This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hK-YruN6EoFbRL_WvrS-ZKwO9uU.cer File: hK-YruN6EoFbRL_WvrS-ZKwO9uU.cer (raw, json) Hash identifier: aXhhuCnvrLjqMdKTOvSLeSgnfho6dhTI60mn1MiK6Hk= Subject key identifier: 84:AF:98:AE:E3:7A:12:81:5B:44:BF:D6:BE:B4:BE:64:AC:0E:F6:E5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DC9C18328213490C6894239487F9751 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/hK-YruN6EoFbRL_WvrS-ZKwO9uU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:18:52 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 34121 IP: 91.201.184.0/22 IP: 2001:678:d8c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:c1:83:28:21:34:90:c6:89:42:39:48:7f:97:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84af98aee37a12815b44bfd6beb4be64ac0ef6e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:db:40:5e:0c:03:1c:85:e0:1d:22:79:ae:12: e2:c4:69:2e:ce:f1:84:91:1c:ad:13:54:f0:78:b5: 97:88:14:c9:7b:40:af:83:08:3e:31:a1:d3:76:b1: aa:3d:0b:48:95:ea:82:58:df:97:77:7e:d2:f3:a6: 4d:62:40:b8:5f:fe:16:ce:e5:3c:ed:8a:5d:bc:5e: 2b:40:3c:b1:2a:fb:65:f8:0a:f8:8f:f9:c2:fb:51: 49:19:b4:8e:2e:39:d2:1c:3f:65:25:b2:a0:96:85: dc:f7:24:1c:25:23:ab:36:88:df:0b:41:0a:cd:0e: 82:fe:df:a5:36:a2:2d:42:3c:41:dd:99:dc:ae:14: a7:37:d5:d1:25:60:c5:b0:26:c1:5a:76:59:fb:f5: a6:fd:67:6c:c5:a2:26:c3:0a:26:b9:56:53:13:1b: da:bc:18:20:2a:4d:c9:b5:88:0e:10:75:70:af:14: 7b:04:70:a2:02:74:c0:3b:3e:bc:72:fd:fd:cc:22: a9:33:1a:ec:81:f9:ac:a6:21:90:08:81:46:43:f0: 82:8e:f2:62:f5:e6:e0:38:c7:a6:22:c4:a6:02:8f: e0:0a:27:cc:69:8c:1e:3e:74:54:d1:87:13:81:5e: 6e:1d:78:e0:52:10:f1:27:da:02:32:8b:92:aa:92: 6f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:AF:98:AE:E3:7A:12:81:5B:44:BF:D6:BE:B4:BE:64:AC:0E:F6:E5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/hK-YruN6EoFbRL_WvrS-ZKwO9uU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.201.184.0/22 IPv6: 2001:678:d8c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 34121 Signature Algorithm: sha256WithRSAEncryption 44:87:51:ce:a2:0d:e7:59:68:a3:b3:ec:fc:92:cb:9b:8a:54: 27:3f:63:c0:ca:bb:55:bc:e0:8e:1d:7e:ca:39:df:cd:c8:c1: f0:19:d8:7c:d5:c7:32:a8:5e:68:7a:d0:55:57:7e:b2:f6:11: 58:b2:2c:4e:a7:31:42:f2:8e:3a:28:0c:cf:db:db:df:19:43: d7:19:65:09:73:2d:41:4b:75:22:fc:18:a2:41:9e:d6:0e:74: 61:1d:19:e7:53:7e:49:e5:e2:5c:c1:26:61:74:9f:3e:46:81: 3c:83:1a:de:bd:a0:41:a6:35:92:c8:57:0f:a6:35:b3:71:1c: 48:c4:77:cf:35:a7:ba:cb:7f:ad:b8:cf:2a:cf:5b:9f:2c:5a: 1f:47:8b:44:19:60:71:74:06:6b:c5:c7:2c:78:07:ae:18:87: d5:23:1c:16:a1:51:a0:5f:18:21:3a:30:4d:83:64:a7:e8:57: c9:3a:1b:b6:ec:2e:2b:21:1c:b7:2b:9b:f8:fb:4b:77:8d:2c: 1b:2e:55:fd:49:ba:7a:76:bb:2d:f5:60:17:4a:b5:33:6c:32: 4d:e5:59:db:c9:1f:81:61:b7:11:7b:ba:82:b0:c4:7c:47:f2: 3b:aa:36:e9:3d:b5:cd:cb:2d:4f:70:fd:3a:a0:23:76:df:a5: 50:bb:40:83 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt9ycGDKCE0kMaJQjlIf5dRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGFmOThhZWUzN2ExMjgxNWI0NGJmZDZiZWI0YmU2NGFjMGVmNmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh9tAXgwDHIXgHSJ5rhLixGkuzvGE kRytE1TweLWXiBTJe0Cvgwg+MaHTdrGqPQtIleqCWN+Xd37S86ZNYkC4X/4WzuU8 7YpdvF4rQDyxKvtl+Ar4j/nC+1FJGbSOLjnSHD9lJbKgloXc9yQcJSOrNojfC0EK zQ6C/t+lNqItQjxB3ZncrhSnN9XRJWDFsCbBWnZZ+/Wm/WdsxaImwwomuVZTExva vBggKk3JtYgOEHVwrxR7BHCiAnTAOz68cv39zCKpMxrsgfmspiGQCIFGQ/CCjvJi 9ebgOMemIsSmAo/gCifMaYwePnRU0YcTgV5uHXjgUhDxJ9oCMouSqpJv1wIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFISvmK7jehKBW0S/1r60vmSsDvblMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA4L2UyOGE4 YS02NjRlLTQ3M2MtODI1NS03NGUxMDA5OWY4MWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgvZTI4YThh LTY2NGUtNDczYy04MjU1LTc0ZTEwMDk5ZjgxYy8xL2hLLVlydU42RW9GYlJMX1d2 clMtWkt3Tzl1VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQCW8m4MA8EAgACMAkDBwAgAQZ4DYwwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAIVJMA0GCSqGSIb3DQEBCwUAA4IBAQBEh1HOog3n WWijs+z8ksubilQnP2PAyrtVvOCOHX7KOd/NyMHwGdh81ccyqF5oetBVV36y9hFY sixOpzFC8o46KAzP29vfGUPXGWUJcy1BS3Ui/BiiQZ7WDnRhHRnnU35J5eJcwSZh dJ8+RoE8gxrevaBBpjWSyFcPpjWzcRxIxHfPNae6y3+tuM8qz1ufLFofR4tEGWBx dAZrxccseAeuGIfVIxwWoVGgXxghOjBNg2Sn6FfJOhu27C4rIRy3K5v4+0t3jSwb LlX9Sbp6drst9WAXSrUzbDJN5VnbyR+BYbcRe7qCsMR8R/I7qjbpPbXNyy1PcP06 oCN236VQu0CD -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:12 2026 by rpki-client