This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t6XbvIM8xastSukpfi6rl18cGX0.cer File: t6XbvIM8xastSukpfi6rl18cGX0.cer (raw, json) Hash identifier: VqADnu7XiGV2/5M2nMJTRPwkZWbaYfyaM8q44mxpBMM= Subject key identifier: B7:A5:DB:BC:83:3C:C5:AB:2D:4A:E9:29:7E:2E:AB:97:5F:1C:19:7D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEDAEC7AD845357E09124B17814A69F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b2/429ff9-0265-476f-9035-4192a357eab7/1/t6XbvIM8xastSukpfi6rl18cGX0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b2/429ff9-0265-476f-9035-4192a357eab7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 16101 IP: 193.41.194.0/24 IP: 2001:67c:2b38::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:ae:c7:ad:84:53:57:e0:91:24:b1:78:14:a6:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b7a5dbbc833cc5ab2d4ae9297e2eab975f1c197d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:98:03:b6:fc:69:9e:0e:68:ac:42:68:c7:9d: 3d:b8:a5:b6:ac:fb:88:88:97:a5:e0:47:3f:ae:3f: 18:ff:c8:86:6c:f1:97:81:09:34:2d:fd:cc:90:46: dd:f3:a8:98:1b:fa:99:51:83:63:aa:2f:d0:a8:1b: eb:af:5e:0c:ee:76:bb:32:e9:3e:f7:02:ca:3c:75: 30:b9:78:02:27:0a:21:2b:40:20:76:d1:ad:2f:73: ab:3b:d9:7c:1c:db:59:23:98:25:b2:61:97:46:3c: 0d:7b:19:1a:0e:e4:ff:2a:c4:96:15:29:ee:f9:39: be:ae:fe:3f:da:b6:a1:1d:ee:3e:a9:bb:82:ca:8e: 6d:77:03:88:45:8e:78:0c:3f:28:82:51:1e:ee:d4: d1:72:2e:6a:49:2e:6d:36:31:46:42:e7:e0:85:1c: 80:dd:c3:7d:ef:ed:00:ac:f6:41:75:f5:83:9a:b6: 7f:97:f0:ac:25:ce:bc:c9:46:3a:3f:3c:c8:cd:9d: 46:be:e0:bd:08:97:68:3a:d2:9e:fb:ab:c7:3e:be: 65:3f:b7:a2:c0:5d:43:87:08:5e:95:91:cf:d7:68: 94:15:f2:f4:d2:1c:29:27:aa:63:25:8f:f1:46:73: fa:48:68:7e:80:e6:41:08:5e:c6:57:d1:60:d7:4b: 31:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A5:DB:BC:83:3C:C5:AB:2D:4A:E9:29:7E:2E:AB:97:5F:1C:19:7D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/429ff9-0265-476f-9035-4192a357eab7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/429ff9-0265-476f-9035-4192a357eab7/1/t6XbvIM8xastSukpfi6rl18cGX0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.41.194.0/24 IPv6: 2001:67c:2b38::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 16101 Signature Algorithm: sha256WithRSAEncryption 5a:dc:0f:8a:34:b8:25:bf:9f:4f:d7:05:69:49:1b:14:e3:2c: c3:c7:eb:99:07:c2:9e:74:aa:07:3e:80:83:88:c5:13:fd:3f: 1e:0c:12:f5:1c:2b:6b:77:5c:31:21:d3:48:43:01:61:57:3c: 0c:de:72:3e:21:9a:55:41:29:96:dd:be:54:dc:2e:e9:03:f4: 39:be:5d:8f:84:a0:22:e1:33:26:a5:72:11:2f:7e:3d:8b:13: 7f:bb:00:a9:c4:d9:51:7c:66:6b:fe:60:3e:98:ae:e0:b2:57: 8d:b1:26:ba:13:5f:42:e0:9c:03:95:07:dc:a6:6f:a2:4b:d6: 32:21:08:2b:13:a9:ca:28:27:ee:70:97:b0:1b:28:b9:26:f6: 0a:41:98:4e:a0:c4:f6:b9:14:b7:ab:05:74:98:e3:01:6b:bb: 37:98:b1:df:c1:15:5b:15:90:79:4a:c1:63:25:25:ff:d4:c4: 16:0d:a6:96:0a:ca:d7:4d:b2:f0:d1:dc:b3:e6:d3:20:4b:c6: 9a:2e:51:d7:26:8f:77:1d:8c:4f:2f:51:0e:b8:1e:6e:f1:ba: f5:39:5b:86:95:fb:45:11:d0:6e:aa:1d:34:2c:fd:89:97:02: 2c:10:a6:60:52:21:cf:2a:53:8b:44:b5:c4:64:39:c2:b0:a0: 76:b8:c5:4f -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgISAZt87a7HrYRTV+CRJLF4FKafMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiN2E1ZGJiYzgzM2NjNWFiMmQ0YWU5Mjk3ZTJlYWI5NzVmMWMxOTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspgDtvxpng5orEJox509uKW2rPuI iJel4Ec/rj8Y/8iGbPGXgQk0Lf3MkEbd86iYG/qZUYNjqi/QqBvrr14M7na7Muk+ 9wLKPHUwuXgCJwohK0AgdtGtL3OrO9l8HNtZI5glsmGXRjwNexkaDuT/KsSWFSnu +Tm+rv4/2rahHe4+qbuCyo5tdwOIRY54DD8oglEe7tTRci5qSS5tNjFGQufghRyA 3cN97+0ArPZBdfWDmrZ/l/CsJc68yUY6PzzIzZ1GvuC9CJdoOtKe+6vHPr5lP7ei wF1DhwhelZHP12iUFfL00hwpJ6pjJY/xRnP6SGh+gOZBCF7GV9Fg10sxQwIDAQAB o4ICsDCCAqwwHQYDVR0OBBYEFLel27yDPMWrLUrpKX4uq5dfHBl9MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IyLzQyOWZm OS0wMjY1LTQ3NmYtOTAzNS00MTkyYTM1N2VhYjcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIvNDI5ZmY5 LTAyNjUtNDc2Zi05MDM1LTQxOTJhMzU3ZWFiNy8xL3Q2WGJ2SU04eGFzdFN1a3Bm aTZybDE4Y0dYMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAwSnCMA8EAgACMAkDBwAgAQZ8KzgwGQYIKwYB BQUHAQgBAf8ECjAIoAYwBAICPuUwDQYJKoZIhvcNAQELBQADggEBAFrcD4o0uCW/ n0/XBWlJGxTjLMPH65kHwp50qgc+gIOIxRP9Px4MEvUcK2t3XDEh00hDAWFXPAze cj4hmlVBKZbdvlTcLukD9Dm+XY+EoCLhMyalchEvfj2LE3+7AKnE2VF8Zmv+YD6Y ruCyV42xJroTX0LgnAOVB9ymb6JL1jIhCCsTqcooJ+5wl7AbKLkm9gpBmE6gxPa5 FLerBXSY4wFruzeYsd/BFVsVkHlKwWMlJf/UxBYNppYKytdNsvDR3LPm0yBLxpou Udcmj3cdjE8vUQ64Hm7xuvU5W4aV+0UR0G6qHTQs/YmXAiwQpmBSIc8qU4tEtcRk OcKwoHa4xU8= -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:59 2026 by rpki-client