This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2yXQP8GPL0LNpQOGneGU_YzCGqk.cer File: 2yXQP8GPL0LNpQOGneGU_YzCGqk.cer (raw, json) Hash identifier: XtG7TKTaA0iZhaOmaKv8Zl5gQzxcoyY/o1YMaty9WUk= Subject key identifier: DB:25:D0:3F:C1:8F:2F:42:CD:A5:03:86:9D:E1:94:FD:8C:C2:1A:A9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B36B23B4382518CEBA7A59EB92A4F44 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/2yXQP8GPL0LNpQOGneGU_YzCGqk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:19:00 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197192 IP: 195.226.213.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:b2:3b:43:82:51:8c:eb:a7:a5:9e:b9:2a:4f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db25d03fc18f2f42cda503869de194fd8cc21aa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:34:5f:cc:2e:03:cf:5f:93:70:8d:f4:4b:5e: c5:cc:3e:e5:3d:e1:e4:90:28:e2:b1:bd:a4:22:c3: af:2f:8e:b7:80:28:2b:79:e5:bc:b5:5d:44:ce:c4: 06:80:42:e6:42:e0:d4:f2:71:db:55:a6:6d:76:4b: 03:f1:0e:b3:cf:c3:ed:a9:4c:35:8a:85:82:fc:65: 3a:61:be:a3:a4:b4:be:77:36:7c:0c:7c:44:80:1a: 4a:58:10:41:7c:81:00:a7:b9:55:d6:fc:f0:97:70: 35:29:68:83:89:c8:30:71:fa:2d:e8:4e:52:a6:ef: ff:15:8c:e5:78:98:d2:27:65:85:1d:e2:78:12:84: 90:74:1e:d4:1d:20:3b:2c:f7:45:be:ad:59:a0:4c: 44:5b:6b:7f:44:97:1a:c2:62:43:bc:e4:74:e5:99: 5d:79:dc:e3:2b:93:d6:20:3a:83:29:d2:16:64:45: b6:46:64:b9:e8:c6:d8:f3:5c:02:be:34:8d:62:f0: 69:0c:50:16:e9:25:7c:4d:bb:68:9b:2d:e3:ba:40: d1:dd:68:f3:34:15:f9:18:98:9a:13:a2:9c:89:e6: 6c:a3:48:fe:c3:b1:fe:4e:26:2c:b4:d3:22:de:85: 28:08:dd:df:29:e5:62:22:61:8c:7a:36:a2:59:45: ab:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:25:D0:3F:C1:8F:2F:42:CD:A5:03:86:9D:E1:94:FD:8C:C2:1A:A9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/2yXQP8GPL0LNpQOGneGU_YzCGqk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.226.213.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 197192 Signature Algorithm: sha256WithRSAEncryption 4a:18:cc:1a:64:19:cb:41:cf:17:e6:0b:df:e1:5a:a6:b2:d5: d0:77:66:65:07:68:d2:7f:0d:02:05:a4:a1:7c:d7:5a:0b:e8: 0c:b8:44:a5:d4:7a:05:e4:6c:f5:c2:d3:af:eb:1e:37:1d:5a: 7f:10:e7:ab:b4:80:de:59:58:a8:c7:4e:78:03:f5:b8:6b:2d: d6:31:55:3a:33:17:a4:23:59:53:80:4d:0f:d3:78:df:7f:45: 7e:3b:0d:32:93:6a:ef:84:f8:a9:10:ac:b1:25:98:1d:d7:d2: 84:8a:8c:a4:c6:0c:3b:60:fb:c0:3f:e2:92:3c:3c:7a:76:ae: 9f:c9:36:c6:93:41:54:1f:16:6a:25:90:c0:c0:fa:ad:4c:67: 51:82:f7:7d:46:dd:16:0a:97:87:59:5c:d8:07:ef:26:de:4a: 6e:1c:3c:3c:0c:2b:bb:6e:9c:4e:9b:b7:bf:14:39:51:eb:91: 03:b3:2c:e0:21:e1:4d:16:1f:33:73:2b:9b:57:64:7e:bc:30: 80:d3:17:90:2f:8a:17:ad:9f:b3:c3:6c:d1:f3:62:4c:6d:79: f5:1d:24:9b:a5:c4:27:84:de:9d:21:df:86:13:e9:33:77:07: 14:91:a5:48:de:7f:9b:9c:78:b9:ca:59:d5:92:97:09:65:58: f3:7c:0a:b5 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt7NrI7Q4JRjOunpZ65Kk9EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjI1ZDAzZmMxOGYyZjQyY2RhNTAzODY5ZGUxOTRmZDhjYzIxYWE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjRfzC4Dz1+TcI30S17FzD7lPeHk kCjisb2kIsOvL463gCgreeW8tV1EzsQGgELmQuDU8nHbVaZtdksD8Q6zz8PtqUw1 ioWC/GU6Yb6jpLS+dzZ8DHxEgBpKWBBBfIEAp7lV1vzwl3A1KWiDicgwcfot6E5S pu//FYzleJjSJ2WFHeJ4EoSQdB7UHSA7LPdFvq1ZoExEW2t/RJcawmJDvOR05Zld edzjK5PWIDqDKdIWZEW2RmS56MbY81wCvjSNYvBpDFAW6SV8Tbtomy3jukDR3Wjz NBX5GJiaE6KcieZso0j+w7H+TiYstNMi3oUoCN3fKeViImGMejaiWUWrmwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFNsl0D/Bjy9CzaUDhp3hlP2MwhqpMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IwLzVjMjJj Ni03ZGMzLTRjOGMtODJhYy05MzYxNzVhZDJlYjAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAvNWMyMmM2 LTdkYzMtNGM4Yy04MmFjLTkzNjE3NWFkMmViMC8xLzJ5WFFQOEdQTDBMTnBRT0du ZUdVX1l6Q0dxay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAw+LVMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMCSDANBgkqhkiG9w0BAQsFAAOCAQEAShjMGmQZy0HPF+YL3+FaprLV0HdmZQdo 0n8NAgWkoXzXWgvoDLhEpdR6BeRs9cLTr+seNx1afxDnq7SA3llYqMdOeAP1uGst 1jFVOjMXpCNZU4BND9N4339FfjsNMpNq74T4qRCssSWYHdfShIqMpMYMO2D7wD/i kjw8enaun8k2xpNBVB8WaiWQwMD6rUxnUYL3fUbdFgqXh1lc2AfvJt5Kbhw8PAwr u26cTpu3vxQ5UeuRA7Ms4CHhTRYfM3Mrm1dkfrwwgNMXkC+KF62fs8Ns0fNiTG15 9R0km6XEJ4TenSHfhhPpM3cHFJGlSN5/m5x4ucpZ1ZKXCWVY83wKtQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:42 2026 by rpki-client