This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Yg3VGG3mWmRt2kuJ3UjtRIc68Uk.cer File: Yg3VGG3mWmRt2kuJ3UjtRIc68Uk.cer (raw, json) Hash identifier: EnA5sOWgtWZyk0V3uDerSpAAIPYf5xsg4HIpGoFGocQ= Subject key identifier: 62:0D:D5:18:6D:E6:5A:64:6D:DA:4B:89:DD:48:ED:44:87:3A:F1:49 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910A3955E36DDE22BC192FEC845767B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/e2c33a-2143-43ff-8fd6-e6f3ecbf6743/1/Yg3VGG3mWmRt2kuJ3UjtRIc68Uk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/e2c33a-2143-43ff-8fd6-e6f3ecbf6743/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 44664 IP: 91.202.144.0/22 IP: 91.225.56.0/22 IP: 91.247.224.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:a3:95:5e:36:dd:e2:2b:c1:92:fe:c8:45:76:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=620dd5186de65a646dda4b89dd48ed44873af149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:07:c0:67:c7:3c:a3:a5:9f:e5:f1:88:1b:31: 8e:94:0c:3e:e8:32:aa:e3:e4:8b:9a:ab:6a:e8:cb: 64:9d:83:85:19:f3:57:c0:c6:f0:bd:24:83:b1:7e: fd:2b:ed:b6:5d:1a:92:dc:59:a7:8c:61:fb:c6:f5: 90:9f:04:44:a2:8b:26:3b:9d:8f:6b:8a:cf:f6:31: bc:32:6b:9e:9d:50:9b:27:f3:ec:b6:fc:e7:38:01: b7:2a:3e:df:97:0a:5b:90:e6:6c:a6:ce:0a:92:01: 57:e0:e2:5f:80:e2:de:a2:d6:75:be:98:26:45:e4: 93:29:99:5a:f4:0a:78:a1:2d:b5:12:d5:00:30:80: fb:2d:3d:d5:1c:17:ee:1c:54:29:35:f3:3a:00:72: 88:e0:b4:c5:e7:9e:ac:7b:d6:a8:04:06:78:9a:66: d3:ca:26:c0:fd:87:99:ee:f4:c6:85:a6:08:fb:f0: 45:10:a9:1e:92:a4:90:58:3b:03:06:8a:d8:e0:f6: 77:60:6b:62:b8:3c:5c:1f:db:56:36:f7:8f:a7:ad: 85:9c:9e:06:24:bd:03:f7:35:8d:f2:59:c1:d3:14: 29:5e:ae:31:de:a9:b2:3c:13:aa:c0:4d:5b:c9:e0: 5e:53:04:61:f2:ca:c4:06:ba:fa:61:6a:ba:0d:81: a1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0D:D5:18:6D:E6:5A:64:6D:DA:4B:89:DD:48:ED:44:87:3A:F1:49 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e2c33a-2143-43ff-8fd6-e6f3ecbf6743/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e2c33a-2143-43ff-8fd6-e6f3ecbf6743/1/Yg3VGG3mWmRt2kuJ3UjtRIc68Uk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.202.144.0/22 91.225.56.0/22 91.247.224.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 44664 Signature Algorithm: sha256WithRSAEncryption ab:e3:1b:20:ad:f6:8d:d6:78:42:f0:68:aa:f3:b7:69:2f:23: ce:a3:d9:4b:a1:3b:b7:af:e5:ba:74:6d:fe:4b:60:9c:bc:f3: 16:c9:98:b0:05:14:a0:e2:7c:3d:94:75:d7:88:9c:2a:5c:7a: 40:aa:00:8f:af:a9:1d:bc:b5:a4:f7:0d:7a:2e:8d:87:5d:64: ce:8a:1a:9a:26:a9:7d:85:c8:ec:f6:3a:d0:44:1c:bb:04:df: f7:48:31:8e:1d:12:ad:a1:34:f7:dd:62:f5:ce:e0:a8:4a:b2: a7:05:43:42:4c:2e:ae:57:a0:34:76:22:b3:65:75:ac:a2:43: d0:5a:5b:89:99:3d:0d:69:ea:9c:17:11:4d:fe:2a:b3:f1:95: 0e:be:a8:42:79:df:35:dd:38:40:55:5f:d8:bf:36:a3:10:d0: 71:c9:8c:33:4e:14:81:5e:7c:a1:e3:ac:0a:2e:b6:bf:75:1a: 40:36:c3:7e:4c:3a:e4:27:7d:20:81:35:6e:6c:64:34:f0:4e: b7:84:f9:e2:1a:eb:d7:42:4e:e8:e1:4a:cc:6d:f0:d3:0e:8f: 53:fe:19:2f:27:55:d6:9c:13:21:58:dd:b6:45:b9:09:c5:98: 18:02:e4:68:14:78:d8:49:2a:66:11:41:d6:73:13:cf:fd:e5: e9:58:a9:02 -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgISAZt5EKOVXjbd4ivBkv7IRXZ7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjBkZDUxODZkZTY1YTY0NmRkYTRiODlkZDQ4ZWQ0NDg3M2FmMTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAfAZ8c8o6Wf5fGIGzGOlAw+6DKq 4+SLmqtq6MtknYOFGfNXwMbwvSSDsX79K+22XRqS3FmnjGH7xvWQnwREoosmO52P a4rP9jG8MmuenVCbJ/PstvznOAG3Kj7flwpbkOZsps4KkgFX4OJfgOLeotZ1vpgm ReSTKZla9Ap4oS21EtUAMID7LT3VHBfuHFQpNfM6AHKI4LTF556se9aoBAZ4mmbT yibA/YeZ7vTGhaYI+/BFEKkekqSQWDsDBorY4PZ3YGtiuDxcH9tWNvePp62FnJ4G JL0D9zWN8lnB0xQpXq4x3qmyPBOqwE1byeBeUwRh8srEBrr6YWq6DYGhewIDAQAB o4ICrDCCAqgwHQYDVR0OBBYEFGIN1Rht5lpkbdpLid1I7USHOvFJMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZkL2UyYzMz YS0yMTQzLTQzZmYtOGZkNi1lNmYzZWNiZjY3NDMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQvZTJjMzNh LTIxNDMtNDNmZi04ZmQ2LWU2ZjNlY2JmNjc0My8xL1lnM1ZHRzNtV21SdDJrdUoz VWp0UkljNjhVay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAATASAwQCW8qQAwQCW+E4AwQCW/fgMBoGCCsGAQUFBwEI AQH/BAswCaAHMAUCAwCueDANBgkqhkiG9w0BAQsFAAOCAQEAq+MbIK32jdZ4QvBo qvO3aS8jzqPZS6E7t6/lunRt/ktgnLzzFsmYsAUUoOJ8PZR114icKlx6QKoAj6+p Hby1pPcNei6Nh11kzooamiapfYXI7PY60EQcuwTf90gxjh0SraE0991i9c7gqEqy pwVDQkwurlegNHYis2V1rKJD0FpbiZk9DWnqnBcRTf4qs/GVDr6oQnnfNd04QFVf 2L82oxDQccmMM04UgV58oeOsCi62v3UaQDbDfkw65Cd9IIE1bmxkNPBOt4T54hrr 10JO6OFKzG3w0w6PU/4ZLydV1pwTIVjdtkW5CcWYGALkaBR42EkqZhFB1nMTz/3l 6VipAg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:27:21 2026 by rpki-client