This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer File: YNxaADaNiuH7qZVDHwOkExrdipo.cer (raw, json) Hash identifier: UqsJ/667oU3Aa1bTiHnTu7mscQw4QeKvhJO2IGAS5EA= Subject key identifier: 60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED36033D3E8CCE6B4F76B92DB573FC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:19:07 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41085 IP: 195.189.100.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:36:03:3d:3e:8c:ce:6b:4f:76:b9:2d:b5:73:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60dc5a00368d8ae1fba995431f03a4131add8a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:de:fa:bd:92:16:b2:91:0c:74:71:f2:fb:11: 08:7e:34:2e:5f:44:19:ac:fb:ef:3c:07:35:3d:74: a1:46:36:96:b5:0e:eb:ad:e8:43:39:30:71:cf:11: 2e:3e:83:83:b8:b6:32:a0:8d:b5:4c:c5:ae:ca:75: 43:ca:c1:e5:44:60:e0:77:d7:8e:f2:e3:3b:cb:04: 71:b3:e3:dd:99:0c:dc:9c:31:c9:5a:f1:bb:e9:89: 7c:f5:8a:c5:be:f3:56:f3:b4:00:5b:52:4a:09:0a: ce:bf:a4:04:e8:e5:37:a7:a9:09:89:ac:e3:3a:6c: 5b:fe:c5:70:7f:19:6a:50:df:39:25:ce:8f:f0:6c: fd:07:52:e2:3f:18:07:3c:87:fa:5f:95:6e:db:ce: 67:2e:e1:d8:e3:65:28:af:1a:f9:ef:b9:82:06:f4: f2:51:52:28:6d:a6:49:4e:29:a5:89:c9:a6:14:3a: e6:e4:c3:ed:5a:d0:db:92:16:8e:8e:0f:25:4f:3b: d6:2b:f8:b4:09:e1:d9:f8:fe:b6:ba:f2:b2:f0:6b: 1b:04:b4:4f:4e:80:68:fb:ee:bb:46:60:74:e4:e4: e7:46:fa:ae:9e:b5:e8:cb:49:09:1c:19:a6:5f:40: 26:63:73:1f:ec:d9:8f:0b:6b:58:71:c2:83:22:27: 8a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.189.100.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41085 Signature Algorithm: sha256WithRSAEncryption 53:9c:2b:02:66:43:ed:6c:47:27:2f:d6:7f:9c:67:15:64:e5: cb:90:e8:29:f6:35:34:93:53:d1:cc:7c:ca:01:c4:7c:4f:6a: 0d:19:e8:81:6a:03:f8:df:66:ab:5d:d8:86:2d:65:a6:47:03: 5b:a6:c7:e7:fd:d7:03:e7:71:a8:88:70:58:f7:a6:94:cf:ad: 00:b1:f9:52:c2:c7:22:cb:8a:72:e0:e5:08:02:e5:a9:71:c0: b4:65:ff:67:28:f7:58:e7:bc:6c:10:cb:1f:45:be:ef:95:f4: 40:37:aa:ed:ab:16:2c:24:05:7e:28:8d:27:ef:cc:1d:ae:1f: 8b:f1:ad:45:d6:9f:0c:c0:dc:a0:fe:95:3c:49:42:29:4e:8e: b8:f9:de:c2:5e:c0:c9:87:17:15:de:dc:15:a4:94:aa:44:49: 69:77:05:80:9c:36:a9:a1:2f:9e:c1:bb:4b:20:24:fd:74:14: b8:a1:43:2a:92:69:03:d8:5e:99:88:74:75:1b:c9:f9:e6:04: 64:ba:5c:c3:71:9c:48:64:3c:34:78:e6:19:4b:bf:7d:72:6e: d8:ed:ac:be:d6:2d:96:eb:94:e9:52:e1:ff:a1:3b:c7:05:b5: d8:28:a3:73:fd:9e:94:f9:21:03:90:a9:83:e5:1f:5d:83:49: 8f:aa:a9:dc -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt57TYDPT6MzmtPdrkttXP8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGRjNWEwMDM2OGQ4YWUxZmJhOTk1NDMxZjAzYTQxMzFhZGQ4YTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq976vZIWspEMdHHy+xEIfjQuX0QZ rPvvPAc1PXShRjaWtQ7rrehDOTBxzxEuPoODuLYyoI21TMWuynVDysHlRGDgd9eO 8uM7ywRxs+PdmQzcnDHJWvG76Yl89YrFvvNW87QAW1JKCQrOv6QE6OU3p6kJiazj Omxb/sVwfxlqUN85Jc6P8Gz9B1LiPxgHPIf6X5Vu285nLuHY42Uorxr577mCBvTy UVIobaZJTimlicmmFDrm5MPtWtDbkhaOjg8lTzvWK/i0CeHZ+P62uvKy8GsbBLRP ToBo++67RmB05OTnRvqunrXoy0kJHBmmX0AmY3Mf7NmPC2tYccKDIieK1wIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFGDcWgA2jYrh+6mVQx8DpBMa3YqaMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVmLzQzZDYz YS1hOTM2LTQ1OTMtODgyNi1lYmIzOTgyYzJlYjAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWYvNDNkNjNh LWE5MzYtNDU5My04ODI2LWViYjM5ODJjMmViMC8xL1lOeGFBRGFOaXVIN3FaVkRI d09rRXhyZGlwby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCw71kMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCgfTANBgkqhkiG9w0BAQsFAAOCAQEAU5wrAmZD7WxHJy/Wf5xnFWTly5DoKfY1 NJNT0cx8ygHEfE9qDRnogWoD+N9mq13Yhi1lpkcDW6bH5/3XA+dxqIhwWPemlM+t ALH5UsLHIsuKcuDlCALlqXHAtGX/Zyj3WOe8bBDLH0W+75X0QDeq7asWLCQFfiiN J+/MHa4fi/GtRdafDMDcoP6VPElCKU6OuPnewl7AyYcXFd7cFaSUqkRJaXcFgJw2 qaEvnsG7SyAk/XQUuKFDKpJpA9hemYh0dRvJ+eYEZLpcw3GcSGQ8NHjmGUu/fXJu 2O2svtYtluuU6VLh/6E7xwW12Cijc/2elPkhA5Cpg+UfXYNJj6qp3A== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:14 2026 by rpki-client