This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t060sgvFlKwro6pa7zDnTiXhVuE.cer File: t060sgvFlKwro6pa7zDnTiXhVuE.cer (raw, json) Hash identifier: V+i7GO0p+22ljTDHYqd4ml7/N/K5u0pwoBHUbSJI/6c= Subject key identifier: B7:4E:B4:B2:0B:C5:94:AC:2B:A3:AA:5A:EF:30:E7:4E:25:E1:56:E1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DC930794DAE070ED7713AE7B2CA0070 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/t060sgvFlKwro6pa7zDnTiXhVuE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:18:15 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.46.180.0/22 IP: 2a04:8140::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:30:79:4d:ae:07:0e:d7:71:3a:e7:b2:ca:00:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b74eb4b20bc594ac2ba3aa5aef30e74e25e156e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:3e:08:cd:a7:cc:60:5c:29:79:49:ac:a2:6c: 71:73:7d:ee:e5:56:fb:9f:14:4b:d1:12:db:d6:7f: aa:78:a2:a4:e5:38:68:f8:1a:b6:d5:a8:4b:58:0a: c7:3e:87:e6:75:51:77:0f:3f:32:0f:48:a5:02:7a: 35:7c:a0:b4:77:0d:0f:38:54:49:d9:00:56:3d:bb: 0b:73:1e:65:6e:2a:73:e8:1c:9c:27:58:b7:e3:9a: fc:c1:81:b5:8a:41:d6:9a:14:d5:40:f9:1c:d7:51: 57:f9:3c:31:d3:83:38:55:15:04:73:4b:f6:9d:08: 6b:1d:7b:2b:b4:79:ec:95:a0:5b:88:a2:20:74:89: 72:c7:a7:e8:3a:a3:32:11:47:53:b4:d1:13:8b:50: 89:c5:d0:bc:39:59:ef:2b:43:2a:30:cc:a7:d4:9b: 43:3e:f8:2e:e4:a5:42:8f:44:72:85:6a:9b:b0:61: 86:f7:1e:db:23:b2:9e:6f:58:27:ba:ee:ae:26:62: ff:ad:f5:85:7f:f1:1f:c6:2a:1e:a1:56:97:ff:0a: e8:9a:90:04:bb:c6:8a:b7:4b:19:e1:db:b1:a9:c1: e8:df:5e:b7:9c:1d:c9:76:9a:72:5d:22:aa:53:3a: 2b:c3:95:c0:fc:26:3e:6a:9e:83:30:67:46:89:23: 7d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:4E:B4:B2:0B:C5:94:AC:2B:A3:AA:5A:EF:30:E7:4E:25:E1:56:E1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/t060sgvFlKwro6pa7zDnTiXhVuE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.46.180.0/22 IPv6: 2a04:8140::/29 Signature Algorithm: sha256WithRSAEncryption 20:8e:6b:5f:32:86:07:cc:0c:ea:6f:74:5d:77:22:b6:cb:7e: 9f:34:0b:3b:18:89:27:52:7b:f8:e5:ab:01:b7:29:4a:f3:6a: 15:3b:07:01:6d:8c:86:e3:76:ce:03:48:91:34:c6:4a:1d:0a: a4:93:bf:87:eb:e7:14:20:46:b1:a3:6e:74:9e:f7:4c:2f:4d: 81:2c:ff:67:8a:4e:2d:07:1d:ac:fe:cf:94:7e:00:7b:4f:7f: 2e:c0:35:19:8a:a2:a5:8f:a1:a7:7e:3b:18:e1:48:49:51:d6: cb:0f:92:31:7f:d1:79:a6:55:f5:ae:de:0c:7d:82:1d:6f:28: 83:08:92:b9:9b:60:5f:01:f3:27:30:f2:49:11:16:8c:cc:c1: 2a:89:68:74:ec:72:2f:1a:da:8b:d8:a6:57:92:36:d2:44:99: d3:0a:2c:eb:34:b6:53:97:c3:dd:2c:ca:88:dc:02:31:86:6d: 24:2c:4f:22:aa:f1:c2:28:89:62:cb:c9:8e:fd:d9:db:a1:b0: 04:93:6d:5f:69:36:79:23:e9:b2:4f:64:4a:e3:4a:23:a3:22: 7a:f8:df:8e:ef:59:fa:d7:52:04:2d:5e:4f:51:94:bd:52:6f: 20:8a:71:ff:96:92:03:4d:9a:13:a8:53:36:66:25:a4:7c:8f: 67:e5:c9:a2 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt9yTB5Ta4HDtdxOueyygBwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzRlYjRiMjBiYzU5NGFjMmJhM2FhNWFlZjMwZTc0ZTI1ZTE1NmUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6T4IzafMYFwpeUmsomxxc33u5Vb7 nxRL0RLb1n+qeKKk5Tho+Bq21ahLWArHPofmdVF3Dz8yD0ilAno1fKC0dw0POFRJ 2QBWPbsLcx5lbipz6BycJ1i345r8wYG1ikHWmhTVQPkc11FX+Twx04M4VRUEc0v2 nQhrHXsrtHnslaBbiKIgdIlyx6foOqMyEUdTtNETi1CJxdC8OVnvK0MqMMyn1JtD Pvgu5KVCj0RyhWqbsGGG9x7bI7Keb1gnuu6uJmL/rfWFf/EfxioeoVaX/wrompAE u8aKt0sZ4duxqcHo3163nB3JdppyXSKqUzorw5XA/CY+ap6DMGdGiSN9PQIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFLdOtLILxZSsK6OqWu8w504l4VbhMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzljL2RjZDUx Mi0wY2I3LTQ5YTAtYTYxOC02ZmJiMTk0ODMyODcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvZGNkNTEy LTBjYjctNDlhMC1hNjE4LTZmYmIxOTQ4MzI4Ny8xL3QwNjBzZ3ZGbEt3cm82cGE3 ekRuVGlYaFZ1RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuS60MA0EAgACMAcDBQMqBIFAMA0GCSqGSIb3 DQEBCwUAA4IBAQAgjmtfMoYHzAzqb3RddyK2y36fNAs7GIknUnv45asBtylK82oV OwcBbYyG43bOA0iRNMZKHQqkk7+H6+cUIEaxo250nvdML02BLP9nik4tBx2s/s+U fgB7T38uwDUZiqKlj6GnfjsY4UhJUdbLD5Ixf9F5plX1rt4MfYIdbyiDCJK5m2Bf AfMnMPJJERaMzMEqiWh07HIvGtqL2KZXkjbSRJnTCizrNLZTl8PdLMqI3AIxhm0k LE8iqvHCKIliy8mO/dnbobAEk21faTZ5I+myT2RK40ojoyJ6+N+O71n611IELV5P UZS9Um8ginH/lpIDTZoTqFM2ZiWkfI9n5cmi -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:43 2026 by rpki-client