This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/w6SfZaPWgMQo_ZTWfmWicJ8Cks8.cer File: w6SfZaPWgMQo_ZTWfmWicJ8Cks8.cer (raw, json) Hash identifier: IGTr1t4DIifXY9dTXus/791qN4cqsHJVjNTjPW5bsV4= Subject key identifier: C3:A4:9F:65:A3:D6:80:C4:28:FD:94:D6:7E:65:A2:70:9F:02:92:CF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F8306F5E8E8BA47202E622EF1D26E30 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/09/04e8dd-de3c-47fa-a024-f33797e39bb2/1/w6SfZaPWgMQo_ZTWfmWicJ8Cks8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/09/04e8dd-de3c-47fa-a024-f33797e39bb2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:20:52 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 31043 IP: 185.117.112.0/22 IP: 195.47.232.0/24 IP: 2a0c:3180::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:06:f5:e8:e8:ba:47:20:2e:62:2e:f1:d2:6e:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:20:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c3a49f65a3d680c428fd94d67e65a2709f0292cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:33:61:4e:13:3f:11:4e:e8:77:ae:a5:bc:f8: 0f:77:62:84:c7:53:46:e2:65:97:d3:c9:34:3b:dd: 89:93:a9:fc:66:7b:50:f0:c1:f8:29:26:dd:d0:02: a1:8e:7e:0f:6e:fe:08:4a:f8:4e:d5:c1:1e:28:94: be:53:e0:2a:b1:a1:ee:c8:4d:d8:92:bb:3a:16:dc: 5b:af:09:0c:82:97:15:96:d0:d7:57:9c:32:a8:64: cd:43:bf:9e:ad:3e:76:2d:b0:84:5f:dc:19:3d:44: 76:58:c0:57:d3:a4:51:59:14:58:67:dc:ee:5c:d4: 92:d3:27:2d:59:7a:8f:3f:72:2f:9e:a5:03:5f:81: b4:fd:a3:7b:6b:ad:6f:21:a1:57:62:72:b3:fb:2c: 78:2e:ea:49:fb:ac:9e:ca:cc:76:dd:fd:ec:fc:2f: 44:11:d0:d0:e3:03:20:54:2c:12:a9:16:6e:4d:a2: dc:2f:d8:53:b9:e8:e7:87:05:b0:e9:d7:7a:de:52: d2:3b:80:31:5f:13:79:78:56:4a:07:63:4e:50:8e: b6:73:11:2a:79:ab:43:57:8a:2a:c0:f5:90:09:8d: 19:97:b9:f3:0f:10:80:11:c6:2e:49:27:6e:8f:e1: 21:3e:8a:c2:4b:8f:a2:11:34:6e:7a:4b:28:ec:91: b6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A4:9F:65:A3:D6:80:C4:28:FD:94:D6:7E:65:A2:70:9F:02:92:CF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/04e8dd-de3c-47fa-a024-f33797e39bb2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/04e8dd-de3c-47fa-a024-f33797e39bb2/1/w6SfZaPWgMQo_ZTWfmWicJ8Cks8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.117.112.0/22 195.47.232.0/24 IPv6: 2a0c:3180::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 31043 Signature Algorithm: sha256WithRSAEncryption 93:cb:41:b4:84:00:92:9d:84:94:cf:e0:f6:7c:34:c3:65:09: 26:69:89:3d:15:e1:f2:9d:db:af:d3:57:c1:22:5d:f1:41:66: 61:47:c6:95:31:fa:9d:2b:1d:0d:4e:40:19:29:87:e0:9a:b4: 6b:db:c1:38:b0:2f:2c:fd:db:fc:62:26:91:20:5c:51:c5:9f: 8a:c4:94:44:6b:da:3c:95:33:f3:7d:39:14:67:67:54:45:ad: 55:b5:68:55:90:c6:7b:38:69:6a:a4:7a:27:a1:53:0f:7f:47: 19:40:d7:6d:ce:ba:06:67:9e:4d:80:19:fc:dc:7e:4d:de:83: ee:9e:26:8f:a0:73:c4:fe:3f:6a:fe:df:31:8c:f3:10:9c:45: 7c:e0:20:8d:36:30:b6:0b:f9:c2:4d:21:b8:6b:4c:c1:e6:a6: 75:a4:47:38:22:4d:6d:10:d0:01:07:8b:fe:c4:64:60:f6:fe: ed:19:db:f2:c2:32:44:3a:6a:05:02:a8:54:43:dc:f1:fe:73: 00:81:1d:57:22:56:b8:08:0b:2f:29:de:4c:e8:ee:9c:e4:06: 1b:16:35:68:76:fa:09:ae:72:87:2a:2f:0f:6c:6f:d8:7b:00: 5c:e7:14:2c:97:43:bc:75:05:24:5c:26:90:3b:c2:8d:c6:92: 3f:c4:a6:2a -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt/gwb16Oi6RyAuYi7x0m4wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMDUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjM2E0OWY2NWEzZDY4MGM0MjhmZDk0ZDY3ZTY1YTI3MDlmMDI5MmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhjNhThM/EU7od66lvPgPd2KEx1NG 4mWX08k0O92Jk6n8ZntQ8MH4KSbd0AKhjn4Pbv4ISvhO1cEeKJS+U+AqsaHuyE3Y krs6FtxbrwkMgpcVltDXV5wyqGTNQ7+erT52LbCEX9wZPUR2WMBX06RRWRRYZ9zu XNSS0yctWXqPP3IvnqUDX4G0/aN7a61vIaFXYnKz+yx4LupJ+6yeysx23f3s/C9E EdDQ4wMgVCwSqRZuTaLcL9hTuejnhwWw6dd63lLSO4AxXxN5eFZKB2NOUI62cxEq eatDV4oqwPWQCY0Zl7nzDxCAEcYuSSduj+EhPorCS4+iETRuekso7JG29wIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFMOkn2Wj1oDEKP2U1n5lonCfApLPMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA5LzA0ZThk ZC1kZTNjLTQ3ZmEtYTAyNC1mMzM3OTdlMzliYjIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkvMDRlOGRk LWRlM2MtNDdmYS1hMDI0LWYzMzc5N2UzOWJiMi8xL3c2U2ZaYVBXZ01Rb19aVFdm bVdpY0o4Q2tzOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQCuXVwAwQAwy/oMA0EAgACMAcDBQMqDDGAMBkG CCsGAQUFBwEIAQH/BAowCKAGMAQCAnlDMA0GCSqGSIb3DQEBCwUAA4IBAQCTy0G0 hACSnYSUz+D2fDTDZQkmaYk9FeHynduv01fBIl3xQWZhR8aVMfqdKx0NTkAZKYfg mrRr28E4sC8s/dv8YiaRIFxRxZ+KxJREa9o8lTPzfTkUZ2dURa1VtWhVkMZ7OGlq pHonoVMPf0cZQNdtzroGZ55NgBn83H5N3oPuniaPoHPE/j9q/t8xjPMQnEV84CCN NjC2C/nCTSG4a0zB5qZ1pEc4Ik1tENABB4v+xGRg9v7tGdvywjJEOmoFAqhUQ9zx /nMAgR1XIla4CAsvKd5M6O6c5AYbFjVodvoJrnKHKi8PbG/YewBc5xQsl0O8dQUk XCaQO8KNxpI/xKYq -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:28 2026 by rpki-client