This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1Gyb5Gy6MFEGYjPKT5Yoom34_Mo.cer File: 1Gyb5Gy6MFEGYjPKT5Yoom34_Mo.cer (raw, json) Hash identifier: To+NdLJGKYnIg/oxbC0PYV9opOMQ8otPkwEZsKyxW5I= Subject key identifier: D4:6C:9B:E4:6C:BA:30:51:06:62:33:CA:4F:96:28:A2:6D:F8:FC:CA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F80C85359E2CE1DD8E22D1C9D58E0E9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb2dc-da06-467b-b312-73c8671a90f6/1/1Gyb5Gy6MFEGYjPKT5Yoom34_Mo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb2dc-da06-467b-b312-73c8671a90f6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:18:24 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43956 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:80:c8:53:59:e2:ce:1d:d8:e2:2d:1c:9d:58:e0:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d46c9be46cba3051066233ca4f9628a26df8fcca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a2:10:59:fa:26:bf:b4:14:44:4a:6d:6a:cc: f0:a9:d1:28:83:0f:f8:36:51:7c:76:bb:28:cf:d7: b4:db:a5:72:a5:91:82:56:3f:ce:84:48:26:c1:62: b9:b7:bf:26:c2:73:d2:c4:bd:f8:70:7b:41:5e:4b: 3b:e7:c8:8e:9b:ac:7d:fa:54:4b:23:2f:57:0e:21: 5c:2c:0d:74:e6:d0:07:31:cc:7e:fc:d3:af:eb:23: 91:21:d9:bb:f1:23:e2:ee:a7:36:bf:77:74:16:47: 95:e3:99:86:3b:58:ac:e7:8f:cd:f9:d2:f4:9a:f7: 5f:ef:82:05:8a:c1:75:94:e3:40:1d:2c:71:de:13: f2:a3:c2:c9:27:d4:b1:c3:24:8e:32:81:14:d7:38: 38:00:0a:b7:8e:9c:8c:80:69:cc:2d:a9:c3:92:34: 4a:98:10:d0:be:8d:1c:da:19:fd:0a:35:d6:d3:b3: 45:75:92:18:70:72:3b:bd:95:56:44:09:e6:57:73: e4:b2:87:4b:fb:37:86:af:69:6b:2e:87:8b:6b:52: 5e:de:ea:fe:0f:ad:f7:22:76:06:75:d4:c2:a6:26: 11:fa:c3:1c:f1:60:b8:b8:f6:ac:6d:fa:02:ca:a9: 1d:51:c9:f7:4e:94:32:d0:96:cf:aa:c2:43:a9:a6: 02:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:6C:9B:E4:6C:BA:30:51:06:62:33:CA:4F:96:28:A2:6D:F8:FC:CA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb2dc-da06-467b-b312-73c8671a90f6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb2dc-da06-467b-b312-73c8671a90f6/1/1Gyb5Gy6MFEGYjPKT5Yoom34_Mo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 43956 Signature Algorithm: sha256WithRSAEncryption 20:2d:2f:0a:13:48:d3:a3:f0:69:2a:a6:af:26:87:fa:16:e0: 41:e4:23:a0:63:82:af:43:34:66:6d:16:d7:7c:22:07:5f:99: e1:b7:a8:0e:0b:3c:9e:e3:aa:03:cc:3b:4f:a3:43:4f:c9:72: f9:a5:e3:e0:ce:07:ce:b2:24:6a:b3:f9:04:9c:64:9e:b8:3d: 53:d0:5b:32:0f:95:e0:42:60:28:17:59:14:25:eb:52:3b:c0: d0:bc:70:d1:b5:3c:ec:c8:5d:22:3b:99:34:bc:48:6f:ef:30: a9:5e:7a:25:cc:af:12:dd:e7:c2:60:db:eb:43:2a:34:b2:fc: 22:08:de:59:e2:cb:87:f2:aa:dc:5b:90:db:34:ee:e4:4a:ff: 2f:78:85:c2:a0:af:cc:ba:34:61:51:06:03:ec:a2:47:f8:f0: 7d:97:14:b7:4c:64:28:e9:3a:ec:5f:7a:8a:88:c3:7b:1a:91: 7c:6c:e9:31:20:2b:59:b2:97:b5:a9:10:4f:9c:14:06:e8:ec: ba:4f:2c:42:bf:0f:77:7f:e4:9e:3c:11:38:ba:6e:22:5c:ae: dd:62:bb:74:99:ec:47:d5:86:0a:0f:8e:a6:1f:00:d9:dc:d3: bc:f7:f8:86:ad:e7:a0:da:fd:77:97:8c:5a:9d:32:f5:01:b5: 3f:13:a6:11 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt/gMhTWeLOHdjiLRydWODpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNDZjOWJlNDZjYmEzMDUxMDY2MjMzY2E0Zjk2MjhhMjZkZjhmY2NhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaIQWfomv7QUREptaszwqdEogw/4 NlF8drsoz9e026VypZGCVj/OhEgmwWK5t78mwnPSxL34cHtBXks758iOm6x9+lRL Iy9XDiFcLA105tAHMcx+/NOv6yORIdm78SPi7qc2v3d0FkeV45mGO1is54/N+dL0 mvdf74IFisF1lONAHSxx3hPyo8LJJ9SxwySOMoEU1zg4AAq3jpyMgGnMLanDkjRK mBDQvo0c2hn9CjXW07NFdZIYcHI7vZVWRAnmV3PksodL+zeGr2lrLoeLa1Je3ur+ D633InYGddTCpiYR+sMc8WC4uPasbfoCyqkdUcn3TpQy0JbPqsJDqaYClQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFNRsm+RsujBRBmIzyk+WKKJt+PzKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA1L2RiYjJk Yy1kYTA2LTQ2N2ItYjMxMi03M2M4NjcxYTkwZjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUvZGJiMmRj LWRhMDYtNDY3Yi1iMzEyLTczYzg2NzFhOTBmNi8xLzFHeWI1R3k2TUZFR1lqUEtU NVlvb20zNF9Nby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCrtDANBgkqhkiG9w0BAQsFAAOCAQEAIC0vChNI06Pw aSqmryaH+hbgQeQjoGOCr0M0Zm0W13wiB1+Z4beoDgs8nuOqA8w7T6NDT8ly+aXj 4M4HzrIkarP5BJxknrg9U9BbMg+V4EJgKBdZFCXrUjvA0Lxw0bU87MhdIjuZNLxI b+8wqV56JcyvEt3nwmDb60MqNLL8IgjeWeLLh/Kq3FuQ2zTu5Er/L3iFwqCvzLo0 YVEGA+yiR/jwfZcUt0xkKOk67F96iojDexqRfGzpMSArWbKXtakQT5wUBujsuk8s Qr8Pd3/knjwROLpuIlyu3WK7dJnsR9WGCg+Oph8A2dzTvPf4hq3noNr9d5eMWp0y 9QG1PxOmEQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:12 2026 by rpki-client