This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YTdPxOqwDUHB7uR_37ABB4x0-oU.cer File: YTdPxOqwDUHB7uR_37ABB4x0-oU.cer (raw, json) Hash identifier: Fl65LlrriC2QMVCoTTNlgo0OG1NmRuu64zgSqeXzdn0= Subject key identifier: 61:37:4F:C4:EA:B0:0D:41:C1:EE:E4:7F:DF:B0:01:07:8C:74:FA:85 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ECFDEA5E1C400A665F811CB69D969C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/YTdPxOqwDUHB7uR_37ABB4x0-oU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210895 AS: 211381 IP: 45.131.182.0/23 IP: 213.134.31.0/24 IP: 2a13:4ac0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:fd:ea:5e:1c:40:0a:66:5f:81:1c:b6:9d:96:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61374fc4eab00d41c1eee47fdfb001078c74fa85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:53:b1:2f:50:c6:19:1d:6e:91:54:0c:77:aa: 02:44:3c:3d:5c:87:f4:38:59:5c:73:51:6b:37:77: 3c:2f:6b:ec:2f:a2:cb:71:1b:73:15:9f:4c:60:38: 51:75:a8:fa:41:16:6f:86:30:87:2c:69:1b:3a:49: 92:57:59:06:99:57:1f:96:12:e2:53:69:65:06:68: 05:b0:22:a5:c0:94:36:79:26:e8:27:ec:fb:ef:4d: 80:98:eb:5c:59:09:2c:db:bc:84:04:b4:81:86:ca: a6:2c:b2:7e:d8:e3:7a:8c:83:75:b0:e4:e1:f8:98: 6b:9b:3e:d7:fd:86:db:28:b5:31:8f:80:d1:d6:27: bb:ad:de:b3:55:8b:93:ef:3e:ad:f1:e0:84:4e:2e: 63:e8:03:42:92:39:81:01:8f:91:71:72:be:94:04: dc:c9:d8:8d:c1:64:75:b4:44:57:95:76:76:a6:e8: de:3e:4f:b5:e0:33:5e:24:c6:6d:92:17:6f:a2:60: 55:8a:05:bd:64:2d:22:b8:da:30:b5:75:f7:bd:bc: de:b5:bd:f6:a1:99:be:45:1a:73:05:06:43:f3:a8: f3:3c:6b:97:10:3a:76:54:b3:29:3b:01:6e:04:98: b5:1e:db:1b:a3:60:4d:03:84:c1:50:5e:0d:1a:6a: d1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:37:4F:C4:EA:B0:0D:41:C1:EE:E4:7F:DF:B0:01:07:8C:74:FA:85 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/YTdPxOqwDUHB7uR_37ABB4x0-oU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.131.182.0/23 213.134.31.0/24 IPv6: 2a13:4ac0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210895 211381 Signature Algorithm: sha256WithRSAEncryption 93:c6:8c:17:b5:30:6e:f4:fa:53:1a:70:0b:23:00:da:a9:8b: 1e:83:14:b6:6e:c9:55:32:c0:84:91:a4:a7:79:fa:72:fc:0f: de:88:3f:51:04:a6:74:96:63:3d:01:cf:d0:8a:fd:40:af:6b: 7c:d8:ee:d6:11:13:e6:e9:39:09:2f:98:45:d6:fe:12:93:68: c2:e1:4e:cb:cd:16:c6:96:de:bb:09:7e:56:95:cb:9d:af:2d: ea:9a:c4:63:dc:c4:9f:d5:97:75:54:ae:6f:54:a7:b7:2c:ac: ad:82:93:d7:36:36:4e:d2:85:5f:58:fd:72:83:b9:ea:a7:bc: fb:a7:1d:1b:07:19:fe:04:c2:0e:84:5e:61:a8:d3:30:f3:20: 5a:1f:9d:9d:66:bc:14:1f:3b:ac:cd:c0:e7:95:bc:80:70:34: a7:6d:85:58:f2:3c:91:d3:e4:5b:33:81:11:54:6e:bf:78:32: 23:1f:b9:1d:f7:18:8c:92:52:4f:81:3d:96:4b:fd:a5:41:75: 27:c7:fc:4f:55:a3:0f:89:b2:58:5b:a7:6b:f2:15:55:94:37: f0:05:99:a6:6e:5c:36:83:0d:9c:a4:10:de:37:c5:ce:c8:4b: eb:ab:e8:77:f8:43:93:e6:f0:37:52:69:b0:56:34:7b:98:f1: fc:fb:ce:17 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt57P3qXhxACmZfgRy2nZacMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTM3NGZjNGVhYjAwZDQxYzFlZWU0N2ZkZmIwMDEwNzhjNzRmYTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1OxL1DGGR1ukVQMd6oCRDw9XIf0 OFlcc1FrN3c8L2vsL6LLcRtzFZ9MYDhRdaj6QRZvhjCHLGkbOkmSV1kGmVcflhLi U2llBmgFsCKlwJQ2eSboJ+z7702AmOtcWQks27yEBLSBhsqmLLJ+2ON6jIN1sOTh +Jhrmz7X/YbbKLUxj4DR1ie7rd6zVYuT7z6t8eCETi5j6ANCkjmBAY+RcXK+lATc ydiNwWR1tERXlXZ2pujePk+14DNeJMZtkhdvomBVigW9ZC0iuNowtXX3vbzetb32 oZm+RRpzBQZD86jzPGuXEDp2VLMpOwFuBJi1Htsbo2BNA4TBUF4NGmrRxwIDAQAB o4ICujCCArYwHQYDVR0OBBYEFGE3T8TqsA1Bwe7kf9+wAQeMdPqFMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U2L2ExNGQ0 Ni00MDhhLTQ3MGMtOTI5ZC0xZmMyNTliYjdkZTIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTYvYTE0ZDQ2 LTQwOGEtNDcwYy05MjlkLTFmYzI1OWJiN2RlMi8xL1lUZFB4T3F3RFVIQjd1Ul8z N0FCQjR4MC1vVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQBLYO2AwQA1YYfMA0EAgACMAcDBQMqE0rAMB8G CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwM3zwIDAzm1MA0GCSqGSIb3DQEBCwUAA4IB AQCTxowXtTBu9PpTGnALIwDaqYsegxS2bslVMsCEkaSnefpy/A/eiD9RBKZ0lmM9 Ac/Qiv1Ar2t82O7WERPm6TkJL5hF1v4Sk2jC4U7LzRbGlt67CX5Wlcudry3qmsRj 3MSf1Zd1VK5vVKe3LKytgpPXNjZO0oVfWP1yg7nqp7z7px0bBxn+BMIOhF5hqNMw 8yBaH52dZrwUHzuszcDnlbyAcDSnbYVY8jyR0+RbM4ERVG6/eDIjH7kd9xiMklJP gT2WS/2lQXUnx/xPVaMPibJYW6dr8hVVlDfwBZmmblw2gw2cpBDeN8XOyEvrq+h3 +EOT5vA3UmmwVjR7mPH8+84X -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:53 2026 by rpki-client