This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vfo6-DmqHc51j0ieLTGuIgkvyZo.cer File: vfo6-DmqHc51j0ieLTGuIgkvyZo.cer (raw, json) Hash identifier: fk9AHs4KzHMz5dvAptnDPsvcMIc20cKipF7ozAbtlGs= Subject key identifier: BD:FA:3A:F8:39:AA:1D:CE:75:8F:48:9E:2D:31:AE:22:09:2F:C9:9A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C6E37472FD8CA8F2D459D77FD05D71 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/vfo6-DmqHc51j0ieLTGuIgkvyZo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:01 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 3304 AS: 5432 AS: 5488 AS: 28704 AS: 29005 IP: 37.62.0.0/16 IP: 37.184.0.0/15 IP: 46.178.0.0/15 IP: 62.4.128.0/17 IP: 62.235.0.0/16 IP: 80.200.0.0/15 IP: 80.236.128.0/17 IP: 81.11.128.0/17 IP: 81.169.0.0/17 IP: 81.240.0.0/13 IP: 83.134.0.0/16 IP: 87.64.0.0/14 IP: 88.197.128.0/17 IP: 91.176.0.0/13 IP: 91.190.208.0/21 IP: 92.48.128.0/18 IP: 109.128.0.0/12 IP: 178.144.0.0/15 IP: 185.2.92.0/22 IP: 188.5.0.0/16 IP: 193.28.47.0/24 IP: 193.74.0.0/16 IP: 193.75.128.0/17 IP: 193.91.96.0/19 IP: 193.121.0.0/16 IP: 193.243.136.0/23 IP: 194.78.0.0/16 IP: 194.119.224.0/19 IP: 195.0.0.0/17 IP: 195.13.0.0/19 IP: 195.74.192.0/19 IP: 195.95.0.0/17 IP: 195.207.0.0/16 IP: 195.238.0.0/19 IP: 212.233.0.0/19 IP: 212.239.128.0/17 IP: 213.49.0.0/16 IP: 213.177.128.0/19 IP: 213.181.32.0/19 IP: 217.136.0.0/16 IP: 2a02:a000::/26 IP: 2a04:6c40::/29 IP: 2a04:9f80::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:e3:74:72:fd:8c:a8:f2:d4:59:d7:7f:d0:5d:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bdfa3af839aa1dce758f489e2d31ae22092fc99a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b9:9d:f0:f8:10:fe:0a:45:6a:7f:f0:3f:58: 4a:4e:9b:71:0c:36:15:e4:ec:75:8b:ee:f4:51:a1: f3:4e:91:2d:97:90:bb:4b:23:80:c9:98:6d:31:66: e0:4a:b3:21:1f:56:f5:8d:6e:f8:3e:e2:6b:48:3b: 53:31:ed:1d:16:ea:22:d1:ee:e4:93:2d:57:33:2f: b7:73:3f:0b:15:6d:69:29:f9:be:a7:ff:c1:e6:2f: e8:b2:fe:e4:a9:0d:ca:45:c5:c1:3b:02:bb:4f:27: 10:71:08:98:63:9f:e1:5b:87:5d:dc:76:13:89:dc: 05:09:8c:a3:c2:15:f8:eb:bd:2e:37:ab:2f:89:66: db:4f:0d:ab:e7:e7:95:30:34:d0:55:91:ef:e6:41: 88:7e:4d:87:c5:be:64:4b:8e:10:39:c6:4d:07:4d: 14:e0:6b:67:87:00:13:7c:b6:fb:c8:98:4a:b3:64: 71:f9:08:39:a4:bd:25:ec:e9:58:fb:5a:3f:c1:8b: 12:3a:ac:b5:3e:75:16:4b:5f:41:ea:cf:d0:0d:1b: 8d:7a:1d:45:3a:c8:62:42:f9:4a:75:37:8f:a9:ce: 50:8a:4b:ef:7b:0d:85:c9:fc:d8:bc:6f:f7:3c:02: a3:fc:81:66:a3:50:d3:d1:73:1a:d7:b4:85:8e:ff: ef:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:FA:3A:F8:39:AA:1D:CE:75:8F:48:9E:2D:31:AE:22:09:2F:C9:9A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/vfo6-DmqHc51j0ieLTGuIgkvyZo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.62.0.0/16 37.184.0.0/15 46.178.0.0/15 62.4.128.0/17 62.235.0.0/16 80.200.0.0/15 80.236.128.0/17 81.11.128.0/17 81.169.0.0/17 81.240.0.0/13 83.134.0.0/16 87.64.0.0/14 88.197.128.0/17 91.176.0.0/13 91.190.208.0/21 92.48.128.0/18 109.128.0.0/12 178.144.0.0/15 185.2.92.0/22 188.5.0.0/16 193.28.47.0/24 193.74.0.0/16 193.75.128.0/17 193.91.96.0/19 