This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W_YzYv7e4ciRNdVDTTe3N17VoQg.cer File: W_YzYv7e4ciRNdVDTTe3N17VoQg.cer (raw, json) Hash identifier: XF0daV8dq6i+YgrpF8utZUj4SZXjH23VULYFkVOTBNQ= Subject key identifier: 5B:F6:33:62:FE:DE:E1:C8:91:35:D5:43:4D:37:B7:37:5E:D5:A1:08 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC7BC0A23549759B52595B5B9D5899E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/W_YzYv7e4ciRNdVDTTe3N17VoQg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:17:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 31518 IP: 185.255.188.0/22 IP: 194.113.141.0/24 IP: 2001:67c:4a0::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:bc:0a:23:54:97:59:b5:25:95:b5:b9:d5:89:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5bf63362fedee1c89135d5434d37b7375ed5a108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:48:f0:ea:b7:bf:9e:2c:73:6f:e7:ae:9d:b4: 77:86:8f:97:cf:32:96:f5:99:aa:08:8f:79:5c:62: 24:32:44:92:b8:07:0a:02:ca:04:3b:70:42:8c:fb: 6b:5a:9b:6a:9e:f9:2f:09:9d:6d:d2:34:9c:07:6d: e9:30:99:52:14:71:8f:63:ec:6d:8c:9f:33:e6:7f: 79:d5:7b:59:6c:f4:04:83:86:9d:c2:ef:3f:5d:aa: e1:85:bd:35:39:6f:ea:ce:11:32:84:c1:9d:c7:d1: ea:59:53:18:20:85:5b:96:ae:46:95:c8:2f:c7:99: f1:99:1b:d2:12:66:d7:2b:37:70:39:21:d5:28:6b: 87:93:88:6c:d2:3f:77:20:a4:73:c3:cd:97:91:ad: 36:40:8a:19:fd:31:81:db:1b:1e:79:f2:b2:0d:21: fd:e3:6e:cd:ce:52:af:a1:0f:68:d2:88:b2:bf:ce: b6:ef:4e:54:86:45:ad:85:2f:67:c5:21:3f:eb:95: b6:61:3c:64:a4:46:83:fc:24:a3:6a:97:16:31:59: 03:45:4a:db:c4:db:e7:6d:ab:43:0d:f7:6c:12:f6: 59:e5:20:a2:87:ea:45:37:16:25:62:71:79:a4:e7: 22:b7:79:5e:80:ff:d7:37:5d:69:88:35:4b:c0:46: cf:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F6:33:62:FE:DE:E1:C8:91:35:D5:43:4D:37:B7:37:5E:D5:A1:08 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/W_YzYv7e4ciRNdVDTTe3N17VoQg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.255.188.0/22 194.113.141.0/24 IPv6: 2001:67c:4a0::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 31518 Signature Algorithm: sha256WithRSAEncryption 67:fc:41:1f:25:6f:cb:21:b8:51:6a:de:de:07:53:7c:c5:11: 51:52:42:a8:f3:c9:97:c1:15:19:88:ba:e4:c7:80:56:f4:04: ab:f4:58:87:69:4b:36:46:55:9d:a4:ce:69:4a:fc:d2:5a:20: fd:e2:ce:c9:6f:d2:39:c5:de:14:91:1c:fc:d7:34:12:6f:50: ce:2c:a5:d3:7e:32:3d:79:85:78:75:68:c5:4a:fd:45:06:f7: 09:bb:87:cb:61:33:9a:02:1a:06:c4:0b:64:df:b8:a4:b5:02: a0:e7:5e:8b:c1:6e:3e:2c:14:b6:4e:d2:b8:ad:36:f5:23:55: 1d:96:f3:de:87:ce:29:51:8a:a1:ce:f3:bd:64:ed:11:04:6f: 2b:16:9f:0e:eb:b2:1b:50:7d:1d:6c:cc:bf:50:24:87:7d:fc: f8:1b:8d:28:4e:49:3c:f8:a4:3f:c6:c0:b0:cb:bd:33:e6:e5: 6d:4d:af:d7:ac:60:a6:1b:fe:c6:55:71:71:a6:dc:cc:67:6e: 57:ef:27:8f:bf:53:bb:43:1b:1c:a7:80:24:e9:7c:70:7f:74: e1:45:06:fe:69:4b:c9:19:40:b7:3d:28:94:cb:33:b0:0c:b9: 36:d5:2a:da:c5:6a:3b:88:16:5e:45:dd:14:96:44:73:48:c9: 1f:b5:09:66 -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgISAZt6x7wKI1SXWbUllbW51YmeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YmY2MzM2MmZlZGVlMWM4OTEzNWQ1NDM0ZDM3YjczNzVlZDVhMTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUjw6re/nixzb+eunbR3ho+XzzKW 9ZmqCI95XGIkMkSSuAcKAsoEO3BCjPtrWptqnvkvCZ1t0jScB23pMJlSFHGPY+xt jJ8z5n951XtZbPQEg4adwu8/Xarhhb01OW/qzhEyhMGdx9HqWVMYIIVblq5Glcgv x5nxmRvSEmbXKzdwOSHVKGuHk4hs0j93IKRzw82Xka02QIoZ/TGB2xseefKyDSH9 427NzlKvoQ9o0oiyv862705UhkWthS9nxSE/65W2YTxkpEaD/CSjapcWMVkDRUrb xNvnbatDDfdsEvZZ5SCih+pFNxYlYnF5pOcit3legP/XN11piDVLwEbPsQIDAQAB o4ICtjCCArIwHQYDVR0OBBYEFFv2M2L+3uHIkTXVQ003tzde1aEIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA3Lzc3MDll Ny04MzcyLTQ4MjQtYTgxYy02YWQwYjY5YjIwOGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvNzcwOWU3 LTgzNzItNDgyNC1hODFjLTZhZDBiNjliMjA4Zi8xL1dfWXpZdjdlNGNpUk5kVkRU VGUzTjE3Vm9RZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF BwEHAQH/BCcwJTASBAIAATAMAwQCuf+8AwQAwnGNMA8EAgACMAkDBwAgAQZ8BKAw GQYIKwYBBQUHAQgBAf8ECjAIoAYwBAICex4wDQYJKoZIhvcNAQELBQADggEBAGf8 QR8lb8shuFFq3t4HU3zFEVFSQqjzyZfBFRmIuuTHgFb0BKv0WIdpSzZGVZ2kzmlK /NJaIP3izslv0jnF3hSRHPzXNBJvUM4spdN+Mj15hXh1aMVK/UUG9wm7h8thM5oC GgbEC2TfuKS1AqDnXovBbj4sFLZO0ritNvUjVR2W896HzilRiqHO871k7REEbysW nw7rshtQfR1szL9QJId9/PgbjShOSTz4pD/GwLDLvTPm5W1Nr9esYKYb/sZVcXGm 3MxnblfvJ4+/U7tDGxyngCTpfHB/dOFFBv5pS8kZQLc9KJTLM7AMuTbVKtrFajuI Fl5F3RSWRHNIyR+1CWY= -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:27 2026 by rpki-client