This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YLeUkCpc09J4P8wqpLB5H3mld6I.cer File: YLeUkCpc09J4P8wqpLB5H3mld6I.cer (raw, json) Hash identifier: eOtmKWgtFk3FPDBiYtXbiAz+dkneZRRWVOn+rT8/oBg= Subject key identifier: 60:B7:94:90:2A:5C:D3:D2:78:3F:CC:2A:A4:B0:79:1F:79:A5:77:A2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F814148A8FCA25E1DDF730D037450E8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/74/d71b2c-2140-4e6e-abc4-401477489302/1/YLeUkCpc09J4P8wqpLB5H3mld6I.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/74/d71b2c-2140-4e6e-abc4-401477489302/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:18:55 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 34614 IP: 193.26.215.0/24 IP: 193.26.219.0/24 IP: 193.26.223.0/24 IP: 193.27.8.0/24 IP: 2a0f:77c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:41:48:a8:fc:a2:5e:1d:df:73:0d:03:74:50:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60b794902a5cd3d2783fcc2aa4b0791f79a577a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1f:4b:6f:0c:03:c4:98:84:c0:3d:1c:98:a5: 47:51:26:7f:b9:e9:64:d4:24:a9:a2:2f:55:c2:70: 0e:e1:0a:ad:e6:95:99:9d:f6:8d:82:f1:71:5c:48: 7a:0b:d5:10:48:53:38:eb:0c:e0:07:93:14:45:d9: 5c:6d:8c:27:7f:02:5e:7a:b8:d0:6f:20:ea:ef:a9: 42:49:a9:ff:eb:13:9a:e8:4f:ad:be:c8:bd:64:a1: 35:96:01:ca:08:9d:39:0f:b6:86:31:51:48:d6:9e: 83:1a:95:c5:8f:08:54:7f:60:af:6c:ed:d6:88:c6: 8b:a9:2a:ce:70:72:ae:bc:d0:68:c9:0f:8b:8f:20: 72:65:b9:b8:4d:40:0c:0f:4c:00:a9:2e:c1:48:9c: 07:b8:b3:52:9c:b1:85:da:37:c7:fb:49:c6:e0:65: 6e:6f:48:87:e6:16:0f:f6:46:42:cd:98:cc:cc:68: 44:e8:06:2d:36:9d:4e:6b:62:28:eb:07:9b:89:01: 99:ee:16:be:af:1a:2a:c2:c6:98:e4:90:20:25:e9: 3b:29:5c:01:0a:2a:37:be:be:89:21:6d:3b:b4:e9: f0:7c:38:ac:44:c4:97:33:52:ff:33:10:9b:8e:59: af:4f:62:94:32:6d:ae:11:1a:4a:6a:4f:0e:cb:bd: 73:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B7:94:90:2A:5C:D3:D2:78:3F:CC:2A:A4:B0:79:1F:79:A5:77:A2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d71b2c-2140-4e6e-abc4-401477489302/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d71b2c-2140-4e6e-abc4-401477489302/1/YLeUkCpc09J4P8wqpLB5H3mld6I.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.26.215.0/24 193.26.219.0/24 193.26.223.0/24 193.27.8.0/24 IPv6: 2a0f:77c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 34614 Signature Algorithm: sha256WithRSAEncryption 8f:40:a7:77:3b:16:4c:1f:e1:b0:bc:5f:92:90:ff:52:f3:c9: 38:dc:c5:53:d8:04:ab:24:c8:b7:a2:00:5f:38:6e:1c:bc:26: ea:f6:76:00:3c:49:5a:04:7f:f3:ad:fd:a9:c7:31:80:cb:77: f5:b3:78:70:0d:2d:a4:e2:7a:fe:39:e3:d4:19:d6:af:cb:a3: 88:60:ee:6e:4b:d4:9d:95:90:06:93:ac:d5:e4:dc:49:19:f6: c3:6a:98:c7:06:74:63:8d:87:26:19:ed:66:a6:e0:19:19:69: b0:1d:97:75:ee:20:76:82:41:18:0b:e7:9a:16:24:0f:4c:f0: 31:2d:20:12:8f:a8:c4:d6:4b:c6:f9:b6:00:3c:dc:d0:5b:ac: 7d:3b:24:5f:15:4c:87:0c:ca:6c:83:24:48:3b:c9:fb:23:bd: 13:64:28:14:72:0f:90:47:c9:d7:79:c8:08:ff:57:c7:26:da: 15:28:4f:c7:4b:39:88:a3:80:ce:ca:3f:a1:eb:6e:85:91:e4: c3:31:8d:e5:ea:17:86:20:4b:e0:b7:20:40:6e:01:5e:af:59: 17:97:d0:87:29:dd:72:25:ed:ec:b0:da:05:e4:94:c6:fa:2d: 3b:fd:5e:74:b8:ce:85:23:fd:eb:20:61:c6:a0:a6:fe:08:45: 2f:81:ae:a3 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgISAZt/gUFIqPyiXh3fcw0DdFDoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGI3OTQ5MDJhNWNkM2QyNzgzZmNjMmFhNGIwNzkxZjc5YTU3N2EyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArB9LbwwDxJiEwD0cmKVHUSZ/uelk 1CSpoi9VwnAO4Qqt5pWZnfaNgvFxXEh6C9UQSFM46wzgB5MURdlcbYwnfwJeerjQ byDq76lCSan/6xOa6E+tvsi9ZKE1lgHKCJ05D7aGMVFI1p6DGpXFjwhUf2CvbO3W iMaLqSrOcHKuvNBoyQ+LjyByZbm4TUAMD0wAqS7BSJwHuLNSnLGF2jfH+0nG4GVu b0iH5hYP9kZCzZjMzGhE6AYtNp1Oa2Io6webiQGZ7ha+rxoqwsaY5JAgJek7KVwB Cio3vr6JIW07tOnwfDisRMSXM1L/MxCbjlmvT2KUMm2uERpKak8Oy71zpwIDAQAB o4ICwTCCAr0wHQYDVR0OBBYEFGC3lJAqXNPSeD/MKqSweR95pXeiMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc0L2Q3MWIy Yy0yMTQwLTRlNmUtYWJjNC00MDE0Nzc0ODkzMDIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzQvZDcxYjJj LTIxNDAtNGU2ZS1hYmM0LTQwMTQ3NzQ4OTMwMi8xL1lMZVVrQ3BjMDlKNFA4d3Fw TEI1SDNtbGQ2SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQAwRrXAwQAwRrbAwQAwRrfAwQAwRsIMA0EAgAC MAcDBQMqD3fAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwCHNjANBgkqhkiG9w0B AQsFAAOCAQEAj0CndzsWTB/hsLxfkpD/UvPJONzFU9gEqyTIt6IAXzhuHLwm6vZ2 ADxJWgR/8639qccxgMt39bN4cA0tpOJ6/jnj1BnWr8ujiGDubkvUnZWQBpOs1eTc SRn2w2qYxwZ0Y42HJhntZqbgGRlpsB2Xde4gdoJBGAvnmhYkD0zwMS0gEo+oxNZL xvm2ADzc0FusfTskXxVMhwzKbIMkSDvJ+yO9E2QoFHIPkEfJ13nICP9XxybaFShP x0s5iKOAzso/oetuhZHkwzGN5eoXhiBL4LcgQG4BXq9ZF5fQhyndciXt7LDaBeSU xvotO/1edLjOhSP96yBhxqCm/ghFL4Guow== -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:53 2026 by rpki-client