This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YU9WZQWavHvjR17553qXl7cW_Ic.cer File: YU9WZQWavHvjR17553qXl7cW_Ic.cer (raw, json) Hash identifier: rl0haHvp5SrVoY3xu+wjq33FXxUqF8HvZmwS2ZPUs6g= Subject key identifier: 61:4F:56:65:05:9A:BC:7B:E3:47:5E:F9:E7:7A:97:97:B7:16:FC:87 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCAD61B4763F28DFC20EF988F44065B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/YU9WZQWavHvjR17553qXl7cW_Ic.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:20:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 42493 IP: 2.59.124.0/22 IP: 5.35.216.0/21 IP: 77.73.40.0/21 IP: 185.40.148.0/22 IP: 2a01:5780::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:d6:1b:47:63:f2:8d:fc:20:ef:98:8f:44:06:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:20:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=614f5665059abc7be3475ef9e77a9797b716fc87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0f:44:11:45:dc:83:b3:48:a1:87:d0:ee:e6: 7d:7b:32:e0:89:80:f0:bf:0e:17:1b:e0:5b:26:58: ad:60:6b:73:51:89:53:71:c1:0e:b0:98:93:a8:bb: c9:61:73:58:fe:56:49:61:75:71:08:de:8f:52:5a: 0c:a3:af:73:6d:7d:6c:30:4e:65:4c:3b:ed:7f:4c: 37:ef:f4:9e:c3:45:4d:a3:d1:cd:14:13:eb:33:28: 8e:10:83:62:ec:e8:40:f1:bb:9d:07:61:4d:5b:d7: 5f:c7:df:35:1d:d6:8d:52:cc:26:51:a9:61:13:a8: f6:cf:8c:60:78:b4:24:4a:f4:d6:b1:26:da:a4:f7: 3f:d9:fe:1a:53:15:13:cc:ec:f6:e8:18:57:c5:e9: 6f:9c:ea:c6:19:c0:cd:7b:de:84:1e:63:65:76:1a: f2:ca:9f:61:05:8d:4a:07:7e:1a:ce:42:34:a4:a3: cd:06:35:a6:24:2f:65:a0:7b:d4:f0:29:f7:9f:ba: e1:2b:56:fc:85:fd:de:c2:ea:b2:e4:d2:4f:66:53: ca:ea:da:41:5f:e0:81:20:6d:46:fc:ae:9b:f2:8a: 8b:3c:f1:05:26:1b:9c:9f:39:ce:b5:36:8f:6a:1d: 71:4c:53:66:7e:a0:14:fb:53:5d:4f:70:1e:ad:d9: 9a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:4F:56:65:05:9A:BC:7B:E3:47:5E:F9:E7:7A:97:97:B7:16:FC:87 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/YU9WZQWavHvjR17553qXl7cW_Ic.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.124.0/22 5.35.216.0/21 77.73.40.0/21 185.40.148.0/22 IPv6: 2a01:5780::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 42493 Signature Algorithm: sha256WithRSAEncryption 5d:67:8e:9e:5c:80:68:b7:ea:5a:b2:c5:01:3e:a2:22:a2:b2: 15:e8:a3:60:67:d2:97:40:ce:da:6d:3b:16:d7:7e:3b:ae:42: 13:d6:10:a8:a8:d2:98:5c:a2:6e:0d:37:19:8f:05:42:f9:9d: 35:98:c5:1d:9d:f2:6a:0a:01:15:36:a6:bc:e7:d0:f5:5c:bc: 96:42:6a:41:78:ba:50:29:7a:db:ae:a8:c7:89:31:62:00:8a: 01:78:fc:48:1a:d3:74:76:38:98:76:58:40:e7:3a:ef:2e:27: 62:e8:19:fb:df:fb:6f:c7:0e:ae:98:8a:e5:74:15:e6:38:15: ee:01:c9:8e:05:bb:51:ee:f8:e1:b2:51:e2:a8:c4:af:4e:86: 01:35:b9:7d:6f:8b:9b:40:8e:81:35:9e:ed:a8:c4:05:1b:29: 8b:3b:5b:d2:3e:27:e4:4c:9a:4d:2a:b1:c6:65:94:be:bb:75: 8e:2e:a8:be:2b:84:41:34:ea:79:76:12:44:55:f0:3c:57:df: a0:de:cb:57:f6:7e:43:cc:9e:74:1d:e6:dd:51:6d:91:67:ef: 79:bf:7f:17:6f:9b:52:c5:16:51:96:26:3a:e7:ec:18:bf:00: 2b:f3:5a:f1:f4:bd:22:5f:07:11:ab:78:c0:3f:17:27:72:74: ee:e6:b1:0e -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgISAZt9ytYbR2Pyjfwg75iPRAZbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgyMDAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTRmNTY2NTA1OWFiYzdiZTM0NzVlZjllNzdhOTc5N2I3MTZmYzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Q9EEUXcg7NIoYfQ7uZ9ezLgiYDw vw4XG+BbJlitYGtzUYlTccEOsJiTqLvJYXNY/lZJYXVxCN6PUloMo69zbX1sME5l TDvtf0w37/Sew0VNo9HNFBPrMyiOEINi7OhA8budB2FNW9dfx981HdaNUswmUalh E6j2z4xgeLQkSvTWsSbapPc/2f4aUxUTzOz26BhXxelvnOrGGcDNe96EHmNldhry yp9hBY1KB34azkI0pKPNBjWmJC9loHvU8Cn3n7rhK1b8hf3ewuqy5NJPZlPK6tpB X+CBIG1G/K6b8oqLPPEFJhucnznOtTaPah1xTFNmfqAU+1NdT3AerdmawwIDAQAB o4ICwTCCAr0wHQYDVR0OBBYEFGFPVmUFmrx740de+ed6l5e3FvyHMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFlLzg4OGEw NC03N2Y0LTQxNTktOTg2Yy0zY2VmNTkzZDE2YjQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWUvODg4YTA0 LTc3ZjQtNDE1OS05ODZjLTNjZWY1OTNkMTZiNC8xL1lVOVdaUVdhdkh2alIxNzU1 M3FYbDdjV19JYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQCAjt8AwQDBSPYAwQDTUkoAwQCuSiUMA0EAgAC MAcDBQAqAVeAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwCl/TANBgkqhkiG9w0B AQsFAAOCAQEAXWeOnlyAaLfqWrLFAT6iIqKyFeijYGfSl0DO2m07Ftd+O65CE9YQ qKjSmFyibg03GY8FQvmdNZjFHZ3yagoBFTamvOfQ9Vy8lkJqQXi6UCl6266ox4kx YgCKAXj8SBrTdHY4mHZYQOc67y4nYugZ+9/7b8cOrpiK5XQV5jgV7gHJjgW7Ue74 4bJR4qjEr06GATW5fW+Lm0COgTWe7ajEBRspiztb0j4n5EyaTSqxxmWUvrt1ji6o viuEQTTqeXYSRFXwPFffoN7LV/Z+Q8yedB3m3VFtkWfveb9/F2+bUsUWUZYmOufs GL8AK/Na8fS9Il8HEat4wD8XJ3J07uaxDg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:50 2026 by rpki-client