This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YfvYiH2oRHExjYOISsAF8BtE_Uk.cer File: YfvYiH2oRHExjYOISsAF8BtE_Uk.cer (raw, json) Hash identifier: ZGjM6hlxanQinibYImsrpMnUM+bTYqrOXMxGlkW3+Zo= Subject key identifier: 61:FB:D8:88:7D:A8:44:71:31:8D:83:88:4A:C0:05:F0:1B:44:FD:49 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C12DF0F2D832921DEB9A8ACDCA4CC02 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/0ce569-ab8e-4712-949a-cec9e17f504b/1/YfvYiH2oRHExjYOISsAF8BtE_Uk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/0ce569-ab8e-4712-949a-cec9e17f504b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:19:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203412 IP: 79.142.36.0/24 IP: 79.142.44.0/22 IP: 185.125.172.0/22 IP: 2a07:f00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:df:0f:2d:83:29:21:de:b9:a8:ac:dc:a4:cc:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61fbd8887da84471318d83884ac005f01b44fd49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2e:20:26:43:b2:62:32:29:6e:9a:bb:9d:7e: 89:21:0b:27:0e:af:17:e0:fd:34:7b:01:13:e5:19: 89:20:9d:ab:1f:62:fb:69:01:5b:b8:42:32:58:ea: a3:cf:08:db:b3:5b:90:6e:c4:5c:09:1b:8e:3c:03: f9:13:13:91:a2:cc:98:ed:1b:14:39:4f:b2:93:75: 12:52:5c:02:65:7b:bf:be:f9:46:f0:45:ff:d6:d2: 1f:1e:44:e1:af:22:f0:19:0c:d0:89:b7:e6:b5:b3: 11:c1:73:5e:b7:9e:51:c7:49:47:7b:80:e4:a2:1d: 39:a6:ce:c2:1b:fa:ca:78:cb:52:ae:35:64:7f:5a: d0:93:04:39:42:d6:8e:ef:a5:2b:de:4d:44:4d:92: b1:db:e6:42:9a:05:1e:38:aa:2e:e0:85:c4:14:4f: de:f8:cb:fa:d2:4a:f9:02:d4:7c:d8:9c:49:00:f6: 21:65:11:77:c4:28:01:ea:f1:48:91:33:78:3d:6d: a6:f6:88:f9:4d:4e:67:79:a9:d0:82:b9:95:4d:5f: 53:25:14:27:ed:f0:8f:27:54:e4:97:b1:e4:83:51: 88:07:59:4c:3e:61:f2:c6:da:f7:44:5f:0f:4b:73: b7:92:a9:c1:c2:c6:a6:5c:ae:fb:b6:93:9d:53:45: 23:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:FB:D8:88:7D:A8:44:71:31:8D:83:88:4A:C0:05:F0:1B:44:FD:49 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0ce569-ab8e-4712-949a-cec9e17f504b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0ce569-ab8e-4712-949a-cec9e17f504b/1/YfvYiH2oRHExjYOISsAF8BtE_Uk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.142.36.0/24 79.142.44.0/22 185.125.172.0/22 IPv6: 2a07:f00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203412 Signature Algorithm: sha256WithRSAEncryption 8c:50:7e:88:3c:6b:78:53:11:8d:26:fc:fa:2c:62:0b:03:b7: 45:dd:07:09:07:3f:eb:4d:9b:66:87:fb:e4:7e:9b:eb:f7:a0: 8d:5f:7b:83:8f:a2:1b:e7:cc:a8:0c:c2:3e:8b:68:70:da:bf: 9d:ab:bf:0d:94:4f:22:b1:19:ad:2b:40:6c:d0:a8:14:53:50: b4:91:1a:be:41:13:26:39:f8:94:ae:11:c6:0d:1a:28:2e:6a: 74:f9:e4:3e:25:20:73:23:fa:42:eb:15:7f:c3:5a:6d:96:82: 3f:55:af:88:0e:61:ae:05:9f:0b:5e:31:5b:ce:fb:a0:59:4c: cd:94:e8:3c:9f:11:32:17:c8:8f:54:32:67:22:b5:fd:ae:64: dd:1d:1c:fa:75:13:21:d2:ef:8c:dc:d4:fb:0d:6e:41:5e:58: c2:3e:c8:1f:01:55:ea:e8:39:20:6d:39:cc:07:f1:b0:41:a4: b1:4b:e4:b1:17:86:8e:79:2e:e4:6b:2e:89:4e:a1:1a:ac:16: 41:75:cb:1f:da:ba:da:0e:f6:03:6b:fc:9f:0c:73:c2:ec:a0: b3:bf:ae:9e:25:ee:56:5d:2c:df:e0:6a:c6:a6:d3:0d:2f:51: bb:04:17:b5:a9:54:b2:10:74:18:bc:27:0c:39:27:aa:aa:c9: e0:30:19:3b -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZt8Et8PLYMpId65qKzcpMwCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MWZiZDg4ODdkYTg0NDcxMzE4ZDgzODg0YWMwMDVmMDFiNDRmZDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxS4gJkOyYjIpbpq7nX6JIQsnDq8X 4P00ewET5RmJIJ2rH2L7aQFbuEIyWOqjzwjbs1uQbsRcCRuOPAP5ExORosyY7RsU OU+yk3USUlwCZXu/vvlG8EX/1tIfHkThryLwGQzQibfmtbMRwXNet55Rx0lHe4Dk oh05ps7CG/rKeMtSrjVkf1rQkwQ5QtaO76Ur3k1ETZKx2+ZCmgUeOKou4IXEFE/e +Mv60kr5AtR82JxJAPYhZRF3xCgB6vFIkTN4PW2m9oj5TU5neanQgrmVTV9TJRQn 7fCPJ1Tkl7Hkg1GIB1lMPmHyxtr3RF8PS3O3kqnBwsamXK77tpOdU0UjVwIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFGH72Ih9qERxMY2DiErABfAbRP1JMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5LzBjZTU2 OS1hYjhlLTQ3MTItOTQ5YS1jZWM5ZTE3ZjUwNGIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvMGNlNTY5 LWFiOGUtNDcxMi05NDlhLWNlYzllMTdmNTA0Yi8xL1lmdllpSDJvUkhFeGpZT0lT c0FGOEJ0RV9Vay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQAT44kAwQCT44sAwQCuX2sMA0EAgACMAcDBQMq Bw8AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMalDANBgkqhkiG9w0BAQsFAAOC AQEAjFB+iDxreFMRjSb8+ixiCwO3Rd0HCQc/602bZof75H6b6/egjV97g4+iG+fM qAzCPotocNq/nau/DZRPIrEZrStAbNCoFFNQtJEavkETJjn4lK4Rxg0aKC5qdPnk PiUgcyP6QusVf8NabZaCP1WviA5hrgWfC14xW877oFlMzZToPJ8RMhfIj1QyZyK1 /a5k3R0c+nUTIdLvjNzU+w1uQV5Ywj7IHwFV6ug5IG05zAfxsEGksUvksReGjnku 5GsuiU6hGqwWQXXLH9q62g72A2v8nwxzwuygs7+uniXuVl0s3+BqxqbTDS9RuwQX talUshB0GLwnDDknqqrJ4DAZOw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:49:57 2026 by rpki-client