This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer File: iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer (raw, json) Hash identifier: mcod4w0OHwKIt6/Qp5F0fs6IcLqDC2OKghbRem9Fu4g= Subject key identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7759609FB37C9241B75E1A0371ADEC9F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:24 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 28831 IP: 62.169.32.0/19 IP: 185.107.148.0/22 IP: 2a01:7460::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:60:9f:b3:7c:92:41:b7:5e:1a:03:71:ad:ec:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=898825d2f064989b38c781f2a8535189a26928c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d5:ae:6c:6b:30:0e:a3:37:c9:97:17:7b:03: a9:88:6f:c7:65:99:03:f4:a2:71:fc:6c:bf:f0:50: 19:e9:8d:40:89:e6:17:4f:38:5e:ff:60:b8:5f:c3: 0d:9a:9e:ea:01:0f:5e:db:8d:75:59:9e:19:35:52: 2c:37:62:12:16:2e:1b:e8:6b:9b:7d:85:38:94:d2: b6:74:f2:8b:f5:21:d9:0d:9d:7c:d0:bb:c8:4a:31: b2:ad:ab:f4:52:34:e4:cb:1d:4f:58:7b:f7:84:80: a0:98:ff:d9:28:a9:18:b1:3c:c8:01:9b:30:02:32: 56:73:07:e6:44:1f:72:2c:74:0c:4e:bf:ca:83:ed: 14:bf:99:1d:88:0a:f8:a8:1e:d5:9d:22:bb:7a:0e: ee:00:7e:c0:57:e3:e3:b0:d3:5a:ce:74:8b:c1:d9: e2:e5:f4:4d:20:29:47:35:71:b9:20:e6:be:c4:dd: 94:d0:e8:04:5d:bb:14:fc:d0:81:d7:0b:e3:b2:8b: 71:c8:9d:2c:cd:2f:85:5a:b3:0a:88:df:ed:44:e4: 41:56:d5:dd:d4:49:25:d6:89:46:a1:a5:a6:a2:65: 43:d0:66:66:2a:48:a9:8e:bf:d4:8a:4f:32:d1:1a: 31:7d:ad:0d:ef:a6:42:86:46:f3:20:fc:0f:65:a9: 2a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.169.32.0/19 185.107.148.0/22 IPv6: 2a01:7460::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 28831 Signature Algorithm: sha256WithRSAEncryption 4b:e4:89:ea:35:a2:3f:fa:18:a3:6e:83:e4:28:32:f1:63:e0: 0f:0a:08:51:92:cf:94:14:bd:5b:be:ff:fb:0a:e2:03:6f:54: ea:e2:07:b7:ca:1a:82:01:96:ca:1b:ee:b2:48:47:cd:ff:b9: f2:ed:d5:3c:83:37:d8:6f:20:ac:65:e0:44:e1:1d:24:8f:15: 5f:eb:57:79:94:2b:73:59:c9:a5:5b:d6:e6:6c:2d:34:01:fb: 58:af:eb:7d:a8:8d:0f:49:cb:2e:1a:aa:2d:2b:69:16:4c:23: 58:0c:4b:62:47:59:e7:01:73:c8:71:e9:c9:ee:34:4f:99:93: f1:2f:28:bb:dc:76:24:47:cb:33:5c:7a:e5:10:87:76:8d:ae: e3:71:8b:47:db:71:1e:06:94:e5:c7:d9:9a:ec:2e:c6:1e:f8: 3f:5e:36:10:24:57:28:0d:bd:97:d3:6f:1e:0a:db:30:39:a1: e4:69:3b:b0:94:c4:03:42:21:a2:a8:43:b6:31:5c:89:cc:56: ac:aa:8d:53:d7:68:c2:b5:ea:d6:96:40:d7:c6:8e:5e:af:8a: 3c:88:83:eb:70:a3:1f:0f:74:9f:63:e3:ed:72:f0:22:13:ff: d8:67:6d:66:c9:36:09:b9:3b:8e:b0:59:be:60:0c:21:39:96: 98:2b:5f:1c -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt3WWCfs3ySQbdeGgNxreyfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTg4MjVkMmYwNjQ5ODliMzhjNzgxZjJhODUzNTE4OWEyNjkyOGMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9WubGswDqM3yZcXewOpiG/HZZkD 9KJx/Gy/8FAZ6Y1AieYXTzhe/2C4X8MNmp7qAQ9e2411WZ4ZNVIsN2ISFi4b6Gub fYU4lNK2dPKL9SHZDZ180LvISjGyrav0UjTkyx1PWHv3hICgmP/ZKKkYsTzIAZsw AjJWcwfmRB9yLHQMTr/Kg+0Uv5kdiAr4qB7VnSK7eg7uAH7AV+PjsNNaznSLwdni 5fRNIClHNXG5IOa+xN2U0OgEXbsU/NCB1wvjsotxyJ0szS+FWrMKiN/tRORBVtXd 1Ekl1olGoaWmomVD0GZmKkipjr/Uik8y0Roxfa0N76ZChkbzIPwPZakqdQIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFImIJdLwZJibOMeB8qhTUYmiaSjDMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM2LzBhYTRk MC0wNWU0LTQ4MDItOTlkOC1lY2FlNDE0NDZiNzcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYvMGFhNGQw LTA1ZTQtNDgwMi05OWQ4LWVjYWU0MTQ0NmI3Ny8xL2lZZ2wwdkJrbUpzNHg0SHlx Rk5SaWFKcEtNTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQFPqkgAwQCuWuUMA0EAgACMAcDBQAqAXRgMBkG CCsGAQUFBwEIAQH/BAowCKAGMAQCAnCfMA0GCSqGSIb3DQEBCwUAA4IBAQBL5Inq NaI/+hijboPkKDLxY+APCghRks+UFL1bvv/7CuIDb1Tq4ge3yhqCAZbKG+6ySEfN /7ny7dU8gzfYbyCsZeBE4R0kjxVf61d5lCtzWcmlW9bmbC00AftYr+t9qI0PScsu GqotK2kWTCNYDEtiR1nnAXPIcenJ7jRPmZPxLyi73HYkR8szXHrlEId2ja7jcYtH 23EeBpTlx9ma7C7GHvg/XjYQJFcoDb2X028eCtswOaHkaTuwlMQDQiGiqEO2MVyJ zFasqo1T12jCterWlkDXxo5er4o8iIPrcKMfD3SfY+PtcvAiE//YZ21myTYJuTuO sFm+YAwhOZaYK18c -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:18 2026 by rpki-client