This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/h6WU4wS2ghg6ojWeQOHc75P-BXA.cer File: h6WU4wS2ghg6ojWeQOHc75P-BXA.cer (raw, json) Hash identifier: PjWw5GxDGx9C8XsHNhXBhm47ZJM01teFxYvn2bErvB4= Subject key identifier: 87:A5:94:E3:04:B6:82:18:3A:A2:35:9E:40:E1:DC:EF:93:FE:05:70 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC8AA1E77559AE503B65E8DDD10503F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/h6WU4wS2ghg6ojWeQOHc75P-BXA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 5531 IP: 91.224.2.0/23 IP: 194.165.24.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:aa:1e:77:55:9a:e5:03:b6:5e:8d:dd:10:50:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=87a594e304b682183aa2359e40e1dcef93fe0570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c1:91:b7:6d:87:32:ba:44:6f:65:f3:2c:ff: 5d:70:af:70:96:44:6c:1d:7f:d6:7d:9f:08:ed:24: 11:3b:39:ae:e7:b1:e1:0e:8d:1b:ce:ad:d6:ae:f3: 87:f4:55:56:08:7a:f3:5d:98:b8:0a:83:4e:f1:45: e9:ed:51:f9:f1:f8:09:af:c3:4c:45:b8:7e:c6:5a: c9:a8:3d:16:38:89:98:5c:5a:3f:9e:50:e1:78:27: 0d:ee:29:0e:d0:97:61:26:a5:7d:19:f5:c7:03:c5: a1:d0:77:d6:68:f9:b2:8d:70:41:06:25:8e:39:dd: ee:35:3e:49:7f:23:92:0a:e7:df:db:51:0b:3b:9f: e3:24:08:56:f0:db:a3:7d:a9:ee:ac:de:df:d4:64: d4:d2:12:bd:39:a1:14:5c:07:f4:49:f9:0f:bf:d6: 85:58:52:49:93:49:5d:e6:fc:be:45:ed:24:54:09: c8:30:f5:37:ff:60:b3:0f:d7:1f:6f:a0:50:87:26: 17:e2:64:a1:f0:93:64:ed:7a:24:30:a1:b3:29:c3: 4c:97:1e:84:ce:f1:d4:39:11:45:04:2d:c7:71:c5: ba:ae:33:6b:d6:77:c9:1f:57:a0:b6:b3:e8:c6:20: 38:3e:a3:04:5f:6c:6f:7d:09:23:47:b8:36:a5:0a: 08:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A5:94:E3:04:B6:82:18:3A:A2:35:9E:40:E1:DC:EF:93:FE:05:70 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/h6WU4wS2ghg6ojWeQOHc75P-BXA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.224.2.0/23 194.165.24.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 5531 Signature Algorithm: sha256WithRSAEncryption 55:c0:1b:60:7c:22:a8:92:18:e7:29:3c:e3:da:b3:5c:cd:c3: e0:82:8c:32:91:f6:26:ac:ac:e1:ae:bd:d5:42:24:50:92:ad: 55:ea:8d:2c:f5:1e:22:e9:62:94:e1:fb:ad:74:57:51:c6:5e: 79:9e:d9:98:89:c4:b0:3d:27:ad:e2:4d:df:eb:e3:88:3b:0b: 55:bd:2b:0c:9a:07:6a:04:1f:a8:6d:38:55:87:82:96:06:71: d0:a5:c4:b9:20:3b:85:a6:6b:9e:f5:f6:ed:5d:89:6a:71:bb: 4e:0f:db:77:7f:ea:6c:9d:7e:0d:9f:71:c7:fb:a1:83:1d:35: a6:90:c3:b3:f9:ff:5d:1d:96:f4:1f:7c:7a:d8:07:74:93:9f: 99:d6:83:b1:62:37:fa:3d:df:70:c6:b5:5a:98:87:53:04:e7: 3f:fd:78:e3:d5:f5:c4:18:ba:6f:df:d9:d4:d9:8f:02:f0:6b: 07:99:7b:67:5d:8a:76:5e:5c:11:27:84:e2:d5:1b:d0:dd:84: 1b:a9:af:c7:7e:b7:0d:7d:92:aa:da:3b:09:0c:63:97:89:5a: 31:b6:7d:35:b0:09:09:5c:2a:a7:17:5c:38:55:77:23:bb:46: c7:8c:5e:4e:2f:9c:84:8b:65:ab:f6:bb:70:48:48:b1:8a:27: 07:2e:b5:40 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgISAZt6yKoed1Wa5QO2Xo3dEFA/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4N2E1OTRlMzA0YjY4MjE4M2FhMjM1OWU0MGUxZGNlZjkzZmUwNTcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA28GRt22HMrpEb2XzLP9dcK9wlkRs HX/WfZ8I7SQROzmu57HhDo0bzq3WrvOH9FVWCHrzXZi4CoNO8UXp7VH58fgJr8NM Rbh+xlrJqD0WOImYXFo/nlDheCcN7ikO0JdhJqV9GfXHA8Wh0HfWaPmyjXBBBiWO Od3uNT5JfyOSCuff21ELO5/jJAhW8NujfanurN7f1GTU0hK9OaEUXAf0SfkPv9aF WFJJk0ld5vy+Re0kVAnIMPU3/2CzD9cfb6BQhyYX4mSh8JNk7XokMKGzKcNMlx6E zvHUORFFBC3HccW6rjNr1nfJH1egtrPoxiA4PqMEX2xvfQkjR7g2pQoIuQIDAQAB o4ICpTCCAqEwHQYDVR0OBBYEFIellOMEtoIYOqI1nkDh3O+T/gVwMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4LzRmODY5 OS03YjUyLTQwNmUtODJjMC1iOWUzNGEzOGYzYTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvNGY4Njk5 LTdiNTItNDA2ZS04MmMwLWI5ZTM0YTM4ZjNhOS8xL2g2V1U0d1MyZ2hnNm9qV2VR T0hjNzVQLUJYQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQBW+ACAwQBwqUYMBkGCCsGAQUFBwEIAQH/BAow CKAGMAQCAhWbMA0GCSqGSIb3DQEBCwUAA4IBAQBVwBtgfCKokhjnKTzj2rNczcPg gowykfYmrKzhrr3VQiRQkq1V6o0s9R4i6WKU4futdFdRxl55ntmYicSwPSet4k3f 6+OIOwtVvSsMmgdqBB+obThVh4KWBnHQpcS5IDuFpmue9fbtXYlqcbtOD9t3f+ps nX4Nn3HH+6GDHTWmkMOz+f9dHZb0H3x62Ad0k5+Z1oOxYjf6Pd9wxrVamIdTBOc/ /Xjj1fXEGLpv39nU2Y8C8GsHmXtnXYp2XlwRJ4Ti1RvQ3YQbqa/HfrcNfZKq2jsJ DGOXiVoxtn01sAkJXCqnF1w4VXcju0bHjF5OL5yEi2Wr9rtwSEixiicHLrVA -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:05 2026 by rpki-client