This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Y_lyZ-fAB5UwlQnx6NPZzeCnbE4.cer File: Y_lyZ-fAB5UwlQnx6NPZzeCnbE4.cer (raw, json) Hash identifier: VcOwR+DxHiHc++FF6WheD9OMwzxQRVSIBskAJYWpB6I= Subject key identifier: 63:F9:72:67:E7:C0:07:95:30:95:09:F1:E8:D3:D9:CD:E0:A7:6C:4E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77588BDF94EF58EBDC2B97095F547006 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/7a1c2e-75fb-44c6-a83c-14673c72a1df/1/Y_lyZ-fAB5UwlQnx6NPZzeCnbE4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/7a1c2e-75fb-44c6-a83c-14673c72a1df/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:17:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 39892 IP: 185.79.196.0/22 IP: 2a05:7780::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:8b:df:94:ef:58:eb:dc:2b:97:09:5f:54:70:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=63f97267e7c00795309509f1e8d3d9cde0a76c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:87:59:f5:24:4d:27:21:f5:ef:c9:ce:07:c5: c2:19:a9:c2:5f:ea:ce:16:35:51:b6:1e:5b:fe:3c: 2f:63:60:5a:f1:f9:0b:33:b0:ea:2c:67:09:7c:86: f5:53:c2:cd:c3:c2:67:db:66:fa:9a:42:2d:ec:f3: fb:5a:2b:06:a8:96:6f:5f:f2:79:ab:37:72:c0:ee: 4d:39:f2:c1:dd:a9:7e:13:37:3b:96:d6:53:c4:21: 48:67:2d:0f:cb:7f:9b:19:64:a9:09:86:fe:fb:bb: 25:f4:9f:4e:29:bd:f2:b2:59:0d:f9:ae:63:a7:22: bf:83:53:fa:a9:a2:3f:f7:d0:43:6d:21:8e:fa:a9: 25:cb:99:30:8d:6c:51:f9:db:c8:23:ad:61:5d:d5: 76:ce:d7:5f:47:fc:52:32:af:13:d4:d3:bf:b6:65: 55:8d:4f:59:6b:39:29:3e:9a:89:03:2e:f8:3f:0c: d4:54:64:fe:ff:a0:31:a5:e2:d6:5a:9c:ed:1f:89: 56:31:fe:b1:f3:04:f2:31:d1:cb:57:07:2b:82:67: 38:03:42:34:36:64:4d:6c:f6:05:35:b7:95:c1:a8: a5:13:44:2f:03:1a:e9:75:db:7d:9a:ba:79:e7:30: 04:cc:ab:4d:53:b9:82:b5:68:3c:0c:09:ec:62:48: 69:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F9:72:67:E7:C0:07:95:30:95:09:F1:E8:D3:D9:CD:E0:A7:6C:4E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/7a1c2e-75fb-44c6-a83c-14673c72a1df/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/7a1c2e-75fb-44c6-a83c-14673c72a1df/1/Y_lyZ-fAB5UwlQnx6NPZzeCnbE4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.79.196.0/22 IPv6: 2a05:7780::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 39892 Signature Algorithm: sha256WithRSAEncryption 88:76:80:46:65:c7:6a:96:1b:bf:05:ae:7d:ff:f4:b3:84:3f: ec:00:62:27:75:37:b0:88:7d:c6:91:7a:6a:40:6f:7c:25:e1: 5e:a2:3d:51:5d:b3:c8:e5:93:5e:fc:eb:a0:ba:c0:e3:fb:c7: fd:44:e1:9c:94:16:cd:70:59:89:72:c3:a6:79:1a:25:84:42: 2e:52:ba:10:da:9e:04:97:cb:53:22:16:84:7c:98:30:23:f1: 81:5a:96:02:f4:ea:d9:d2:09:e0:88:67:b7:09:9a:2c:e9:f9: 74:36:1f:ca:a9:b5:2f:a8:09:a1:0b:76:67:cd:07:b9:b6:db: a5:c8:a5:5e:90:4b:af:88:6e:85:eb:be:37:f8:1f:1d:6c:ef: 52:fc:aa:2c:02:56:86:c9:66:4c:18:bf:19:96:1b:ab:a7:b3: a5:6e:e8:2b:66:0c:83:88:86:81:58:4c:1c:fe:1d:eb:b1:43: 7b:39:96:83:61:64:b4:77:74:e4:70:96:04:38:27:06:bf:42: c9:33:90:fb:7a:a1:1e:ca:3d:bf:0a:16:32:7b:25:b3:eb:5d: 36:61:bb:93:b9:e7:36:c8:0d:d1:72:01:bb:97:bd:db:ea:4d: dc:c2:da:7b:0a:ad:96:5d:f4:c9:5f:37:92:e9:d6:89:87:1f: 98:f0:94:42 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3WIvflO9Y69wrlwlfVHAGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2M2Y5NzI2N2U3YzAwNzk1MzA5NTA5ZjFlOGQzZDljZGUwYTc2YzRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnodZ9SRNJyH178nOB8XCGanCX+rO FjVRth5b/jwvY2Ba8fkLM7DqLGcJfIb1U8LNw8Jn22b6mkIt7PP7WisGqJZvX/J5 qzdywO5NOfLB3al+Ezc7ltZTxCFIZy0Py3+bGWSpCYb++7sl9J9OKb3yslkN+a5j pyK/g1P6qaI/99BDbSGO+qkly5kwjWxR+dvII61hXdV2ztdfR/xSMq8T1NO/tmVV jU9ZazkpPpqJAy74PwzUVGT+/6AxpeLWWpztH4lWMf6x8wTyMdHLVwcrgmc4A0I0 NmRNbPYFNbeVwailE0QvAxrpddt9mrp55zAEzKtNU7mCtWg8DAnsYkhp2wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFGP5cmfnwAeVMJUJ8ejT2c3gp2xOMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y1LzdhMWMy ZS03NWZiLTQ0YzYtYTgzYy0xNDY3M2M3MmExZGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUvN2ExYzJl LTc1ZmItNDRjNi1hODNjLTE0NjczYzcyYTFkZi8xL1lfbHlaLWZBQjVVd2xRbng2 TlBaemVDbmJFNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuU/EMA0EAgACMAcDBQMqBXeAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCb1DANBgkqhkiG9w0BAQsFAAOCAQEAiHaARmXHapYb vwWuff/0s4Q/7ABiJ3U3sIh9xpF6akBvfCXhXqI9UV2zyOWTXvzroLrA4/vH/UTh nJQWzXBZiXLDpnkaJYRCLlK6ENqeBJfLUyIWhHyYMCPxgVqWAvTq2dIJ4Ihntwma LOn5dDYfyqm1L6gJoQt2Z80HubbbpcilXpBLr4huheu+N/gfHWzvUvyqLAJWhslm TBi/GZYbq6ezpW7oK2YMg4iGgVhMHP4d67FDezmWg2FktHd05HCWBDgnBr9CyTOQ +3qhHso9vwoWMnsls+tdNmG7k7nnNsgN0XIBu5e92+pN3MLaewqtll30yV83kunW iYcfmPCUQg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:14 2026 by rpki-client