This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mYDHD3bwtfXIRXoDN61dYxIs9-Y.cer File: mYDHD3bwtfXIRXoDN61dYxIs9-Y.cer (raw, json) Hash identifier: VIi5GHyAXUZxEhWmKsCttFilYNYho/8kMKQ9f9RCIV4= Subject key identifier: 99:80:C7:0F:76:F0:B5:F5:C8:45:7A:03:37:AD:5D:63:12:2C:F7:E6 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE5ED5EF2B4C89E6E8AE64D82A9DAE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cd/42ec68-d433-4000-906c-c3eae6b0fb9c/1/mYDHD3bwtfXIRXoDN61dYxIs9-Y.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cd/42ec68-d433-4000-906c-c3eae6b0fb9c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:19:15 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43008 IP: 91.194.30.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:5e:d5:ef:2b:4c:89:e6:e8:ae:64:d8:2a:9d:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9980c70f76f0b5f5c8457a0337ad5d63122cf7e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6a:88:db:1e:5a:bb:60:32:a4:30:e7:3a:67: a4:35:25:0a:62:a1:ee:db:b6:85:66:d2:66:62:b8: 23:e0:8a:ef:3a:66:fb:fd:a6:ef:25:68:ad:bb:85: 4c:29:56:47:11:26:71:08:8c:91:a6:31:7b:ae:ce: b3:62:10:2f:bf:87:93:54:c7:8a:53:ae:7f:28:32: a2:08:29:ab:fe:74:93:f0:a4:60:7b:18:75:84:02: be:60:bc:77:9b:20:da:33:73:40:02:1e:0d:56:c9: 25:d1:99:9a:d5:3d:b7:14:7f:cc:9a:4d:8e:ad:53: 14:e4:40:42:49:b8:cf:11:94:16:a0:39:07:e9:31: f0:bb:ec:68:3a:d7:f1:80:6f:96:bf:bb:e2:2b:a3: 5e:72:4e:da:25:85:12:bf:7e:22:3f:8a:11:9e:1e: cf:f3:7f:4a:1d:dc:1b:22:8e:5d:43:78:3a:09:05: e2:b2:4e:07:18:65:15:7f:58:81:7e:ca:1f:5c:9f: 0f:0e:11:bf:72:0c:0d:de:ce:84:c4:28:df:53:fc: 06:3d:84:78:b0:f6:87:7c:c4:5a:96:8f:bd:56:05: 18:54:e0:90:3c:42:b2:3c:5d:88:80:d4:44:21:be: 3d:33:77:85:8b:b6:b5:d6:17:ee:ac:6a:56:59:23: 96:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:80:C7:0F:76:F0:B5:F5:C8:45:7A:03:37:AD:5D:63:12:2C:F7:E6 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/42ec68-d433-4000-906c-c3eae6b0fb9c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/42ec68-d433-4000-906c-c3eae6b0fb9c/1/mYDHD3bwtfXIRXoDN61dYxIs9-Y.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.194.30.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43008 Signature Algorithm: sha256WithRSAEncryption 52:56:f3:d5:bc:e8:3c:22:f1:cf:22:91:cd:a5:50:3e:55:c1: 40:85:19:14:0a:ec:fe:35:e6:c6:13:59:f6:3f:d9:f6:23:e9: 9c:79:42:77:17:f4:ef:c8:7c:37:90:db:e1:80:ae:c3:d4:1c: 9d:c4:e3:96:39:63:e1:5d:4e:df:d2:31:b5:38:f3:5b:9d:91: 9c:3c:b9:40:13:04:38:b0:c9:36:3d:31:10:48:35:2e:00:5d: 0c:40:6d:8a:ea:d7:7c:26:0b:71:c2:ff:96:77:95:87:f4:5b: a8:79:2a:8c:b0:17:88:35:06:1d:d2:0f:43:23:4e:56:02:da: 3f:41:38:60:76:48:ee:e2:a6:e1:13:f4:67:b0:99:81:a4:64: 19:4f:05:3b:e5:5a:46:7e:39:67:59:e1:d0:8b:7a:f6:52:86: 43:e2:63:97:bd:32:d0:cc:b6:cc:43:14:a7:59:c9:dc:68:96: ff:62:88:9e:96:f2:e7:c2:1f:2f:9b:b8:b7:02:cb:45:78:80: 85:73:ee:fe:ea:4e:5b:d3:36:cf:fc:fe:8b:0b:0f:b6:21:67: b3:8b:9c:40:d2:1b:71:b1:04:f6:2a:d8:6e:b9:59:a5:f2:a3: ef:76:36:a7:ef:03:ae:65:c4:74:d7:10:37:95:4f:2f:f6:7e: 16:4e:94:ca -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt87l7V7ytMiebormTYKp2uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTgwYzcwZjc2ZjBiNWY1Yzg0NTdhMDMzN2FkNWQ2MzEyMmNmN2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmqI2x5au2AypDDnOmekNSUKYqHu 27aFZtJmYrgj4IrvOmb7/abvJWitu4VMKVZHESZxCIyRpjF7rs6zYhAvv4eTVMeK U65/KDKiCCmr/nST8KRgexh1hAK+YLx3myDaM3NAAh4NVskl0Zma1T23FH/Mmk2O rVMU5EBCSbjPEZQWoDkH6THwu+xoOtfxgG+Wv7viK6Neck7aJYUSv34iP4oRnh7P 839KHdwbIo5dQ3g6CQXisk4HGGUVf1iBfsofXJ8PDhG/cgwN3s6ExCjfU/wGPYR4 sPaHfMRalo+9VgUYVOCQPEKyPF2IgNREIb49M3eFi7a11hfurGpWWSOWDwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFJmAxw928LX1yEV6AzetXWMSLPfmMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NkLzQyZWM2 OC1kNDMzLTQwMDAtOTA2Yy1jM2VhZTZiMGZiOWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2QvNDJlYzY4 LWQ0MzMtNDAwMC05MDZjLWMzZWFlNmIwZmI5Yy8xL21ZREhEM2J3dGZYSVJYb0RO NjFkWXhJczktWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW8IeMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCoADANBgkqhkiG9w0BAQsFAAOCAQEAUlbz1bzoPCLxzyKRzaVQPlXBQIUZFArs /jXmxhNZ9j/Z9iPpnHlCdxf078h8N5Db4YCuw9QcncTjljlj4V1O39IxtTjzW52R nDy5QBMEOLDJNj0xEEg1LgBdDEBtiurXfCYLccL/lneVh/RbqHkqjLAXiDUGHdIP QyNOVgLaP0E4YHZI7uKm4RP0Z7CZgaRkGU8FO+VaRn45Z1nh0It69lKGQ+Jjl70y 0My2zEMUp1nJ3GiW/2KInpby58IfL5u4twLLRXiAhXPu/upOW9M2z/z+iwsPtiFn s4ucQNIbcbEE9irYbrlZpfKj73Y2p+8DrmXEdNcQN5VPL/Z+Fk6Uyg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:48 2026 by rpki-client