This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HYKbXmBtyDxRcR35wiPYHYEe95g.cer File: HYKbXmBtyDxRcR35wiPYHYEe95g.cer (raw, json) Hash identifier: 8PMTuv/8LmmwD5yR9Blxtyct2QzrSNdBCsxPexQhOds= Subject key identifier: 1D:82:9B:5E:60:6D:C8:3C:51:71:1D:F9:C2:23:D8:1D:81:1E:F7:98 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BFC0828A689627F0207DB1221971C0EE6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/HYKbXmBtyDxRcR35wiPYHYEe95g.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Mon 26 Jan 2026 20:39:11 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204826 IP: 185.165.93.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:08:28:a6:89:62:7f:02:07:db:12:21:97:1c:0e:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 26 20:39:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d829b5e606dc83c51711df9c223d81d811ef798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1c:e0:6e:74:25:7e:29:1f:1e:df:05:10:97: 0b:d3:46:45:61:40:35:83:ec:3d:08:dc:31:49:aa: 33:55:f2:72:4d:b3:a3:1b:27:c3:fb:96:5b:c6:57: ab:a2:ef:d8:c5:b7:ec:ef:2b:2b:50:1d:8b:25:d3: 82:fa:d8:7d:47:6e:3f:60:35:15:71:97:bb:b6:e1: 0d:0a:a0:a2:ba:c8:2b:ab:4d:5c:51:52:83:ca:c8: 71:93:58:d0:68:97:48:6b:1c:f0:7d:4a:f0:5d:d7: ba:2d:3c:c0:0e:a5:e9:c3:f7:7c:17:6b:29:04:13: af:e0:c0:59:49:23:56:51:ee:db:46:46:18:99:77: a7:78:2a:35:db:5f:53:78:e5:e9:1f:79:eb:ad:b9: d8:3d:e7:fb:3c:6b:1e:8c:ac:77:4c:6b:57:71:8b: 7c:84:e2:90:3c:50:fa:73:a2:87:e2:07:22:21:18: 68:22:fe:e4:37:55:95:cc:88:de:fb:35:d9:70:eb: fb:cd:06:0a:d9:56:b0:fe:5c:04:91:40:5c:3c:a9: c8:c8:c3:6f:fb:7c:b0:74:cf:11:0e:5d:23:2b:ab: 64:4e:c8:9f:30:d1:49:31:7b:6f:51:f8:02:4a:01: 9c:bf:24:3e:81:6b:c6:b0:0c:08:7a:4d:f4:ee:08: 46:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:82:9B:5E:60:6D:C8:3C:51:71:1D:F9:C2:23:D8:1D:81:1E:F7:98 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/HYKbXmBtyDxRcR35wiPYHYEe95g.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.165.93.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204826 Signature Algorithm: sha256WithRSAEncryption a1:92:6a:99:bf:0d:e6:d6:d8:0c:10:3a:f6:45:36:00:e4:3d: cd:88:86:bf:b6:27:5b:80:cb:f7:52:47:20:5a:cb:7f:d0:f5: 38:e6:8f:06:7f:33:d0:b4:36:c8:3a:4f:0d:01:6e:b2:da:bc: fc:4f:a5:b3:c0:cc:53:53:ce:9b:09:21:d0:74:42:60:33:7c: 42:55:56:e6:f9:a6:f4:8b:31:33:8d:44:e8:d4:e6:bb:bc:76: fd:40:43:ec:56:0a:f9:1f:56:17:9b:97:a7:90:9c:5b:9b:c5: ec:58:56:76:9c:a7:dc:a3:d7:e1:57:ef:56:57:e0:dc:6e:6e: 40:e7:5b:bf:21:4e:f3:0f:37:3f:d6:51:00:6d:3a:68:ec:02: 65:c7:ba:b4:8a:3b:ac:8d:aa:23:1d:21:b8:a1:cd:06:7d:b5: 9b:7e:75:45:d9:82:d6:02:9b:af:62:86:3c:2b:3b:46:b4:2d: 21:91:e7:11:57:07:34:f3:53:bd:3e:ed:c3:8a:8a:49:fd:e4: 3e:d0:79:98:f7:48:f4:6b:04:1b:3a:be:a0:dc:8d:ca:88:33: c3:04:cd:ab:b8:7c:58:dd:bc:7f:75:0e:36:3c:1f:6c:47:8e: 10:ba:cc:11:1b:0b:32:2f:c8:7b:e0:06:a0:f7:91:17:00:d6: 91:b1:4f:90 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZv8CCimiWJ/AgfbEiGXHA7mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTI2MjAzOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDgyOWI1ZTYwNmRjODNjNTE3MTFkZjljMjIzZDgxZDgxMWVmNzk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBzgbnQlfikfHt8FEJcL00ZFYUA1 g+w9CNwxSaozVfJyTbOjGyfD+5Zbxlerou/Yxbfs7ysrUB2LJdOC+th9R24/YDUV cZe7tuENCqCiusgrq01cUVKDyshxk1jQaJdIaxzwfUrwXde6LTzADqXpw/d8F2sp BBOv4MBZSSNWUe7bRkYYmXeneCo1219TeOXpH3nrrbnYPef7PGsejKx3TGtXcYt8 hOKQPFD6c6KH4gciIRhoIv7kN1WVzIje+zXZcOv7zQYK2Vaw/lwEkUBcPKnIyMNv +3ywdM8RDl0jK6tkTsifMNFJMXtvUfgCSgGcvyQ+gWvGsAwIek307ghG3QIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFB2Cm15gbcg8UXEd+cIj2B2BHveYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IwLzdmOWZj My02MDFjLTQwNGUtYWQ0MS02ZGE4NTkzMTE2MGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAvN2Y5ZmMz LTYwMWMtNDA0ZS1hZDQxLTZkYTg1OTMxMTYwZi8xL0hZS2JYbUJ0eUR4UmNSMzV3 aVBZSFlFZTk1Zy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAuaVdMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMgGjANBgkqhkiG9w0BAQsFAAOCAQEAoZJqmb8N5tbYDBA69kU2AOQ9zYiGv7Yn W4DL91JHIFrLf9D1OOaPBn8z0LQ2yDpPDQFustq8/E+ls8DMU1POmwkh0HRCYDN8 QlVW5vmm9IsxM41E6NTmu7x2/UBD7FYK+R9WF5uXp5CcW5vF7FhWdpyn3KPX4Vfv Vlfg3G5uQOdbvyFO8w83P9ZRAG06aOwCZce6tIo7rI2qIx0huKHNBn21m351RdmC 1gKbr2KGPCs7RrQtIZHnEVcHNPNTvT7tw4qKSf3kPtB5mPdI9GsEGzq+oNyNyogz wwTNq7h8WN28f3UONjwfbEeOELrMERsLMi/Ie+AGoPeRFwDWkbFPkA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:33 2026 by rpki-client