This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g06Y-uclpT43QqjU7ehT9P9juRM.cer File: g06Y-uclpT43QqjU7ehT9P9juRM.cer (raw, json) Hash identifier: IK2FKnFxmUFPQxLIxiysyQVogfPQToT5tl3aT0f5e04= Subject key identifier: 83:4E:98:FA:E7:25:A5:3E:37:42:A8:D4:ED:E8:53:F4:FF:63:B9:13 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C80BC04A1CF95397E3F8AD5F67DC627 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/87/576933-8a5b-4dcb-ac1f-1a529b2f5d97/1/g06Y-uclpT43QqjU7ehT9P9juRM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/87/576933-8a5b-4dcb-ac1f-1a529b2f5d97/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:19:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 42086 IP: 2001:678:cc4::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:bc:04:a1:cf:95:39:7e:3f:8a:d5:f6:7d:c6:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=834e98fae725a53e3742a8d4ede853f4ff63b913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9e:24:ae:b2:e4:fc:7f:36:75:65:75:bf:7a: d6:cf:05:c0:58:2f:ec:f6:89:6d:8e:49:f3:3d:b4: 13:b8:61:83:bb:0b:d2:d5:7f:fe:8b:00:df:0c:e3: a4:f2:fb:d2:4a:9d:a8:b9:12:f4:05:b6:fa:d6:dc: 8c:41:c2:67:19:bb:93:98:76:cd:62:60:d3:2e:f6: cc:cf:84:da:2b:e2:17:8d:d5:17:47:fc:dd:cf:f9: fa:3d:1c:e3:48:b7:0c:1e:fd:e6:e8:d8:ce:95:e5: 65:2d:0f:a9:6a:17:12:1f:23:54:18:97:1c:ef:59: 18:21:77:0d:73:ac:2f:10:73:ff:07:f2:0b:5f:3a: 7d:f7:3a:a6:81:91:55:01:81:a1:a5:44:85:96:82: d8:cd:45:6d:d1:fb:37:71:a3:b4:24:58:0f:62:0c: f2:32:30:5f:84:87:a1:fe:47:eb:a9:09:f2:fe:40: 0d:38:b2:ca:b7:a1:88:de:a7:0e:bb:39:e3:16:66: c0:0a:9b:da:ca:c8:ab:7f:ff:31:15:9c:63:b7:19: bb:25:81:e5:10:9a:c6:50:1f:d3:ea:2b:f7:43:f8: d2:40:da:4e:e5:ee:21:61:09:da:31:bf:08:fc:1f: 36:ba:2c:0f:85:3f:05:32:85:6e:6e:1a:d7:4e:af: dd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:4E:98:FA:E7:25:A5:3E:37:42:A8:D4:ED:E8:53:F4:FF:63:B9:13 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/576933-8a5b-4dcb-ac1f-1a529b2f5d97/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/576933-8a5b-4dcb-ac1f-1a529b2f5d97/1/g06Y-uclpT43QqjU7ehT9P9juRM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:cc4::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 42086 Signature Algorithm: sha256WithRSAEncryption 31:03:ca:d3:8f:2f:bd:94:a3:4b:50:a2:e3:0c:1c:fb:7a:78: 9b:8c:db:04:2a:38:44:4d:38:25:05:58:04:40:d8:e6:aa:51: cd:10:80:47:13:20:e1:93:fd:d8:3a:90:92:a7:62:99:28:39: 9f:d1:1c:bd:04:53:16:14:13:99:d0:98:5e:d3:5d:39:ab:17: 3f:ab:4a:fa:b6:58:48:47:7a:d7:a0:01:35:a3:f4:9b:a2:4f: a4:52:30:87:e0:66:ea:87:39:f0:f3:e0:96:3b:40:66:4a:c9: 01:7c:15:20:d1:54:3e:a7:96:42:b1:4c:09:57:ec:8e:62:a9: 17:fc:27:7c:1d:b3:25:d4:8b:98:ee:af:8d:2c:7c:17:3b:19: 3d:3c:01:f8:70:dd:d5:e2:f1:de:3b:0b:e1:18:e4:d8:ec:4c: c2:5b:41:f0:15:df:a3:36:a9:48:27:70:4f:f1:78:24:50:1c: d3:86:ba:3d:ed:4a:6d:3b:fa:fd:36:6b:c6:f2:2e:95:fe:41: d5:ab:64:e2:3c:48:d2:59:19:b7:b4:da:ae:ad:ba:6a:ab:65: ad:8d:53:59:4a:72:d4:ec:34:83:c5:2d:ad:5a:d0:9b:c5:b3: 0a:98:23:6a:38:40:d6:db:af:c8:45:ca:73:01:e9:f6:c9:06: 9b:f9:7d:1b -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt8gLwEoc+VOX4/itX2fcYnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzRlOThmYWU3MjVhNTNlMzc0MmE4ZDRlZGU4NTNmNGZmNjNiOTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp4krrLk/H82dWV1v3rWzwXAWC/s 9oltjknzPbQTuGGDuwvS1X/+iwDfDOOk8vvSSp2ouRL0Bbb61tyMQcJnGbuTmHbN YmDTLvbMz4TaK+IXjdUXR/zdz/n6PRzjSLcMHv3m6NjOleVlLQ+pahcSHyNUGJcc 71kYIXcNc6wvEHP/B/ILXzp99zqmgZFVAYGhpUSFloLYzUVt0fs3caO0JFgPYgzy MjBfhIeh/kfrqQny/kANOLLKt6GI3qcOuznjFmbACpvaysirf/8xFZxjtxm7JYHl EJrGUB/T6iv3Q/jSQNpO5e4hYQnaMb8I/B82uiwPhT8FMoVubhrXTq/d2QIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFINOmPrnJaU+N0Ko1O3oU/T/Y7kTMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg3LzU3Njkz My04YTViLTRkY2ItYWMxZi0xYTUyOWIyZjVkOTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcvNTc2OTMz LThhNWItNGRjYi1hYzFmLTFhNTI5YjJmNWQ5Ny8xL2cwNlktdWNscFQ0M1FxalU3 ZWhUOVA5anVSTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAzEMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwCkZjANBgkqhkiG9w0BAQsFAAOCAQEAMQPK048vvZSjS1Ci4wwc+3p4m4zb BCo4RE04JQVYBEDY5qpRzRCARxMg4ZP92DqQkqdimSg5n9EcvQRTFhQTmdCYXtNd OasXP6tK+rZYSEd616ABNaP0m6JPpFIwh+Bm6oc58PPgljtAZkrJAXwVINFUPqeW QrFMCVfsjmKpF/wnfB2zJdSLmO6vjSx8FzsZPTwB+HDd1eLx3jsL4Rjk2OxMwltB 8BXfozapSCdwT/F4JFAc04a6Pe1KbTv6/TZrxvIulf5B1atk4jxI0lkZt7Tarq26 aqtlrY1TWUpy1Ow0g8UtrVrQm8WzCpgjajhA1tuvyEXKcwHp9skGm/l9Gw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:14:41 2026 by rpki-client