This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2YJ5FzbN3dEyjQ3Q3srpLAWNbyU.cer File: 2YJ5FzbN3dEyjQ3Q3srpLAWNbyU.cer (raw, json) Hash identifier: hHjV2ZgUiO101CVrs93EhGtf+BB0rYGPQtM4HZHRpT0= Subject key identifier: D9:82:79:17:36:CD:DD:D1:32:8D:0D:D0:DE:CA:E9:2C:05:8D:6F:25 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5AC8E4AAA96B2EFB1DBB78182E4E5A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d0/c213d4-3e4a-49e6-9b1f-ca6a1cc81a22/1/2YJ5FzbN3dEyjQ3Q3srpLAWNbyU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d0/c213d4-3e4a-49e6-9b1f-ca6a1cc81a22/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206389 IP: 185.173.216.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:c8:e4:aa:a9:6b:2e:fb:1d:bb:78:18:2e:4e:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d982791736cdddd1328d0dd0decae92c058d6f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ac:48:a7:da:64:c8:88:1b:91:4f:36:b7:44: ab:1b:a5:23:25:d5:20:47:5f:6e:31:49:e9:7d:34: 46:30:6d:38:7f:81:da:93:e3:90:9a:45:cd:6a:c5: 10:5e:03:25:31:72:21:96:86:60:5e:01:dc:3b:3d: 97:43:d4:5a:a1:9f:d9:3f:eb:85:e3:1d:d6:88:c7: b6:a8:a2:f0:06:93:0b:92:49:69:68:8b:79:55:2e: 00:9e:93:02:45:33:4f:07:48:e3:09:52:68:8f:37: ad:18:cd:46:2a:80:ce:9e:98:58:56:bb:60:b9:78: ef:41:01:c1:14:5b:38:50:53:ad:6e:6a:8b:14:02: 98:bb:6d:bd:8f:98:93:3b:8e:44:4d:2a:83:8b:41: 9f:fd:0d:80:10:17:8e:32:34:ac:e0:fd:bb:86:e7: 4d:3b:57:f8:ef:62:b4:c3:39:5c:f0:e9:42:ac:36: 96:7b:f6:ab:e8:78:48:f4:4f:b0:31:a7:f3:ff:41: 4c:4f:8f:bb:11:99:5d:96:81:80:d8:c6:df:24:4b: bf:d1:cf:b4:a2:df:1a:88:4a:ce:90:b0:6f:eb:4c: dd:84:07:6e:d7:45:b3:c3:4d:3d:4c:29:73:2e:7a: e2:ec:10:ef:d2:5a:0c:9b:62:03:15:9a:05:d6:9c: ce:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:82:79:17:36:CD:DD:D1:32:8D:0D:D0:DE:CA:E9:2C:05:8D:6F:25 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c213d4-3e4a-49e6-9b1f-ca6a1cc81a22/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c213d4-3e4a-49e6-9b1f-ca6a1cc81a22/1/2YJ5FzbN3dEyjQ3Q3srpLAWNbyU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.173.216.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206389 Signature Algorithm: sha256WithRSAEncryption 0c:ae:c2:48:6c:67:e8:e2:3c:d4:23:97:23:f3:ac:c1:ac:b7: 38:1a:21:f6:9a:66:bb:8f:64:c7:08:19:1c:0b:cf:e2:5a:a6: 99:99:98:d7:db:19:3e:ab:c4:47:98:68:ee:65:77:74:74:61: 40:78:bf:d8:ce:74:b4:94:56:1e:49:2d:cd:72:af:63:9e:4c: 4b:f7:8f:90:fb:7d:a5:31:8b:d9:5c:1f:b4:31:7f:bb:a2:f8: 2f:30:2e:72:66:b7:ed:66:23:ce:16:42:64:35:73:bd:91:cc: 55:63:6f:5e:8b:bb:bd:e2:f6:27:e9:71:25:51:a1:f4:a1:94: 7d:ef:9a:08:eb:89:8d:78:3f:23:ca:1d:66:5d:8a:2d:d2:62: 8b:68:40:04:98:1f:bc:d1:53:fe:bf:ed:2c:5c:c2:0a:c1:e7: 21:66:ae:a0:48:7d:08:b0:14:74:9b:24:08:2e:96:bd:86:88: 92:b9:ff:e3:16:b3:79:11:bb:81:b6:e0:c4:85:6c:d0:ee:2b: 81:fd:e4:58:ed:b7:c8:ff:b4:1b:11:42:a6:c1:58:b8:cf:60: 68:32:ea:09:06:8d:90:e6:1a:c7:be:20:6b:cc:95:b6:c0:38: 51:a7:b3:3b:06:a4:59:1d:08:31:ab:9a:5b:b1:43:81:59:9a: 19:35:f7:3a -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt6WsjkqqlrLvsdu3gYLk5aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTgyNzkxNzM2Y2RkZGQxMzI4ZDBkZDBkZWNhZTkyYzA1OGQ2ZjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1axIp9pkyIgbkU82t0SrG6UjJdUg R19uMUnpfTRGMG04f4Hak+OQmkXNasUQXgMlMXIhloZgXgHcOz2XQ9RaoZ/ZP+uF 4x3WiMe2qKLwBpMLkklpaIt5VS4AnpMCRTNPB0jjCVJojzetGM1GKoDOnphYVrtg uXjvQQHBFFs4UFOtbmqLFAKYu229j5iTO45ETSqDi0Gf/Q2AEBeOMjSs4P27hudN O1f472K0wzlc8OlCrDaWe/ar6HhI9E+wMafz/0FMT4+7EZldloGA2MbfJEu/0c+0 ot8aiErOkLBv60zdhAdu10Wzw009TClzLnri7BDv0loMm2IDFZoF1pzO6QIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFNmCeRc2zd3RMo0N0N7K6SwFjW8lMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QwL2MyMTNk NC0zZTRhLTQ5ZTYtOWIxZi1jYTZhMWNjODFhMjIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAvYzIxM2Q0 LTNlNGEtNDllNi05YjFmLWNhNmExY2M4MWEyMi8xLzJZSjVGemJOM2RFeWpRM1Ez c3JwTEFXTmJ5VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCua3YMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMmNTANBgkqhkiG9w0BAQsFAAOCAQEADK7CSGxn6OI81COXI/Osway3OBoh9ppm u49kxwgZHAvP4lqmmZmY19sZPqvER5ho7mV3dHRhQHi/2M50tJRWHkktzXKvY55M S/ePkPt9pTGL2VwftDF/u6L4LzAucma37WYjzhZCZDVzvZHMVWNvXou7veL2J+lx JVGh9KGUfe+aCOuJjXg/I8odZl2KLdJii2hABJgfvNFT/r/tLFzCCsHnIWauoEh9 CLAUdJskCC6WvYaIkrn/4xazeRG7gbbgxIVs0O4rgf3kWO23yP+0GxFCpsFYuM9g aDLqCQaNkOYax74ga8yVtsA4UaezOwakWR0IMauaW7FDgVmaGTX3Og== -----END CERTIFICATE-----Generated at Tue Feb 10 05:54:33 2026 by rpki-client