This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ysv6JKSIMntzB3XjKdUaGSFhJTE.cer File: Ysv6JKSIMntzB3XjKdUaGSFhJTE.cer (raw, json) Hash identifier: 0H+LBrlygjdfDZKjFzetm+escUEJ0eqNEYsKGeFshk8= Subject key identifier: 62:CB:FA:24:A4:88:32:7B:73:07:75:E3:29:D5:1A:19:21:61:25:31 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834BAC670AA2DE1494B9AF111A58461 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fc/15fee7-d411-4c1d-a7cd-570d17f9f2a5/1/Ysv6JKSIMntzB3XjKdUaGSFhJTE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fc/15fee7-d411-4c1d-a7cd-570d17f9f2a5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:00 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 196956 IP: 109.71.232.0/21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:ba:c6:70:aa:2d:e1:49:4b:9a:f1:11:a5:84:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=62cbfa24a488327b730775e329d51a1921612531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:df:58:2b:76:b0:80:2b:cd:cd:ff:bf:94:62: 6d:a2:de:32:fb:f3:fb:60:d8:4e:af:a1:d7:88:58: 70:36:a1:39:9e:36:49:1b:56:7b:33:59:b3:0f:27: 47:86:39:17:65:a7:ed:fc:16:a7:3f:1d:ef:b5:de: 80:fe:65:8a:90:74:8f:62:be:08:b3:c9:23:4c:32: 47:e1:42:b2:5c:bc:d6:89:20:03:a2:75:de:74:90: 76:c4:b6:2f:8a:5f:01:45:70:d1:e8:1b:88:eb:1d: 1b:85:5d:5d:2b:06:85:9b:53:1c:9a:81:e4:4b:d9: 33:c7:99:4f:7d:63:9d:7a:25:81:a3:d1:07:1b:ed: ed:6c:a6:58:de:06:15:76:93:5a:f2:6f:9d:83:59: c6:9d:65:a9:98:14:9a:74:b2:ce:1f:d2:17:d8:0d: 74:30:2e:d9:ee:59:29:a3:7e:63:e5:3e:15:15:65: 73:65:e2:4b:0b:82:69:95:3d:f1:89:fa:4d:ba:16: 79:cd:c3:5a:c6:6f:94:e2:ca:f1:d5:f4:f3:96:d4: 62:e2:60:e2:f3:eb:da:72:51:78:36:2b:2f:66:34: 29:ee:20:fd:7a:28:07:91:b4:b2:44:a0:b5:1f:03: 18:24:f5:36:95:0a:74:d8:9d:71:d5:15:09:27:5e: b7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CB:FA:24:A4:88:32:7B:73:07:75:E3:29:D5:1A:19:21:61:25:31 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/15fee7-d411-4c1d-a7cd-570d17f9f2a5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/15fee7-d411-4c1d-a7cd-570d17f9f2a5/1/Ysv6JKSIMntzB3XjKdUaGSFhJTE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.71.232.0/21 sbgp-autonomousSysNum: critical Autonomous System Numbers: 196956 Signature Algorithm: sha256WithRSAEncryption 1e:44:be:51:4f:45:02:0b:33:4d:25:cb:7e:fe:de:2e:07:1c: 6a:2c:b2:c9:eb:cb:20:89:dc:f3:f7:5b:f1:49:e5:5d:9a:d5: b6:59:20:9d:45:d2:cc:58:be:9b:37:55:8d:a0:e8:bd:53:b5: 47:23:9b:55:39:ae:a7:06:9a:da:07:11:49:38:27:0a:02:3a: 82:e4:dc:91:b9:37:99:21:e5:b6:38:6f:44:87:12:06:5c:ae: 19:d4:4b:9b:c7:a4:59:0f:e8:14:08:03:9d:19:11:08:fe:cb: 4d:ce:8c:98:65:a3:47:cd:31:cf:40:3a:ac:91:ab:66:f9:52: 4c:57:f2:e2:65:9d:8c:8a:6f:15:cb:9d:26:c7:e6:fa:74:de: 2c:c8:f9:e2:35:8b:ef:1d:94:99:2e:26:d8:22:72:28:6d:c2: 59:8f:69:3c:4f:57:b6:f2:6e:20:b6:4a:91:72:49:d4:cf:b3: 22:7f:c9:0f:1d:32:f8:5a:4e:04:87:06:d6:91:67:67:4b:53: 11:9f:85:ac:bf:2c:ac:33:10:d3:2b:e9:ad:be:34:08:f1:c9: 95:28:3a:14:b4:12:ee:90:d2:8f:36:2e:1d:9b:81:43:7d:42: 8f:ca:8e:68:72:0b:57:ee:a7:c0:0e:ad:05:5a:7b:26:72:46: 59:54:29:35 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4NLrGcKot4UlLmvERpYRhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MmNiZmEyNGE0ODgzMjdiNzMwNzc1ZTMyOWQ1MWExOTIxNjEyNTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1t9YK3awgCvNzf+/lGJtot4y+/P7 YNhOr6HXiFhwNqE5njZJG1Z7M1mzDydHhjkXZaft/BanPx3vtd6A/mWKkHSPYr4I s8kjTDJH4UKyXLzWiSADonXedJB2xLYvil8BRXDR6BuI6x0bhV1dKwaFm1McmoHk S9kzx5lPfWOdeiWBo9EHG+3tbKZY3gYVdpNa8m+dg1nGnWWpmBSadLLOH9IX2A10 MC7Z7lkpo35j5T4VFWVzZeJLC4JplT3xifpNuhZ5zcNaxm+U4srx1fTzltRi4mDi 8+vaclF4NisvZjQp7iD9eigHkbSyRKC1HwMYJPU2lQp02J1x1RUJJ163ewIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFGLL+iSkiDJ7cwd14ynVGhkhYSUxMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZjLzE1ZmVl Ny1kNDExLTRjMWQtYTdjZC01NzBkMTdmOWYyYTUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmMvMTVmZWU3 LWQ0MTEtNGMxZC1hN2NkLTU3MGQxN2Y5ZjJhNS8xL1lzdjZKS1NJTW50ekIzWGpL ZFVhR1NGaEpURS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQDbUfoMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMBXDANBgkqhkiG9w0BAQsFAAOCAQEAHkS+UU9FAgszTSXLfv7eLgccaiyyyevL IInc8/db8UnlXZrVtlkgnUXSzFi+mzdVjaDovVO1RyObVTmupwaa2gcRSTgnCgI6 guTckbk3mSHltjhvRIcSBlyuGdRLm8ekWQ/oFAgDnRkRCP7LTc6MmGWjR80xz0A6 rJGrZvlSTFfy4mWdjIpvFcudJsfm+nTeLMj54jWL7x2UmS4m2CJyKG3CWY9pPE9X tvJuILZKkXJJ1M+zIn/JDx0y+FpOBIcG1pFnZ0tTEZ+FrL8srDMQ0yvprb40CPHJ lSg6FLQS7pDSjzYuHZuBQ31Cj8qOaHILV+6nwA6tBVp7JnJGWVQpNQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:01 2026 by rpki-client