This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.cer File: YOqDhaFP2ZZ5eK5_BuxN1SIppEo.cer (raw, json) Hash identifier: KELLOv0I0BD39aJ2AAXRJcBCKCoWvKBSqyOPaTLFiRY= Subject key identifier: 60:EA:83:85:A1:4F:D9:96:79:78:AE:7F:06:EC:4D:D5:22:29:A4:4A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A333E88204E351F03A4D907BE428EB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 196714 IP: 31.3.80.0/21 IP: 91.137.0.0/18 IP: 109.73.16.0/20 IP: 171.33.184.0/21 IP: 185.38.8.0/22 IP: 2a02:2250::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:33:e8:82:04:e3:51:f0:3a:4d:90:7b:e4:28:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60ea8385a14fd9967978ae7f06ec4dd52229a44a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f3:b0:46:30:63:fd:f5:36:7d:12:66:9f:dc: fa:0c:7a:1e:fb:f6:38:01:5a:72:a9:93:0f:34:29: 2f:a6:18:d5:1d:6c:5f:08:a3:d6:95:94:61:06:47: da:08:31:ff:1d:98:43:a4:47:54:99:96:de:0b:1e: 56:6a:94:ae:63:a2:c7:04:84:9f:81:f8:9b:47:86: d5:25:0b:d5:68:ce:21:d5:e7:78:b3:ed:56:e4:12: f8:bc:1e:1b:fb:79:4d:7e:03:bb:1a:50:06:ac:f9: 9d:40:e9:86:cc:9a:4a:40:00:2c:15:30:cf:1b:a4: b1:ff:c6:ad:0e:62:48:af:fe:b9:5f:26:58:da:44: a1:1c:de:b5:65:f2:92:e9:c6:ac:3c:cc:87:67:5e: f4:c0:43:d0:88:7a:e8:8c:6f:0c:2f:22:22:35:49: 86:2c:99:0b:a7:af:01:4f:b4:20:ca:ec:af:09:50: a2:2f:f1:ef:5b:c3:a6:6c:28:52:32:d4:f3:03:d8: 6f:e9:65:ae:d6:17:3e:01:a7:24:a9:e7:57:78:03: 8f:36:93:f0:06:f9:e6:73:e1:ad:05:aa:c3:f6:a4: 8f:da:69:89:86:65:f8:6f:2a:44:ee:fc:97:25:ac: 6d:23:bc:ab:d4:bd:a1:67:ce:3c:bd:68:b6:fb:3e: e9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:EA:83:85:A1:4F:D9:96:79:78:AE:7F:06:EC:4D:D5:22:29:A4:4A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.3.80.0/21 91.137.0.0/18 109.73.16.0/20 171.33.184.0/21 185.38.8.0/22 IPv6: 2a02:2250::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 196714 Signature Algorithm: sha256WithRSAEncryption 68:a2:f2:38:10:02:3b:f5:3c:b8:7c:82:1a:58:4c:76:8b:9a: 0b:ce:56:40:7e:72:40:c7:f3:cd:c9:3b:70:c7:de:fa:bc:b3: 7f:a7:ab:d4:ed:d6:8e:ee:e5:c3:61:0b:fc:17:98:07:d1:da: a7:6e:6e:01:34:7e:41:55:83:27:0c:9c:e1:32:94:fd:b2:fd: 10:78:7f:43:01:d3:60:8f:c1:35:ae:8f:fe:b9:ac:30:98:f9: 78:0b:e0:64:41:39:8d:3c:17:60:99:a6:36:81:b8:5d:51:a8: 38:d4:0f:90:a5:29:be:c1:39:cd:2a:01:89:81:5a:e3:02:39: 76:d1:2d:7b:50:9b:0d:65:ee:04:09:1b:75:1b:fa:29:a7:fa: 28:61:a1:25:70:26:08:62:27:8f:b0:72:d9:95:96:e1:b4:58: a5:7f:fa:e9:75:b5:aa:b0:29:16:b3:8a:01:62:23:67:dd:1b: 3d:58:6c:e9:11:94:05:92:4b:0f:fa:e2:cb:bc:4d:a2:88:fa: a5:c3:28:6e:be:0e:5f:73:6c:6e:28:76:93:e9:68:95:bb:80: 14:77:49:11:b3:ab:9e:ed:98:c5:95:97:90:d8:d6:5f:3e:62: da:f0:61:7e:24:62:d8:6c:88:f0:36:0d:67:c8:18:cf:23:de: 2a:b7:d3:13 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgISAZt4ozPoggTjUfA6TZB75CjrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGVhODM4NWExNGZkOTk2Nzk3OGFlN2YwNmVjNGRkNTIyMjlhNDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufOwRjBj/fU2fRJmn9z6DHoe+/Y4 AVpyqZMPNCkvphjVHWxfCKPWlZRhBkfaCDH/HZhDpEdUmZbeCx5WapSuY6LHBISf gfibR4bVJQvVaM4h1ed4s+1W5BL4vB4b+3lNfgO7GlAGrPmdQOmGzJpKQAAsFTDP G6Sx/8atDmJIr/65XyZY2kShHN61ZfKS6casPMyHZ170wEPQiHrojG8MLyIiNUmG LJkLp68BT7QgyuyvCVCiL/HvW8OmbChSMtTzA9hv6WWu1hc+AackqedXeAOPNpPw Bvnmc+GtBarD9qSP2mmJhmX4bypE7vyXJaxtI7yr1L2hZ848vWi2+z7pDwIDAQAB o4ICxzCCAsMwHQYDVR0OBBYEFGDqg4WhT9mWeXiufwbsTdUiKaRKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzliLzAzMzBm Yi05NWQxLTQzMDItYmVhMS1mNTQ1NzdmN2NjMGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIvMDMzMGZi LTk1ZDEtNDMwMi1iZWExLWY1NDU3N2Y3Y2MwZi8xL1lPcURoYUZQMlpaNWVLNV9C dXhOMVNJcHBFby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUF BwEHAQH/BDcwNTAkBAIAATAeAwQDHwNQAwQGW4kAAwQEbUkQAwQDqyG4AwQCuSYI MA0EAgACMAcDBQAqAiJQMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMAajANBgkq hkiG9w0BAQsFAAOCAQEAaKLyOBACO/U8uHyCGlhMdouaC85WQH5yQMfzzck7cMfe +ryzf6er1O3Wju7lw2EL/BeYB9Hap25uATR+QVWDJwyc4TKU/bL9EHh/QwHTYI/B Na6P/rmsMJj5eAvgZEE5jTwXYJmmNoG4XVGoONQPkKUpvsE5zSoBiYFa4wI5dtEt e1CbDWXuBAkbdRv6Kaf6KGGhJXAmCGInj7By2ZWW4bRYpX/66XW1qrApFrOKAWIj Z90bPVhs6RGUBZJLD/riy7xNooj6pcMobr4OX3Nsbih2k+lolbuAFHdJEbOrnu2Y xZWXkNjWXz5i2vBhfiRi2GyI8DYNZ8gYzyPeKrfTEw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:14 2026 by rpki-client