This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/LbYW860DY-cmnMLrWNG8CGzJdfI.cer File: LbYW860DY-cmnMLrWNG8CGzJdfI.cer (raw, json) Hash identifier: FUJt2/A64M53gEHErquX4FR5uIVuh65i+MdPd3dPi1E= Subject key identifier: 2D:B6:16:F3:AD:03:63:E7:26:9C:C2:EB:58:D1:BC:08:6C:C9:75:F2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC8729642B67BC2C8CAAAF6C939631D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/02/2a226d-c72c-4c12-bbba-a4b55a71c228/1/LbYW860DY-cmnMLrWNG8CGzJdfI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/02/2a226d-c72c-4c12-bbba-a4b55a71c228/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51056 IP: 109.233.192.0/21 IP: 185.64.236.0/22 IP: 2a02:1618::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:72:96:42:b6:7b:c2:c8:ca:aa:f6:c9:39:63:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2db616f3ad0363e7269cc2eb58d1bc086cc975f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:29:3b:dc:d7:31:34:37:56:60:85:16:62:2a: 65:c5:e4:1e:bd:a6:29:4f:c1:6c:c2:a5:a1:49:53: 53:54:2c:c8:ef:f8:6e:e8:56:67:6b:7c:9f:20:1a: 21:41:fb:29:f8:fd:32:da:5b:94:90:94:4f:4e:0e: bf:73:07:c6:c7:a0:10:75:43:07:f5:ea:e1:ef:9c: 08:6a:77:4d:40:bb:43:ae:4c:d5:9d:4f:f1:6c:d1: ee:c8:68:12:1f:83:93:e8:b3:dd:8f:89:92:ad:38: 13:5e:7d:55:2b:3c:cc:ae:32:1c:ca:19:a0:20:f3: e7:58:32:7d:cb:ad:5e:78:5a:e0:32:0b:68:43:81: 20:9f:5c:05:a1:bf:99:91:ca:38:c3:f9:90:c6:e0: 0e:26:3d:cc:73:b4:15:f1:32:92:ac:ca:7f:2f:ea: ce:5a:c3:5a:b6:50:5a:7b:33:3c:35:c8:cc:a5:cd: ea:50:49:62:5a:d8:d5:c5:f6:43:74:a0:47:ad:a2: 8c:7c:ee:62:de:34:33:cb:58:1a:58:96:6e:55:6f: 41:b4:c8:57:da:f3:f6:91:b7:74:19:f4:bc:78:65: 36:7c:13:94:d2:59:73:40:37:fb:9a:d5:4a:73:d2: fd:c9:e6:50:0c:a3:bb:75:f2:70:0b:42:21:ce:0a: 2b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B6:16:F3:AD:03:63:E7:26:9C:C2:EB:58:D1:BC:08:6C:C9:75:F2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/2a226d-c72c-4c12-bbba-a4b55a71c228/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/2a226d-c72c-4c12-bbba-a4b55a71c228/1/LbYW860DY-cmnMLrWNG8CGzJdfI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.233.192.0/21 185.64.236.0/22 IPv6: 2a02:1618::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51056 Signature Algorithm: sha256WithRSAEncryption 17:36:0b:81:c0:7b:38:db:7b:f4:0c:64:78:03:55:0f:0c:3f: 86:ae:69:94:02:7d:27:60:75:28:1e:5f:f5:50:fe:67:a7:7a: 58:86:16:c4:ee:eb:16:09:7e:64:05:70:dd:f3:5e:c2:4a:09: 55:22:90:24:a3:49:b1:81:8c:c1:bc:7f:d3:00:e9:68:ca:4f: 32:8c:62:17:7a:f8:87:0b:45:0f:75:32:c2:61:70:65:01:3e: 83:07:54:04:07:a8:44:ea:af:12:41:aa:c8:a7:10:0b:a8:8a: eb:09:29:00:e2:f0:3d:f5:ba:4c:87:d4:1f:78:34:ba:0e:8d: 2b:96:5b:97:47:85:15:a9:64:f0:c9:97:19:d1:78:18:cd:93: ab:d0:b3:7b:fc:f2:a0:04:23:ba:7c:68:e0:a1:db:a9:5e:59: 6c:48:0a:48:fe:d7:7a:ff:44:80:8e:d8:d1:a8:8f:7b:99:a3: 36:d2:5f:d6:e1:5f:05:b1:06:db:e1:b6:2a:87:54:68:45:0d: 73:73:a1:aa:46:54:58:0e:e3:7a:8a:d2:24:aa:ab:67:90:88: 6d:cd:56:cd:57:cf:e4:7f:c2:9a:00:08:0e:8c:bd:23:e2:58: 26:48:0e:38:25:e2:d9:6b:b6:73:01:1b:61:7c:15:fc:e1:b6: a1:51:e8:5f -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt6yHKWQrZ7wsjKqvbJOWMdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZGI2MTZmM2FkMDM2M2U3MjY5Y2MyZWI1OGQxYmMwODZjYzk3NWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCk73NcxNDdWYIUWYiplxeQevaYp T8FswqWhSVNTVCzI7/hu6FZna3yfIBohQfsp+P0y2luUkJRPTg6/cwfGx6AQdUMH 9erh75wIandNQLtDrkzVnU/xbNHuyGgSH4OT6LPdj4mSrTgTXn1VKzzMrjIcyhmg IPPnWDJ9y61eeFrgMgtoQ4Egn1wFob+Zkco4w/mQxuAOJj3Mc7QV8TKSrMp/L+rO WsNatlBaezM8NcjMpc3qUEliWtjVxfZDdKBHraKMfO5i3jQzy1gaWJZuVW9BtMhX 2vP2kbd0GfS8eGU2fBOU0llzQDf7mtVKc9L9yeZQDKO7dfJwC0IhzgorqwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFC22FvOtA2PnJpzC61jRvAhsyXXyMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAyLzJhMjI2 ZC1jNzJjLTRjMTItYmJiYS1hNGI1NWE3MWMyMjgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDIvMmEyMjZk LWM3MmMtNGMxMi1iYmJhLWE0YjU1YTcxYzIyOC8xL0xiWVc4NjBEWS1jbW5NTHJX Tkc4Q0d6SmRmSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDbenAAwQCuUDsMA0EAgACMAcDBQAqAhYYMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwDHcDANBgkqhkiG9w0BAQsFAAOCAQEAFzYL gcB7ONt79AxkeANVDww/hq5plAJ9J2B1KB5f9VD+Z6d6WIYWxO7rFgl+ZAVw3fNe wkoJVSKQJKNJsYGMwbx/0wDpaMpPMoxiF3r4hwtFD3UywmFwZQE+gwdUBAeoROqv EkGqyKcQC6iK6wkpAOLwPfW6TIfUH3g0ug6NK5Zbl0eFFalk8MmXGdF4GM2Tq9Cz e/zyoAQjunxo4KHbqV5ZbEgKSP7Xev9EgI7Y0aiPe5mjNtJf1uFfBbEG2+G2KodU aEUNc3OhqkZUWA7jeorSJKqrZ5CIbc1WzVfP5H/CmgAIDoy9I+JYJkgOOCXi2Wu2 cwEbYXwV/OG2oVHoXw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:50 2026 by rpki-client