This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer File: kyIxLx0huzs4bKOqlzrGzSVLcDk.cer (raw, json) Hash identifier: l9DG+nLivFJCZ0GQs9BcZviDPQE3/RsusKWs8p1s8mM= Subject key identifier: 93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5B672D8A78D96D2C820A59FF396C9A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:18:20 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 33831 IP: 84.18.32.0/19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:67:2d:8a:78:d9:6d:2c:82:0a:59:ff:39:6c:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9322312f1d21bb3b386ca3aa973ac6cd254b7039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b8:1e:f2:2f:57:4a:e6:4c:1d:6e:78:e3:a4: 70:56:38:9e:6c:bf:b3:97:6c:13:9b:0c:cb:36:38: fa:d2:9a:4f:ab:c4:8a:b7:37:04:9b:91:d5:d5:05: a1:2f:9d:c5:aa:43:b0:f0:55:30:7a:fa:e2:d8:df: 2e:11:84:7c:36:f5:11:78:bd:f7:59:9d:15:2d:dd: a6:0b:1c:72:97:ed:dd:8d:d3:e4:bc:91:48:0c:ed: 96:f1:1c:57:02:c0:4a:84:a0:d8:4a:c7:4f:67:dd: 1f:b3:1f:ea:32:9a:fb:82:ee:22:3c:19:99:f9:d4: 1f:41:93:cb:6e:bb:2b:71:ea:e0:69:75:af:a9:1b: 8a:01:00:81:47:d7:83:81:50:2a:d7:8d:7e:bb:35: 06:50:f8:f7:2a:3e:4d:41:d1:3b:55:12:ea:a6:f3: 86:8f:d9:01:d9:ba:a8:ed:e9:18:d4:16:9c:6f:a9: c9:e0:02:40:ee:ca:22:ff:0e:b8:1f:19:bd:47:c5: e6:51:03:f7:1e:9f:ad:86:3a:c0:40:7f:16:a5:e2: 0d:68:f2:3a:c0:11:59:3b:d3:9a:62:59:b8:67:ef: 65:67:d6:1d:f0:8f:a3:98:a6:0a:90:38:1e:f3:6d: 63:ca:59:25:c4:cc:80:13:77:8e:6b:75:cb:ba:4a: eb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.18.32.0/19 sbgp-autonomousSysNum: critical Autonomous System Numbers: 33831 Signature Algorithm: sha256WithRSAEncryption 53:fc:d0:ae:ff:bd:82:00:16:04:cc:bc:a9:35:f6:07:1f:f3: 39:2f:1a:23:0a:23:9f:74:0d:cb:9c:2c:df:f1:08:33:1b:04: f8:ab:cd:2c:12:23:56:66:d2:be:66:b2:b0:a7:4f:97:53:1d: a7:bd:f7:ea:33:68:cc:ad:4e:64:e3:b1:33:90:44:e3:a1:70: 25:da:43:fb:ec:e6:50:e6:d0:de:7b:e9:97:18:96:82:e1:ad: e5:bb:9a:fc:57:34:1c:be:6d:19:c7:ed:0c:df:90:51:df:35: 93:1c:61:55:c1:27:85:77:9e:e7:b4:eb:0f:9a:34:05:b7:c2: 17:b7:e3:d4:3b:6b:84:1f:27:05:9e:bc:df:79:6e:65:8b:43: f0:3d:d3:22:d8:95:06:56:42:ce:05:f0:02:cc:e1:f9:aa:3a: b0:b4:c6:4d:e1:21:2c:a9:06:68:cb:b3:98:e5:6b:d6:cb:c0: 6c:f3:e6:e5:0c:86:35:91:73:1d:ca:e6:5d:32:68:24:9e:cb: 5b:05:a8:bd:2f:36:c2:b0:46:e7:cd:01:4f:da:98:8c:68:0a: f6:16:42:bc:ab:ed:dd:8e:59:1c:6b:b0:4e:c1:09:12:ad:5e: 21:22:bc:a2:5c:a6:33:27:2f:50:ce:97:a2:ec:38:83:ff:9a: a2:41:2b:63 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9W2ctinjZbSyCCln/OWyaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzIyMzEyZjFkMjFiYjNiMzg2Y2EzYWE5NzNhYzZjZDI1NGI3MDM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLge8i9XSuZMHW5446RwVjiebL+z l2wTmwzLNjj60ppPq8SKtzcEm5HV1QWhL53FqkOw8FUwevri2N8uEYR8NvUReL33 WZ0VLd2mCxxyl+3djdPkvJFIDO2W8RxXAsBKhKDYSsdPZ90fsx/qMpr7gu4iPBmZ +dQfQZPLbrsrcergaXWvqRuKAQCBR9eDgVAq141+uzUGUPj3Kj5NQdE7VRLqpvOG j9kB2bqo7ekY1Bacb6nJ4AJA7soi/w64Hxm9R8XmUQP3Hp+thjrAQH8WpeINaPI6 wBFZO9OaYlm4Z+9lZ9Yd8I+jmKYKkDge821jylklxMyAE3eOa3XLukrrdwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFJMiMS8dIbs7OGyjqpc6xs0lS3A5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EwLzY5NWQ3 MS1iYmExLTQyNWQtYjlmMy1jMjY3NzgwOWI0YTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAvNjk1ZDcx LWJiYTEtNDI1ZC1iOWYzLWMyNjc3ODA5YjRhNy8xL2t5SXhMeDBodXpzNGJLT3Fs enJHelNWTGNEay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQFVBIgMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCEJzANBgkqhkiG9w0BAQsFAAOCAQEAU/zQrv+9ggAWBMy8qTX2Bx/zOS8aIwoj n3QNy5ws3/EIMxsE+KvNLBIjVmbSvmaysKdPl1Mdp7336jNozK1OZOOxM5BE46Fw JdpD++zmUObQ3nvplxiWguGt5bua/Fc0HL5tGcftDN+QUd81kxxhVcEnhXee57Tr D5o0BbfCF7fj1DtrhB8nBZ6833luZYtD8D3TItiVBlZCzgXwAszh+ao6sLTGTeEh LKkGaMuzmOVr1svAbPPm5QyGNZFzHcrmXTJoJJ7LWwWovS82wrBG580BT9qYjGgK 9hZCvKvt3Y5ZHGuwTsEJEq1eISK8olymMycvUM6Xouw4g/+aokErYw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:36 2026 by rpki-client