This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YeVlVi0-P1ZenApBlG6lPUXV1lc.cer File: YeVlVi0-P1ZenApBlG6lPUXV1lc.cer (raw, json) Hash identifier: Ou2vtC3vVqGItUALZqJbLQ5eyve4Yv6BifKtqKoOF6A= Subject key identifier: 61:E5:65:56:2D:3E:3F:56:5E:9C:0A:41:94:6E:A5:3D:45:D5:D6:57 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC8DAA0A28F828BB7FA1CD0C072B732 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/YeVlVi0-P1ZenApBlG6lPUXV1lc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:19:02 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211186 IP: 91.218.22.0/24 IP: 185.14.96.0/24 IP: 185.42.209.0 -- 185.42.210.255 IP: 195.95.189.0/24 IP: 2a0c:2580::/30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:da:a0:a2:8f:82:8b:b7:fa:1c:d0:c0:72:b7:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61e565562d3e3f565e9c0a41946ea53d45d5d657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7f:88:05:07:66:e1:f8:b3:ef:70:7e:52:1f: 57:cb:85:5b:86:20:15:76:8b:76:68:8a:ff:5d:88: 61:f5:d3:84:0c:34:8a:2c:2c:63:68:65:82:a8:42: c6:1e:38:f3:d2:69:13:64:02:e4:73:92:bd:25:d5: 64:60:01:21:e7:8e:4c:42:5e:c6:2b:1a:12:5d:2e: dc:ed:a3:ea:21:c7:38:e2:e2:e5:8e:78:13:b5:c7: 50:05:61:50:8e:da:d7:0e:9c:57:2c:d0:b5:a5:16: 90:d2:84:9b:b8:bc:2a:ab:f7:b8:9d:3b:c7:d9:b4: dd:33:5a:7a:9e:be:2c:ce:24:a8:fd:7d:c0:f1:d5: a8:65:9e:bb:92:55:e2:68:7c:9f:cf:4c:8b:8b:87: 3c:da:31:d3:a5:ec:5c:c8:5e:a4:13:fa:9d:93:cb: e4:ea:b8:43:85:7c:39:2b:fa:af:35:30:00:ce:58: 12:93:e5:6b:35:ae:79:2b:82:c6:97:b2:49:30:e2: 39:a9:eb:00:c7:b8:36:b6:0a:6e:d8:ec:d2:1e:8f: 07:2a:be:6f:8a:d4:4c:b7:42:fa:a0:aa:ff:d5:d4: 9d:25:82:57:67:1b:8a:aa:20:f5:64:68:05:93:45: 6b:fc:e5:ac:c5:3e:67:b0:d5:22:8c:10:09:78:5b: f4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E5:65:56:2D:3E:3F:56:5E:9C:0A:41:94:6E:A5:3D:45:D5:D6:57 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/YeVlVi0-P1ZenApBlG6lPUXV1lc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.218.22.0/24 185.14.96.0/24 185.42.209.0-185.42.210.255 195.95.189.0/24 IPv6: 2a0c:2580::/30 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211186 Signature Algorithm: sha256WithRSAEncryption 9c:53:56:f8:6f:c8:4d:27:78:05:04:c7:36:ed:7e:0a:59:bf: 3e:a5:a3:ec:bf:22:b9:e6:a0:cf:3b:bd:0d:59:a2:32:62:79: 98:6c:a3:8e:8e:3d:47:2c:cf:ae:cc:83:e4:b8:2c:50:fa:10: 03:90:04:ba:d3:1f:c7:10:fe:03:9d:ce:d0:46:39:1c:72:e7: 71:b2:e7:c5:12:bc:48:c1:36:7a:7d:d6:8d:e8:a5:14:d7:c9: 73:f5:49:56:d4:59:69:31:68:b2:3d:13:09:76:d6:32:f5:65: 6a:1d:5c:02:a4:9e:d9:31:11:e8:e8:c6:17:e8:e0:99:dc:a4: 0e:aa:0b:0e:a2:af:26:61:ad:72:a6:69:5a:46:94:b0:89:e3: e5:56:3b:ba:60:76:2e:7b:01:2a:15:8d:b2:ee:f0:aa:d0:8e: 42:74:72:65:e2:12:48:2e:b6:32:46:9c:c1:3a:91:cc:79:34: 68:0a:b9:e7:da:01:62:20:2b:9a:34:52:25:b0:78:6c:e4:9a: 9d:3a:39:9c:0f:67:73:33:e7:be:a5:ce:7f:12:f5:9b:3a:29: 16:e9:80:e5:50:b8:dd:bf:7c:3a:ee:59:eb:fd:75:56:b0:52: 9c:d5:d0:1c:a8:e8:86:7b:dc:2e:ed:0b:61:79:c1:c2:58:37: b2:c6:bd:bd -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgISAZt6yNqgoo+Ci7f6HNDAcrcyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MWU1NjU1NjJkM2UzZjU2NWU5YzBhNDE5NDZlYTUzZDQ1ZDVkNjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3n+IBQdm4fiz73B+Uh9Xy4VbhiAV dot2aIr/XYhh9dOEDDSKLCxjaGWCqELGHjjz0mkTZALkc5K9JdVkYAEh545MQl7G KxoSXS7c7aPqIcc44uLljngTtcdQBWFQjtrXDpxXLNC1pRaQ0oSbuLwqq/e4nTvH 2bTdM1p6nr4sziSo/X3A8dWoZZ67klXiaHyfz0yLi4c82jHTpexcyF6kE/qdk8vk 6rhDhXw5K/qvNTAAzlgSk+VrNa55K4LGl7JJMOI5qesAx7g2tgpu2OzSHo8HKr5v itRMt0L6oKr/1dSdJYJXZxuKqiD1ZGgFk0Vr/OWsxT5nsNUijBAJeFv0DwIDAQAB o4ICyTCCAsUwHQYDVR0OBBYEFGHlZVYtPj9WXpwKQZRupT1F1dZXMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4LzY2MjE0 Yi0wMWRmLTRiMDEtYmE3Ni1mNGNiZDZiYTZjMGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvNjYyMTRi LTAxZGYtNGIwMS1iYTc2LWY0Y2JkNmJhNmMwZi8xL1llVmxWaTAtUDFaZW5BcEJs RzZsUFVYVjFsYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEgGCCsGAQUF BwEHAQH/BDkwNzAmBAIAATAgAwQAW9oWAwQAuQ5gMAwDBAC5KtEDBAC5KtIDBADD X70wDQQCAAIwBwMFAioMJYAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAzjyMA0G CSqGSIb3DQEBCwUAA4IBAQCcU1b4b8hNJ3gFBMc27X4KWb8+paPsvyK55qDPO70N WaIyYnmYbKOOjj1HLM+uzIPkuCxQ+hADkAS60x/HEP4Dnc7QRjkccudxsufFErxI wTZ6fdaN6KUU18lz9UlW1FlpMWiyPRMJdtYy9WVqHVwCpJ7ZMRHo6MYX6OCZ3KQO qgsOoq8mYa1ypmlaRpSwiePlVju6YHYuewEqFY2y7vCq0I5CdHJl4hJILrYyRpzB OpHMeTRoCrnn2gFiICuaNFIlsHhs5JqdOjmcD2dzM+e+pc5/EvWbOikW6YDlULjd v3w67lnr/XVWsFKc1dAcqOiGe9wu7QthecHCWDeyxr29 -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:53 2026 by rpki-client