This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DY_I34T78qtAQS5tSt_3wbhKWy8.cer File: DY_I34T78qtAQS5tSt_3wbhKWy8.cer (raw, json) Hash identifier: g4UsDTjlM+N91qylLUn15WMhUjwXoTumlhRGtHfxvcE= Subject key identifier: 0D:8F:C8:DF:84:FB:F2:AB:40:41:2E:6D:4A:DF:F7:C1:B8:4A:5B:2F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE5CEABE2AC9FF542440687AD55AF6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b3/ece2eb-83fa-476b-ab98-688762bb985e/1/DY_I34T78qtAQS5tSt_3wbhKWy8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b3/ece2eb-83fa-476b-ab98-688762bb985e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:19:14 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208985 IP: 2001:67c:914::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:5c:ea:be:2a:c9:ff:54:24:40:68:7a:d5:5a:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d8fc8df84fbf2ab40412e6d4adff7c1b84a5b2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:92:b2:14:0f:67:de:2e:3a:02:ba:a2:32:a0: e9:48:f9:b9:9f:1e:06:df:23:00:e6:dc:0d:01:e9: 70:41:f0:b6:2f:80:e1:01:6a:7f:07:6b:ae:84:4d: 1a:b0:07:0a:5b:1b:f9:75:e8:a9:f3:86:75:df:1d: 65:f0:3d:68:ab:cf:29:89:2d:5f:3f:6d:27:5c:4a: 87:6e:a0:bf:57:a1:c5:7b:80:28:48:08:28:fd:b5: 3f:cc:3a:40:76:90:c2:51:0c:3a:38:ae:2f:ee:de: fd:c2:c9:33:4c:b3:f7:fe:12:78:e2:56:c8:b6:02: f6:42:d2:73:7e:71:ec:84:33:08:1d:cd:64:b9:ae: 8e:29:fd:67:01:41:f8:0a:12:82:15:94:92:01:40: 84:72:89:13:81:9b:4d:24:08:dc:c3:4a:e1:0a:66: 8c:d8:1d:42:9c:c1:1e:0b:b6:13:f4:50:6f:83:60: 7b:cf:c7:c0:4b:65:74:44:94:bd:52:dd:af:3c:74: 90:39:01:57:fd:97:5c:05:8d:3b:1d:1c:2b:8a:07: 21:75:d1:68:dd:73:71:4e:49:3c:cc:15:4b:02:cb: bd:1e:02:d3:4a:1b:46:00:f2:11:34:43:44:21:fc: c3:2d:ef:22:db:f2:d0:d0:64:99:8e:10:d3:0e:cb: dd:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8F:C8:DF:84:FB:F2:AB:40:41:2E:6D:4A:DF:F7:C1:B8:4A:5B:2F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ece2eb-83fa-476b-ab98-688762bb985e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ece2eb-83fa-476b-ab98-688762bb985e/1/DY_I34T78qtAQS5tSt_3wbhKWy8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:914::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208985 Signature Algorithm: sha256WithRSAEncryption 1c:2b:c6:d2:4a:de:b7:8a:a7:93:38:9c:41:fc:b9:7f:d1:4b: a7:87:a5:40:94:0a:8d:e9:b3:96:04:08:c6:a4:91:ed:99:e2: d0:05:02:bd:0a:8e:46:6e:91:b8:c1:2b:74:79:2d:06:ad:49: 5b:34:ed:2a:3e:71:5d:ed:73:9a:4f:31:a8:4f:1b:81:d7:6a: 0b:93:a5:aa:86:2b:66:ee:4f:68:cd:f8:27:9e:65:ab:92:11: af:06:8d:be:84:2c:b2:7d:95:93:f0:86:78:96:9d:78:44:46: c2:ba:3f:e1:22:8c:3f:fe:c3:22:3b:13:af:e5:cd:0f:98:e3: cf:13:5a:f9:e8:65:40:98:7f:24:84:b9:85:14:4b:dc:8d:e0: c7:ff:c8:56:48:e5:21:6c:9d:3a:21:6a:c1:5d:57:ab:82:a7: 19:bb:99:a0:04:dc:06:a7:47:8c:42:df:5d:7d:24:d7:1e:46: cc:67:f1:dc:83:ae:3a:f3:f9:61:64:89:6f:dd:3f:de:62:5a: 58:9f:e9:2c:f2:e5:25:79:4e:c8:bd:83:66:3e:9a:08:76:7f: f7:2a:38:2b:83:d0:9e:01:1b:ac:41:61:c8:2a:87:cf:d5:85: 27:a9:46:c4:1a:7a:9d:36:71:25:d6:bd:86:b6:e1:31:92:c2: 9a:35:65:15 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt87lzqvirJ/1QkQGh61Vr2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDhmYzhkZjg0ZmJmMmFiNDA0MTJlNmQ0YWRmZjdjMWI4NGE1YjJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZKyFA9n3i46ArqiMqDpSPm5nx4G 3yMA5twNAelwQfC2L4DhAWp/B2uuhE0asAcKWxv5deip84Z13x1l8D1oq88piS1f P20nXEqHbqC/V6HFe4AoSAgo/bU/zDpAdpDCUQw6OK4v7t79wskzTLP3/hJ44lbI tgL2QtJzfnHshDMIHc1kua6OKf1nAUH4ChKCFZSSAUCEcokTgZtNJAjcw0rhCmaM 2B1CnMEeC7YT9FBvg2B7z8fAS2V0RJS9Ut2vPHSQOQFX/ZdcBY07HRwrigchddFo 3XNxTkk8zBVLAsu9HgLTShtGAPIRNENEIfzDLe8i2/LQ0GSZjhDTDsvd6wIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFA2PyN+E+/KrQEEubUrf98G4SlsvMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IzL2VjZTJl Yi04M2ZhLTQ3NmItYWI5OC02ODg3NjJiYjk4NWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMvZWNlMmVi LTgzZmEtNDc2Yi1hYjk4LTY4ODc2MmJiOTg1ZS8xL0RZX0kzNFQ3OHF0QVFTNXRT dF8zd2JoS1d5OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAkUMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMwWTANBgkqhkiG9w0BAQsFAAOCAQEAHCvG0kret4qnkzicQfy5f9FLp4el QJQKjemzlgQIxqSR7Zni0AUCvQqORm6RuMErdHktBq1JWzTtKj5xXe1zmk8xqE8b gddqC5OlqoYrZu5PaM34J55lq5IRrwaNvoQssn2Vk/CGeJadeERGwro/4SKMP/7D IjsTr+XND5jjzxNa+ehlQJh/JIS5hRRL3I3gx//IVkjlIWydOiFqwV1Xq4KnGbuZ oATcBqdHjELfXX0k1x5GzGfx3IOuOvP5YWSJb90/3mJaWJ/pLPLlJXlOyL2DZj6a CHZ/9yo4K4PQngEbrEFhyCqHz9WFJ6lGxBp6nTZxJda9hrbhMZLCmjVlFQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:22 2026 by rpki-client