This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YL_5RwTkpHU3ThcMvhc2X6if4Hs.cer File: YL_5RwTkpHU3ThcMvhc2X6if4Hs.cer (raw, json) Hash identifier: WtYCXYGozuSNTPYhU7h68jtI3TMU5YOKuOk2xjKZfDE= Subject key identifier: 60:BF:F9:47:04:E4:A4:75:37:4E:17:0C:BE:17:36:5F:A8:9F:E0:7B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7FB64BA9BD41BFD630C8238ACEBFD2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/672fdd-cc7c-4449-9f55-023995906c46/1/YL_5RwTkpHU3ThcMvhc2X6if4Hs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/672fdd-cc7c-4449-9f55-023995906c46/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:23 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212116 IP: 79.108.232.0/21 IP: 185.225.126.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:b6:4b:a9:bd:41:bf:d6:30:c8:23:8a:ce:bf:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60bff94704e4a475374e170cbe17365fa89fe07b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b1:80:1f:e6:cf:8b:33:78:b1:7e:bb:e1:38: ee:80:52:55:fd:03:c0:6e:b8:f8:8c:42:f0:71:92: a0:98:87:fc:e1:20:69:13:21:53:bb:90:84:bc:63: 20:42:fd:ea:9c:53:47:65:62:fc:e6:0f:a5:07:ec: 15:65:1f:c8:af:4d:d9:29:a6:b5:21:4b:3e:e8:0b: 8a:b7:5d:09:7c:de:1c:11:ac:66:b6:1b:b4:f8:51: 74:2b:d1:f7:91:bf:ee:b5:92:6b:00:ec:5d:06:b4: 9f:2b:6c:81:b4:3c:46:ea:d8:e0:36:29:03:fe:de: 6a:06:0a:49:0f:44:04:bc:7c:5f:c0:07:63:c8:e6: 25:b1:30:09:47:03:46:ce:dd:3b:1f:0b:1c:d7:f8: 86:e2:1f:60:d5:26:7b:04:54:be:70:02:ef:63:9d: 63:be:53:97:de:de:f4:f2:6f:c1:b0:17:2b:31:af: ee:25:5f:51:91:ef:40:84:ba:d5:b8:0f:10:58:dc: db:1c:a1:3e:2a:ad:5c:7c:dd:42:35:ec:7b:e3:6a: 36:63:60:14:43:14:63:df:71:57:bf:53:d2:49:27: 47:ad:9d:83:2b:b3:ff:79:06:12:09:83:2a:68:08: 22:91:8b:d2:61:b0:c4:f2:83:33:84:92:5a:26:f3: 8b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:BF:F9:47:04:E4:A4:75:37:4E:17:0C:BE:17:36:5F:A8:9F:E0:7B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/672fdd-cc7c-4449-9f55-023995906c46/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/672fdd-cc7c-4449-9f55-023995906c46/1/YL_5RwTkpHU3ThcMvhc2X6if4Hs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.108.232.0/21 185.225.126.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212116 Signature Algorithm: sha256WithRSAEncryption 62:11:c4:af:b3:ec:19:23:97:7a:85:21:58:6a:25:2d:e4:9b: 77:16:9a:ae:1d:4c:a6:f4:7a:87:7d:5c:09:bb:30:22:e1:eb: 80:a1:b6:c2:f6:5c:31:a3:d0:92:d5:f7:41:51:c3:ea:18:0e: ea:ae:3f:4a:46:14:72:c8:0f:db:bb:ff:d5:24:41:38:53:76: c5:1b:60:80:f2:4d:a5:13:63:6a:e5:56:97:1d:8f:01:8c:25: 96:7e:98:a6:68:b5:8f:4f:40:81:1c:29:85:31:10:9c:eb:78: b6:2e:5f:78:3a:69:cb:0a:c2:72:6a:3f:4c:53:f4:ec:89:96: 94:8b:2e:f8:7c:57:14:9f:df:ae:9e:e0:d4:ed:68:a9:85:88: 3d:a3:e6:4b:db:56:d6:59:8e:00:6e:61:83:e3:ae:84:87:19: fd:15:0d:b9:04:db:23:d3:aa:ca:cc:37:40:28:d5:2f:43:a3: 33:05:73:29:ca:f6:86:8c:cc:91:43:df:34:49:6f:78:2f:ba: 0e:1f:d9:9a:16:4e:0a:07:f5:ae:d2:34:b7:0d:48:13:eb:2d: d2:dc:96:89:73:47:b2:14:75:53:7b:97:13:c3:89:b2:4b:05: 79:65:75:aa:e9:a0:c5:94:1b:44:ff:98:28:b3:91:2a:02:be: c2:d8:17:9e -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt8f7ZLqb1Bv9YwyCOKzr/SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGJmZjk0NzA0ZTRhNDc1Mzc0ZTE3MGNiZTE3MzY1ZmE4OWZlMDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLGAH+bPizN4sX674TjugFJV/QPA brj4jELwcZKgmIf84SBpEyFTu5CEvGMgQv3qnFNHZWL85g+lB+wVZR/Ir03ZKaa1 IUs+6AuKt10JfN4cEaxmthu0+FF0K9H3kb/utZJrAOxdBrSfK2yBtDxG6tjgNikD /t5qBgpJD0QEvHxfwAdjyOYlsTAJRwNGzt07Hwsc1/iG4h9g1SZ7BFS+cALvY51j vlOX3t708m/BsBcrMa/uJV9Rke9AhLrVuA8QWNzbHKE+Kq1cfN1CNex742o2Y2AU QxRj33FXv1PSSSdHrZ2DK7P/eQYSCYMqaAgikYvSYbDE8oMzhJJaJvOLhwIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFGC/+UcE5KR1N04XDL4XNl+on+B7MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRhLzY3MmZk ZC1jYzdjLTQ0NDktOWY1NS0wMjM5OTU5MDZjNDYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEvNjcyZmRk LWNjN2MtNDQ0OS05ZjU1LTAyMzk5NTkwNmM0Ni8xL1lMXzVSd1RrcEhVM1RoY012 aGMyWDZpZjRIcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQDT2zoAwQAueF+MBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwM8lDANBgkqhkiG9w0BAQsFAAOCAQEAYhHEr7PsGSOXeoUhWGolLeSb dxaarh1MpvR6h31cCbswIuHrgKG2wvZcMaPQktX3QVHD6hgO6q4/SkYUcsgP27v/ 1SRBOFN2xRtggPJNpRNjauVWlx2PAYwlln6Ypmi1j09AgRwphTEQnOt4ti5feDpp ywrCcmo/TFP07ImWlIsu+HxXFJ/frp7g1O1oqYWIPaPmS9tW1lmOAG5hg+OuhIcZ /RUNuQTbI9Oqysw3QCjVL0OjMwVzKcr2hozMkUPfNElveC+6Dh/ZmhZOCgf1rtI0 tw1IE+st0tyWiXNHshR1U3uXE8OJsksFeWV1qumgxZQbRP+YKLORKgK+wtgXng== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:21 2026 by rpki-client