193.121.0.0/16 193.243.136.0/23 194.78.0.0/16 194.119.224.0/19 195.0.0.0/17 195.13.0.0/19 195.74.192.0/19 195.95.0.0/17 195.207.0.0/16 195.238.0.0/19 212.233.0.0/19 212.239.128.0/17 213.49.0.0/16 213.177.128.0/19 213.181.32.0/19 217.136.0.0/16 IPv6: 2a02:a000::/26 2a04:6c40::/29 2a04:9f80::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 3304 5432 5488 28704 29005 Signature Algorithm: sha256WithRSAEncryption 1a:c1:2a:b1:b3:66:30:08:94:26:d1:98:95:19:62:09:3a:a3: 5e:02:28:79:44:d8:47:21:df:8f:27:cc:3d:cf:c5:2f:46:09: 32:88:b3:14:92:92:8b:1f:c3:cd:61:80:f1:15:bc:31:f8:c3: 44:9d:51:2a:18:88:de:da:65:51:f1:c5:4c:9c:9f:8e:e9:9e: 38:20:ac:52:7d:66:1a:31:70:2e:25:59:e2:35:f8:b0:4c:43: 98:89:64:8a:94:f8:ea:68:9d:98:74:1d:56:81:b2:e6:d9:02: b6:65:0a:f7:b8:09:68:c3:ab:3c:5b:27:ea:6f:18:25:75:22: 52:cc:bd:b4:b7:5c:a0:2a:0c:3b:86:3d:3f:a3:a8:7d:cf:6e: 38:fb:7d:25:95:1b:47:c9:36:c3:b9:18:cd:97:d9:f6:6c:bb: 4a:9f:16:32:19:06:b4:f1:c8:e0:0d:bf:04:7c:2d:1d:e2:0c: 24:13:c5:ca:71:ac:20:bb:1b:25:63:1b:e5:36:85:18:9f:36: 8d:e7:8f:4c:90:fc:c5:9a:41:24:12:23:8e:2a:40:fe:92:ee: 0b:38:0b:08:51:03:89:74:9f:82:f0:86:35:a3:2a:b1:c9:7d: 64:3c:b2:de:44:d5:61:b9:21:59:e1:3a:cf:83:29:ff:cf:e4: 9c:ca:66:b4 -----BEGIN CERTIFICATE----- MIIGoDCCBYigAwIBAgISAZt3xuN0cv2MqPLUWdd/0F1xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZGZhM2FmODM5YWExZGNlNzU4ZjQ4OWUyZDMxYWUyMjA5MmZjOTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bmd8PgQ/gpFan/wP1hKTptxDDYV 5Ox1i+70UaHzTpEtl5C7SyOAyZhtMWbgSrMhH1b1jW74PuJrSDtTMe0dFuoi0e7k ky1XMy+3cz8LFW1pKfm+p//B5i/osv7kqQ3KRcXBOwK7TycQcQiYY5/hW4dd3HYT idwFCYyjwhX4670uN6sviWbbTw2r5+eVMDTQVZHv5kGIfk2Hxb5kS44QOcZNB00U 4GtnhwATfLb7yJhKs2Rx+Qg5pL0l7OlY+1o/wYsSOqy1PnUWS19B6s/QDRuNeh1F OshiQvlKdTePqc5Qikvvew2FyfzYvG/3PAKj/IFmo1DT0XMa17SFjv/v9QIDAQAB o4IDrDCCA6gwHQYDVR0OBBYEFL36Ovg5qh3OdY9Ini0xriIJL8maMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkLzhjZGJj NS05MzY1LTRhMGMtYjlhMy1hZTc3NDZmMDk2MzAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGQvOGNkYmM1 LTkzNjUtNGEwYy1iOWEzLWFlNzc0NmYwOTYzMC8xL3ZmbzYtRG1xSGM1MWowaWVM VEd1SWdrdnlaby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBGgYIKwYB BQUHAQcBAf8EggEJMIIBBTCB5QQCAAEwgd4DAwAlPgMDASW4AwMBLrIDBAc+BIAD AwA+6wMDAVDIAwQHUOyAAwQHUQuAAwQHUakAAwMDUfADAwBThgMDAldAAwQHWMWA AwMDW7ADBANbvtADBAZcMIADAwRtgAMDAbKQAwQCuQJcAwMAvAUDBADBHC8DAwDB SgMEB8FLgAMEBcFbYAMDAMF5AwQBwfOIAwMAwk4DBAXCd+ADBAfDAAADBAXDDQAD BAXDSsADBAfDXwADAwDDzwMEBcPuAAMEBdTpAAMEB9TvgAMDANUxAwQF1bGAAwQF 1bUgAwMA2YgwGwQCAAIwFQMFBioCoAADBQMqBGxAAwUDKgSfgDApBggrBgEFBQcB CAEB/wQaMBigFjAUAgIM6AICFTgCAhVwAgJwIAICcU0wDQYJKoZIhvcNAQELBQAD ggEBABrBKrGzZjAIlCbRmJUZYgk6o14CKHlE2Ech348nzD3PxS9GCTKIsxSSkosf w81hgPEVvDH4w0SdUSoYiN7aZVHxxUycn47pnjggrFJ9ZhoxcC4lWeI1+LBMQ5iJ ZIqU+OponZh0HVaBsubZArZlCve4CWjDqzxbJ+pvGCV1IlLMvbS3XKAqDDuGPT+j qH3Pbjj7fSWVG0fJNsO5GM2X2fZsu0qfFjIZBrTxyOANvwR8LR3iDCQTxcpxrCC7 GyVjG+U2hRifNo3nj0yQ/MWaQSQSI44qQP6S7gs4CwhRA4l0n4LwhjWjKrHJfWQ8 st5E1WG5IVnhOs+DKf/P5JzKZrQ= -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:02 2026 by rpki-client