This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer File: NYx3zUAYPEEVsr8NznFuC8XQv9U.cer (raw, json) Hash identifier: FON2KA/MPiscHscTz6itLw1Maf1MSyKOLWFOnEDc9pE= Subject key identifier: 35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7F5693CC1E7D5F13F5E142E633AA01 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:17:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 196849 IP: 91.206.91.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:56:93:cc:1e:7d:5f:13:f5:e1:42:e6:33:aa:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c5:ae:e1:64:87:c1:0b:5a:29:db:7a:87:8c: 61:8c:a7:83:a5:16:f1:8a:3b:e5:5d:67:73:d7:6b: 0c:bd:9d:21:db:86:ee:6f:c6:40:46:98:b4:14:95: 0b:be:e4:7d:51:56:c5:16:36:46:79:ea:71:86:fb: b5:9f:5c:0f:10:ee:86:75:9e:d6:60:ba:d0:a4:11: 14:46:f8:0f:fb:c6:10:33:43:9c:55:8d:ea:39:94: fe:46:c0:5c:76:cc:f4:21:3b:60:53:40:b5:20:fe: 72:96:75:f1:58:e2:68:d3:55:03:af:ef:4b:59:91: 74:49:37:a8:e7:f3:8e:18:42:fd:d6:a4:3a:9a:e5: c8:95:94:b7:07:d6:78:0e:09:54:0b:99:80:ab:20: 8a:10:11:04:2b:59:0c:5b:32:83:c6:9e:49:8d:63: cd:96:45:24:a7:d8:bd:fe:d8:56:40:55:6d:77:be: 71:90:ee:a7:d4:d3:77:6c:ad:7b:9d:89:a0:74:38: 94:77:8b:71:04:2f:96:1a:66:7b:3f:4f:65:c9:29: 31:02:ad:ac:72:38:c8:1d:23:db:71:79:74:9f:53: 48:57:fd:88:5c:29:0d:c2:9e:91:6d:ed:94:af:ae: 77:23:77:cc:b2:4f:f9:e6:c3:dd:4a:1b:5c:44:26: c2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.206.91.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 196849 Signature Algorithm: sha256WithRSAEncryption 63:d2:67:e0:ad:ac:86:c9:3d:85:43:ef:20:e7:cf:5e:c9:f5: 79:44:34:cd:25:22:ae:ab:b9:95:a7:b0:e6:6b:62:e6:7f:2d: 57:25:e9:78:e3:c4:f1:68:b8:02:5d:8c:10:ad:b9:14:17:b3: 51:db:4f:c6:e0:17:3a:58:1c:4a:0e:40:a8:4f:67:a7:7c:3d: 20:12:15:b6:d5:31:39:89:b9:e9:73:cf:94:c2:0b:7b:d2:aa: 16:dd:bc:a3:03:c1:0b:3d:d7:29:f9:97:df:94:c2:3d:d8:7c: e2:f5:71:00:af:99:f8:98:b3:63:d1:76:7b:8a:3a:a0:87:5e: 5d:9d:4a:24:8f:33:40:90:1d:81:80:7f:0b:a5:ee:87:a2:26: a9:7e:a3:c2:df:0d:43:39:b5:31:f8:49:51:0c:c6:51:80:18: 32:77:02:e8:78:2e:b4:67:fe:28:a1:19:73:7b:45:45:01:7e: 47:8b:ce:46:84:d9:e8:17:b5:1d:6f:64:11:fc:81:48:0a:19: 5f:02:36:c5:fc:ec:b6:26:1b:a3:5b:51:01:11:9f:b6:a8:93: 3e:88:cf:c5:f3:07:71:3b:22:2d:03:15:9e:49:ad:09:ef:5e: e4:8f:58:ba:90:9b:d6:a0:f2:1d:0f:2a:38:b3:1f:db:60:b1: 7c:a3:e7:6a -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt8f1aTzB59XxP14ULmM6oBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNThjNzdjZDQwMTgzYzQxMTViMmJmMGRjZTcxNmUwYmM1ZDBiZmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMWu4WSHwQtaKdt6h4xhjKeDpRbx ijvlXWdz12sMvZ0h24bub8ZARpi0FJULvuR9UVbFFjZGeepxhvu1n1wPEO6GdZ7W YLrQpBEURvgP+8YQM0OcVY3qOZT+RsBcdsz0ITtgU0C1IP5ylnXxWOJo01UDr+9L WZF0STeo5/OOGEL91qQ6muXIlZS3B9Z4DglUC5mAqyCKEBEEK1kMWzKDxp5JjWPN lkUkp9i9/thWQFVtd75xkO6n1NN3bK17nYmgdDiUd4txBC+WGmZ7P09lySkxAq2s cjjIHSPbcXl0n1NIV/2IXCkNwp6Rbe2Ur653I3fMsk/55sPdShtcRCbCVwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFDWMd81AGDxBFbK/Dc5xbgvF0L/VMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRhL2VhMmI0 MS03ZGM2LTQ1YTQtYWEwOC0zMTUxYTE3OTRiOTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEvZWEyYjQx LTdkYzYtNDVhNC1hYTA4LTMxNTFhMTc5NGI5Ny8xL05ZeDN6VUFZUEVFVnNyOE56 bkZ1QzhYUXY5VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW85bMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMA8TANBgkqhkiG9w0BAQsFAAOCAQEAY9Jn4K2shsk9hUPvIOfPXsn1eUQ0zSUi rqu5laew5mti5n8tVyXpeOPE8Wi4Al2MEK25FBezUdtPxuAXOlgcSg5AqE9np3w9 IBIVttUxOYm56XPPlMILe9KqFt28owPBCz3XKfmX35TCPdh84vVxAK+Z+JizY9F2 e4o6oIdeXZ1KJI8zQJAdgYB/C6Xuh6ImqX6jwt8NQzm1MfhJUQzGUYAYMncC6Hgu tGf+KKEZc3tFRQF+R4vORoTZ6Be1HW9kEfyBSAoZXwI2xfzstiYbo1tRARGftqiT PojPxfMHcTsiLQMVnkmtCe9e5I9YupCb1qDyHQ8qOLMf22CxfKPnag== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:08 2026 by rpki-client