This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dy-5SkWdO3XOi_uPErTPcZgsY0M.cer File: dy-5SkWdO3XOi_uPErTPcZgsY0M.cer (raw, json) Hash identifier: tMKLhMxXdZoDuyH/1h2MrGldYWvqsh5Bl+3kvBujxOI= Subject key identifier: 77:2F:B9:4A:45:9D:3B:75:CE:8B:FB:8F:12:B4:CF:71:98:2C:63:43 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F852BE2A45A67522DC819C90260E50B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/337e3d-536c-4d50-8657-2b11ad693815/1/dy-5SkWdO3XOi_uPErTPcZgsY0M.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/337e3d-536c-4d50-8657-2b11ad693815/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:23:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212084 IP: 2001:678:28c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:2b:e2:a4:5a:67:52:2d:c8:19:c9:02:60:e5:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:23:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=772fb94a459d3b75ce8bfb8f12b4cf71982c6343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fb:b9:b4:32:62:66:ff:14:9a:f5:c7:7b:2b: f5:48:7d:6c:63:d5:fa:bc:eb:5f:b0:fc:87:e1:91: c3:44:45:e7:2c:2b:36:5c:5e:8f:30:e5:e9:8d:8a: 78:40:94:96:e4:bf:7e:20:7b:83:bd:fd:67:11:9f: 5b:66:2d:ac:b4:64:67:a3:fe:86:e1:81:ad:59:d5: 1e:fd:6e:85:68:ea:4d:2d:cb:e0:9b:b3:9c:16:3b: e9:26:21:90:8c:b9:30:99:90:cd:51:50:21:14:87: ed:25:05:3d:78:56:17:9b:e1:a1:7c:54:b2:64:cb: 8e:86:55:8c:e0:56:c3:2d:cf:c2:ba:2d:bc:db:32: 57:cd:e3:ae:fb:3a:b6:04:82:dd:12:5d:86:e7:9d: 24:45:4f:11:fb:34:dc:1e:8c:3f:44:fe:60:37:74: ea:2e:ca:65:94:f0:9f:59:dd:ba:b0:a5:73:8f:bd: db:93:09:e3:2c:65:34:c7:b0:ac:95:bf:05:9a:ed: 68:3f:05:dd:09:be:6f:28:4c:ce:da:94:22:f3:4c: 82:40:52:4a:f2:3e:3b:6f:76:06:22:17:c6:98:0d: af:37:73:5b:4a:73:d6:02:39:b3:7a:7d:15:14:96: 3a:ef:8a:a4:00:4b:9d:7f:43:56:a5:66:a2:62:6f: 1d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2F:B9:4A:45:9D:3B:75:CE:8B:FB:8F:12:B4:CF:71:98:2C:63:43 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/337e3d-536c-4d50-8657-2b11ad693815/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/337e3d-536c-4d50-8657-2b11ad693815/1/dy-5SkWdO3XOi_uPErTPcZgsY0M.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:28c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212084 Signature Algorithm: sha256WithRSAEncryption 1e:69:7e:3c:f2:b2:8a:1e:87:15:b5:c1:b7:df:69:d6:b7:6b: 71:1a:20:b4:b3:34:43:d6:bc:bd:95:77:8a:ad:8c:cb:bb:12: 1a:18:6a:17:46:c3:42:48:1e:c1:3f:ed:cd:67:31:ea:2d:82: e3:f5:43:11:87:a4:7b:4a:7e:26:ac:f8:33:c9:ea:43:2d:2f: c9:f4:2e:da:8e:23:92:b6:2b:2b:6c:eb:07:1d:fe:84:fd:44: 53:a3:b1:1a:e2:b9:01:47:a5:86:22:eb:66:8d:c7:f2:74:eb: cd:c7:45:d4:57:ef:85:db:69:f3:dd:fa:cf:4a:61:17:88:72: 3c:65:c6:e9:1c:fc:27:f7:6c:d9:10:5e:46:5b:80:61:03:08: 04:0d:33:cb:6f:90:58:f4:45:e0:c6:fa:ec:69:b0:2f:05:c9: 5c:04:0f:af:74:e4:ca:b5:18:80:3a:35:fd:c1:d5:4d:09:0a: 51:70:9e:00:13:de:03:b6:b8:a9:08:db:e9:be:52:89:8c:3e: 40:ca:7c:95:f7:72:92:35:c0:20:fd:3c:a7:a5:27:79:ce:0d: 73:05:73:42:74:f4:c0:6b:f3:2a:8b:c7:0d:e9:74:1f:84:15: fd:2e:77:48:b6:c5:93:b0:34:cf:5b:94:75:97:78:55:17:e6: 62:4e:38:bd -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt/hSvipFpnUi3IGckCYOULMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMzEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzJmYjk0YTQ1OWQzYjc1Y2U4YmZiOGYxMmI0Y2Y3MTk4MmM2MzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/u5tDJiZv8UmvXHeyv1SH1sY9X6 vOtfsPyH4ZHDREXnLCs2XF6PMOXpjYp4QJSW5L9+IHuDvf1nEZ9bZi2stGRno/6G 4YGtWdUe/W6FaOpNLcvgm7OcFjvpJiGQjLkwmZDNUVAhFIftJQU9eFYXm+GhfFSy ZMuOhlWM4FbDLc/Cui282zJXzeOu+zq2BILdEl2G550kRU8R+zTcHow/RP5gN3Tq LspllPCfWd26sKVzj73bkwnjLGU0x7Cslb8Fmu1oPwXdCb5vKEzO2pQi80yCQFJK 8j47b3YGIhfGmA2vN3NbSnPWAjmzen0VFJY674qkAEudf0NWpWaiYm8d9wIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFHcvuUpFnTt1zov7jxK0z3GYLGNDMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NiLzMzN2Uz ZC01MzZjLTRkNTAtODY1Ny0yYjExYWQ2OTM4MTUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2IvMzM3ZTNk LTUzNmMtNGQ1MC04NjU3LTJiMTFhZDY5MzgxNS8xL2R5LTVTa1dkTzNYT2lfdVBF clRQY1pnc1kwTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAKMMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwM8dDANBgkqhkiG9w0BAQsFAAOCAQEAHml+PPKyih6HFbXBt99p1rdrcRog tLM0Q9a8vZV3iq2My7sSGhhqF0bDQkgewT/tzWcx6i2C4/VDEYeke0p+Jqz4M8nq Qy0vyfQu2o4jkrYrK2zrBx3+hP1EU6OxGuK5AUelhiLrZo3H8nTrzcdF1Ffvhdtp 8936z0phF4hyPGXG6Rz8J/ds2RBeRluAYQMIBA0zy2+QWPRF4Mb67GmwLwXJXAQP r3TkyrUYgDo1/cHVTQkKUXCeABPeA7a4qQjb6b5SiYw+QMp8lfdykjXAIP08p6Un ec4NcwVzQnT0wGvzKovHDel0H4QV/S53SLbFk7A0z1uUdZd4VRfmYk44vQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:23 2026 by rpki-client