This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MyKT0DmRYHiLMeQ4dg3DvR7Ygus.cer File: MyKT0DmRYHiLMeQ4dg3DvR7Ygus.cer (raw, json) Hash identifier: UTjW4IZVlLzziKobv5Stp4+6PKXpSMXIyGjOk76JHFk= Subject key identifier: 33:22:93:D0:39:91:60:78:8B:31:E4:38:76:0D:C3:BD:1E:D8:82:EB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F157AB102D9D1F3FFF680E3F0C17178 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/c8b1e5-7b95-4ca7-b2ba-222fe348268a/1/MyKT0DmRYHiLMeQ4dg3DvR7Ygus.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/c8b1e5-7b95-4ca7-b2ba-222fe348268a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 196681 IP: 95.215.192.0/21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:7a:b1:02:d9:d1:f3:ff:f6:80:e3:f0:c1:71:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=332293d0399160788b31e438760dc3bd1ed882eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d1:97:25:50:25:1e:3c:64:23:9e:23:16:73: 6f:9b:89:54:de:8f:87:51:d3:b6:68:74:a5:57:33: fb:63:e4:b3:b3:23:35:ba:8c:a1:90:a9:38:82:09: a9:35:b0:d7:b0:2f:12:40:8d:b9:c3:79:9e:97:f8: 78:e4:bc:de:df:ad:98:0e:05:fe:83:0d:01:e1:4d: 82:8c:cf:4f:11:81:24:e3:78:1b:3b:2f:a2:bc:f2: d1:7f:83:28:98:6c:1a:d0:4c:37:99:96:4f:e8:e1: f3:fd:c8:ff:18:f7:6f:3e:30:8c:93:50:92:99:cd: 54:c0:3d:e4:c2:83:9e:f0:62:0c:ff:9c:2e:85:0a: 18:5a:0c:6d:02:38:43:9b:c9:d4:84:bc:6f:a3:04: eb:f6:5f:7c:05:83:ae:96:d4:e3:57:be:12:28:70: b4:7c:71:38:25:23:50:e9:67:49:3b:6d:10:f1:9c: 3f:d9:c9:03:d0:73:00:1d:6d:8d:3a:8d:2c:58:a0: 10:73:a7:09:5f:0a:31:ae:fe:52:ee:c9:22:ae:af: 29:8a:87:2b:07:8f:50:cb:2c:18:01:39:b4:55:51: 35:2e:aa:08:1d:32:73:57:b7:fa:89:dd:cd:dd:69: 91:36:fe:04:e5:81:4a:1e:57:d8:c3:fe:51:d6:65: 7c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:22:93:D0:39:91:60:78:8B:31:E4:38:76:0D:C3:BD:1E:D8:82:EB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/c8b1e5-7b95-4ca7-b2ba-222fe348268a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/c8b1e5-7b95-4ca7-b2ba-222fe348268a/1/MyKT0DmRYHiLMeQ4dg3DvR7Ygus.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.215.192.0/21 sbgp-autonomousSysNum: critical Autonomous System Numbers: 196681 Signature Algorithm: sha256WithRSAEncryption 51:ce:1b:18:d4:08:4e:d5:56:4a:e7:a6:e2:25:7d:dc:6d:19: 7c:d9:e1:83:70:c1:bd:32:03:6d:de:f3:50:2a:fd:d9:a8:f9: b3:a9:ff:b7:3f:f5:0d:1f:61:85:33:b1:7c:43:69:6c:e5:48: 54:3a:b6:57:96:4b:48:31:eb:75:11:b5:1c:bd:31:c9:7d:ac: 54:69:e6:88:af:a3:41:50:98:f2:84:3e:ce:97:fc:66:da:2d: d8:28:cb:f6:0a:a8:78:8a:d6:50:5f:52:30:c5:6b:c6:85:a7: d3:b4:43:ee:58:bf:0e:36:1f:58:60:08:f5:83:45:13:5c:1b: 17:8c:47:96:cd:20:db:6c:35:52:95:1a:63:36:b7:52:d1:3d: c1:4b:93:81:86:56:70:45:fc:66:a5:54:99:c5:66:c6:eb:53: ce:57:3c:7b:b7:04:51:0a:bf:18:cc:66:1d:2d:97:38:38:48: 6f:0e:40:c0:87:93:63:e3:ce:49:8b:99:ac:00:ca:75:13:52: 2d:dc:ff:5d:69:7e:a6:7f:49:98:37:8e:9c:91:37:c4:5c:a7: 0b:55:ea:dc:3c:eb:fc:ed:3e:33:21:f9:b7:26:93:05:b0:51: 4c:4b:cb:12:68:4f:f0:3b:5f:2b:01:ca:79:59:98:37:51:89: a4:c7:60:02 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt/FXqxAtnR8//2gOPwwXF4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzIyOTNkMDM5OTE2MDc4OGIzMWU0Mzg3NjBkYzNiZDFlZDg4MmViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptGXJVAlHjxkI54jFnNvm4lU3o+H UdO2aHSlVzP7Y+SzsyM1uoyhkKk4ggmpNbDXsC8SQI25w3mel/h45Lze362YDgX+ gw0B4U2CjM9PEYEk43gbOy+ivPLRf4MomGwa0Ew3mZZP6OHz/cj/GPdvPjCMk1CS mc1UwD3kwoOe8GIM/5wuhQoYWgxtAjhDm8nUhLxvowTr9l98BYOultTjV74SKHC0 fHE4JSNQ6WdJO20Q8Zw/2ckD0HMAHW2NOo0sWKAQc6cJXwoxrv5S7skirq8piocr B49QyywYATm0VVE1LqoIHTJzV7f6id3N3WmRNv4E5YFKHlfYw/5R1mV8FwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFDMik9A5kWB4izHkOHYNw70e2ILrMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU1L2M4YjFl NS03Yjk1LTRjYTctYjJiYS0yMjJmZTM0ODI2OGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUvYzhiMWU1 LTdiOTUtNGNhNy1iMmJhLTIyMmZlMzQ4MjY4YS8xL015S1QwRG1SWUhpTE1lUTRk ZzNEdlI3WWd1cy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQDX9fAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMASTANBgkqhkiG9w0BAQsFAAOCAQEAUc4bGNQITtVWSuem4iV93G0ZfNnhg3DB vTIDbd7zUCr92aj5s6n/tz/1DR9hhTOxfENpbOVIVDq2V5ZLSDHrdRG1HL0xyX2s VGnmiK+jQVCY8oQ+zpf8Ztot2CjL9gqoeIrWUF9SMMVrxoWn07RD7li/DjYfWGAI 9YNFE1wbF4xHls0g22w1UpUaYza3UtE9wUuTgYZWcEX8ZqVUmcVmxutTzlc8e7cE UQq/GMxmHS2XODhIbw5AwIeTY+POSYuZrADKdRNSLdz/XWl+pn9JmDeOnJE3xFyn C1Xq3Dzr/O0+MyH5tyaTBbBRTEvLEmhP8DtfKwHKeVmYN1GJpMdgAg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:47 2026 by rpki-client