea:1b:ed:e2:f0:9d:01:aa:de:da:36:66:17: 12:bd:d1:76:5c:71:ea:bf:a6:22:55:58:e5:92:6d: b9:73:56:84:7a:42:e6:b0:16:04:69:b2:2b:a1:75: b1:94:a2:4a:89:1a:37:d0:83:bd:73:6b:9b:af:4e: bb:01:10:78:07:7d:ae:85:34:c5:1d:2c:c6:8b:0e: d5:29:c6:23:f8:d3:33:32:2c:b9:1c:46:19:21:c6: 32:e0:38:9b:c5:07:60:eb:18:b1:54:e9:5b:02:a0: d7:67:37:79:42:10:1b:4b:cb:ea:fd:84:55:2a:ac: 1c:90:37:8a:aa:e9:c6:81:0d:ad:26:2f:77:eb:09: 3c:5b:69:a3:69:15:ae:54:a1:03:a4:13:26:3c:01: 6d:f2:a4:68:47:d6:f2:55:37:95:bb:7d:e9:8e:58: f6:f4:93:23:ff:66:34:2d:47:26:f8:6d:3f:ee:8a: a4:b5:4a:b4:42:2f:9f:5b:69:91:ba:32:d4:82:aa: b0:2b:b1:df:42:98:94:b2:9f:b0:98:15:75:94:c6: b7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.84.52.0/22 IPv6: 2a05:a140::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41174 Signature Algorithm: sha256WithRSAEncryption 41:af:05:5e:b6:4c:cb:79:30:ed:52:b6:7c:2b:83:e4:e5:85: 88:a5:6f:4c:55:28:34:08:db:2d:4f:e7:f7:aa:6c:a8:f4:83: 99:88:c1:6b:e8:97:e2:9f:0b:97:82:91:1b:f7:75:0d:34:63: ad:6a:9a:28:ba:11:9b:15:d6:a7:39:c8:fa:a2:b3:9d:3a:96: 9b:aa:76:fc:99:2e:1e:75:21:bc:04:61:4a:27:32:76:67:3c: 0b:f3:60:5d:8f:7a:bf:ac:1c:a5:db:53:2a:4a:ad:fd:fc:b2: 84:a5:5a:6d:f3:c5:45:c8:fa:5f:7e:b7:81:10:b2:4a:70:ae: 05:90:ee:b0:10:28:ef:1a:61:db:f2:0d:f7:6e:85:0d:c7:77: fd:ac:50:9c:87:01:93:05:56:99:4c:26:bc:fd:e0:9c:a1:40: 32:60:06:13:63:18:c4:62:f4:a0:70:91:d8:ec:26:3e:b4:d1: 59:e5:01:d3:30:17:44:32:ab:cb:5c:90:a8:99:ba:04:98:10: 10:c4:7b:58:f5:7d:a6:9b:45:a9:9c:e5:f4:68:c7:8d:8d:91: ad:19:20:d3:11:a8:06:c5:35:3d:b2:ca:cc:4c:d9:8e:09:1e: 3f:27:b0:af:cc:47:fb:93:72:a1:de:2d:8a:03:cd:fb:a6:a6: 96:1f:8f:9a -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt8f4QjEcwPvcRUOxZ+Wq1PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDhlOTlhMzFmMzU4MjQwMGFiNWRmYTc3N2M2MGQxNmFjYWVkZGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJkSGPr7JLHzKoMbP5GoEEr4TfMG u6HeFY7SjfnngXZFl96cjuX8oCxIavXSf+ob7eLwnQGq3to2ZhcSvdF2XHHqv6Yi VVjlkm25c1aEekLmsBYEabIroXWxlKJKiRo30IO9c2ubr067ARB4B32uhTTFHSzG iw7VKcYj+NMzMiy5HEYZIcYy4DibxQdg6xixVOlbAqDXZzd5QhAbS8vq/YRVKqwc kDeKqunGgQ2tJi936wk8W2mjaRWuVKEDpBMmPAFt8qRoR9byVTeVu33pjlj29JMj /2Y0LUcm+G0/7oqktUq0Qi+fW2mRujLUgqqwK7HfQpiUsp+wmBV1lMa3RwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFHSOmaMfNYJACrXfp3fGDRasrt2zMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M0LzQzN2Fl NS1jMmFiLTRjNzEtOWQwNi1mZWM2YzI3MDFlZGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQvNDM3YWU1 LWMyYWItNGM3MS05ZDA2LWZlYzZjMjcwMWVkYS8xL2RJNlpveDgxZ2tBS3RkLW5k OFlORnF5dTNiTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuVQ0MA0EAgACMAcDBQMqBaFAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCg1jANBgkqhkiG9w0BAQsFAAOCAQEAQa8FXrZMy3kw 7VK2fCuD5OWFiKVvTFUoNAjbLU/n96psqPSDmYjBa+iX4p8Ll4KRG/d1DTRjrWqa KLoRmxXWpznI+qKznTqWm6p2/JkuHnUhvARhSicydmc8C/NgXY96v6wcpdtTKkqt /fyyhKVabfPFRcj6X363gRCySnCuBZDusBAo7xph2/IN926FDcd3/axQnIcBkwVW mUwmvP3gnKFAMmAGE2MYxGL0oHCR2OwmPrTRWeUB0zAXRDKry1yQqJm6BJgQEMR7 WPV9pptFqZzl9GjHjY2RrRkg0xGoBsU1PbLKzEzZjgkePyewr8xH+5Nyod4tigPN +6amlh+Pmg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:29 2026 by rpki-client