This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YKhR1ZNWypXUrnj6aTa6G4orHHo.cer File: YKhR1ZNWypXUrnj6aTa6G4orHHo.cer (raw, json) Hash identifier: +2irkmemZkXejjJojWpZzIBkV+XaxRkSP6lfdRUsMv0= Subject key identifier: 60:A8:51:D5:93:56:CA:95:D4:AE:78:FA:69:36:BA:1B:8A:2B:1C:7A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797ECAF93C4C9115177255CA7D3F5EC0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/YKhR1ZNWypXUrnj6aTa6G4orHHo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 44973 AS: 59474 IP: 93.88.224.0/22 IP: 185.130.8.0/22 IP: 185.253.110.0/24 IP: 2a02:218::/29 IP: 2a10:adc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:ca:f9:3c:4c:91:15:17:72:55:ca:7d:3f:5e:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60a851d59356ca95d4ae78fa6936ba1b8a2b1c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:20:77:db:2e:45:05:f1:ad:f6:d0:4a:24:89: 2e:21:fb:67:b1:da:2c:2b:bc:8a:d6:21:e7:3a:ea: 2d:4d:f7:c3:3a:ab:6f:be:32:33:a1:7b:a2:1d:18: c3:26:fb:b1:f2:78:98:f5:b2:8c:6e:c3:c0:30:91: 57:2d:fe:af:f0:f5:0d:10:3d:28:a0:51:ca:c1:fd: 1c:5c:4a:ff:ba:02:85:f3:5e:c4:e7:45:55:29:05: 3d:0d:23:24:d4:8a:89:8d:0a:fd:4a:68:95:89:34: 50:b0:75:b0:43:1e:5f:dc:5f:5a:3b:f3:0f:9f:30: c9:7c:70:0b:36:96:30:59:e1:e2:3b:4c:11:db:37: 56:77:dd:62:d2:19:cf:8c:d8:ea:c5:2d:14:6e:52: 99:71:d2:4b:57:fc:1c:aa:97:2d:fd:91:48:16:f8: 18:ac:74:6b:d1:3e:8c:bb:20:b1:52:d1:01:83:13: f3:f1:c2:5d:77:cd:95:63:5a:be:7f:80:a4:79:7c: b6:d2:5d:8a:1f:97:92:b4:a2:37:45:97:8b:30:1d: bf:2a:36:33:69:13:3b:f0:36:4d:09:00:58:11:09: a3:8e:c8:e9:60:4e:c4:cb:ed:f2:bb:c9:42:76:88: 3f:7c:ef:26:03:a5:ac:09:35:97:f5:ba:dd:02:8a: ed:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A8:51:D5:93:56:CA:95:D4:AE:78:FA:69:36:BA:1B:8A:2B:1C:7A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/YKhR1ZNWypXUrnj6aTa6G4orHHo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.88.224.0/22 185.130.8.0/22 185.253.110.0/24 IPv6: 2a02:218::/29 2a10:adc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 44973 59474 Signature Algorithm: sha256WithRSAEncryption 87:8a:8e:c6:26:f2:7c:29:d0:1c:f4:80:52:e7:eb:f2:4b:3c: 5f:af:f6:d9:5d:de:42:67:46:88:0e:30:53:f8:90:a9:00:7e: 4e:e5:c7:1c:26:d5:f5:38:21:36:b8:ac:84:0d:30:c5:60:da: 9f:c0:dc:fb:75:e1:37:33:d8:6d:53:ce:63:99:63:77:b6:3b: c5:0d:e0:b3:d8:17:2b:54:51:78:86:68:0b:48:22:4a:80:e5: 3e:80:2a:c3:13:b6:61:a3:82:b2:71:d2:2f:48:38:8a:62:c0: 81:05:ad:01:31:d3:2d:50:b4:5f:a6:e4:c8:56:06:3f:4b:7a: 16:30:e4:59:50:b7:58:4c:7e:ce:0e:5c:52:90:01:ec:6f:1e: c2:75:17:18:96:bf:ef:e8:e2:e8:e1:09:46:9f:f0:f7:3b:07: be:d2:3f:2c:fb:2c:d3:34:ea:c3:2b:f9:6d:f5:f3:4b:8e:f3: f0:99:57:05:38:59:dd:a3:7e:c4:bc:da:42:8f:14:82:b7:b7: 45:b5:bb:c4:cf:60:09:e9:c4:13:2c:78:91:0a:a7:27:30:67: fb:da:e3:88:ef:0a:04:5d:a2:11:0e:04:6e:22:0b:16:3b:cd: 63:2f:da:b6:88:ce:bb:8b:32:73:dd:e2:9b:8c:51:77:c9:7c: 5b:c6:01:32 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgISAZt5fsr5PEyRFRdyVcp9P17AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGE4NTFkNTkzNTZjYTk1ZDRhZTc4ZmE2OTM2YmExYjhhMmIxYzdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2iB32y5FBfGt9tBKJIkuIftnsdos K7yK1iHnOuotTffDOqtvvjIzoXuiHRjDJvux8niY9bKMbsPAMJFXLf6v8PUNED0o oFHKwf0cXEr/ugKF817E50VVKQU9DSMk1IqJjQr9SmiViTRQsHWwQx5f3F9aO/MP nzDJfHALNpYwWeHiO0wR2zdWd91i0hnPjNjqxS0UblKZcdJLV/wcqpct/ZFIFvgY rHRr0T6MuyCxUtEBgxPz8cJdd82VY1q+f4CkeXy20l2KH5eStKI3RZeLMB2/KjYz aRM78DZNCQBYEQmjjsjpYE7Ey+3yu8lCdog/fO8mA6WsCTWX9brdAortsQIDAQAB o4ICxzCCAsMwHQYDVR0OBBYEFGCoUdWTVsqV1K54+mk2uhuKKxx6MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMwL2M5Nzg5 OC01ZTcyLTQ1NGEtYmUyZi01NDhlN2I3ZmE0ZTEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAvYzk3ODk4 LTVlNzItNDU0YS1iZTJmLTU0OGU3YjdmYTRlMS8xL1lLaFIxWk5XeXBYVXJuajZh VGE2RzRvckhIby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEEGCCsGAQUF BwEHAQH/BDIwMDAYBAIAATASAwQCXVjgAwQCuYIIAwQAuf1uMBQEAgACMA4DBQMq AgIYAwUDKhCtwDAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMAr60CAwDoUjANBgkq hkiG9w0BAQsFAAOCAQEAh4qOxibyfCnQHPSAUufr8ks8X6/22V3eQmdGiA4wU/iQ qQB+TuXHHCbV9TghNrishA0wxWDan8Dc+3XhNzPYbVPOY5ljd7Y7xQ3gs9gXK1RR eIZoC0giSoDlPoAqwxO2YaOCsnHSL0g4imLAgQWtATHTLVC0X6bkyFYGP0t6FjDk WVC3WEx+zg5cUpAB7G8ewnUXGJa/7+ji6OEJRp/w9zsHvtI/LPss0zTqwyv5bfXz S47z8JlXBThZ3aN+xLzaQo8Ugre3RbW7xM9gCenEEyx4kQqnJzBn+9rjiO8KBF2i EQ4EbiILFjvNYy/atojOu4syc93im4xRd8l8W8YBMg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:24 2026 by rpki-client