This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer File: sYxKQwCDfE6hetHjghoJrVN2QIc.cer (raw, json) Hash identifier: +nNmcVybLoUSoK2sgazO7SNldBF3Lt2UTYeZ4kYKGJY= Subject key identifier: B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E7C01ED6F525A52E6B52AAC821929 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:11 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 213011 IP: 91.211.1.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:7c:01:ed:6f:52:5a:52:e6:b5:2a:ac:82:19:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b18c4a4300837c4ea17ad1e3821a09ad53764087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2c:bb:c4:d2:53:41:5e:36:8b:c1:25:cc:cf: 72:fc:d4:88:4f:96:85:51:24:fe:49:ce:ac:cb:e9: 94:f0:ee:e2:d0:1f:02:b1:14:d3:a1:a1:f5:d2:3b: ad:66:66:2e:07:7b:fa:37:1e:98:e9:f6:df:d0:2d: 37:98:f9:c5:b1:f4:3f:23:4a:7e:fd:b6:bf:eb:0a: 74:12:2b:cc:5f:72:e9:4a:7b:67:3a:65:98:0e:51: c2:7b:83:6f:01:1b:d0:7d:6a:fc:d6:ef:0c:c6:b5: f9:81:87:4e:1c:f1:d8:00:90:53:8f:1e:d9:ae:0b: 4f:4a:98:7e:a3:9c:4a:49:2e:7e:91:cf:69:33:6b: b8:ce:0b:9e:aa:20:82:df:49:85:21:3e:e6:27:99: 82:25:8d:b9:7a:b7:37:ec:b9:4d:06:17:ad:fe:f0: 0c:1a:63:b1:26:78:b5:f3:af:cd:6c:f4:dc:54:8a: 3b:cc:d7:e9:c4:af:78:6a:a8:08:fa:40:d2:02:e2: 68:bc:d3:8a:a6:18:cd:fe:fe:0c:9b:1c:56:b7:4a: fa:f3:70:1a:b0:57:ef:cb:e4:c5:67:49:53:ec:9a: 77:52:1e:80:6c:5d:0e:e5:86:3e:e9:87:aa:ea:c3: fd:1d:ba:df:10:12:fb:99:27:b8:3e:a6:1f:9d:6f: 26:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.211.1.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 213011 Signature Algorithm: sha256WithRSAEncryption 3a:8c:a8:b2:6c:09:f0:d2:8c:10:f5:a3:9f:02:1d:97:49:b9: 99:c1:7b:41:1b:d6:60:5a:c3:f0:a6:4c:2f:e0:56:b9:97:7a: 1c:a9:d9:c2:71:a4:09:5d:c5:d0:d5:5d:19:f5:92:ec:df:62: c3:ed:89:c2:56:0e:91:ad:ca:fd:d2:25:5c:03:27:e5:ce:2a: 76:f3:35:a5:e6:f7:87:fa:27:34:54:6d:49:99:09:8d:b7:35: b7:8b:00:19:f7:ad:3c:4d:7c:8f:00:c5:6e:f8:4d:e8:35:05: d2:7b:3f:49:10:8f:93:ab:e4:96:b6:c4:22:7c:2f:ab:fa:aa: 0b:79:2b:38:2f:81:8d:d8:d0:4a:16:69:05:ac:62:38:36:03: 71:ea:4a:5a:63:62:de:ed:44:ce:8a:64:b6:56:4e:86:b3:2d: 80:2e:0f:69:8d:08:ca:a1:66:90:b1:86:03:26:e5:48:0e:65: de:0b:1e:c6:d9:a8:49:59:24:ca:44:7b:36:84:04:02:24:11: a0:ec:be:4a:26:b9:ce:0b:ca:46:b0:af:9c:d0:6d:e7:6a:bd: df:b8:c8:a4:27:e1:8e:6a:4a:92:58:54:d6:9b:07:6d:78:41: e1:3c:13:df:c4:73:2e:a9:ef:e4:2d:f7:17:c8:8b:d5:35:8d: bd:56:67:f2 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt5fnwB7W9SWlLmtSqsghkpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMThjNGE0MzAwODM3YzRlYTE3YWQxZTM4MjFhMDlhZDUzNzY0MDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCy7xNJTQV42i8ElzM9y/NSIT5aF UST+Sc6sy+mU8O7i0B8CsRTToaH10jutZmYuB3v6Nx6Y6fbf0C03mPnFsfQ/I0p+ /ba/6wp0EivMX3LpSntnOmWYDlHCe4NvARvQfWr81u8MxrX5gYdOHPHYAJBTjx7Z rgtPSph+o5xKSS5+kc9pM2u4zgueqiCC30mFIT7mJ5mCJY25erc37LlNBhet/vAM GmOxJni186/NbPTcVIo7zNfpxK94aqgI+kDSAuJovNOKphjN/v4MmxxWt0r683Aa sFfvy+TFZ0lT7Jp3Uh6AbF0O5YY+6Yeq6sP9HbrfEBL7mSe4PqYfnW8mXQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFLGMSkMAg3xOoXrR44IaCa1TdkCHMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAzL2FmNGU0 Yi0yMDI2LTRiYmItOTYyOC1mMDhhMGFlOTJiOGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMvYWY0ZTRi LTIwMjYtNGJiYi05NjI4LWYwOGEwYWU5MmI4ZC8xL3NZeEtRd0NEZkU2aGV0SGpn aG9KclZOMlFJYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9MBMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwNAEzANBgkqhkiG9w0BAQsFAAOCAQEAOoyosmwJ8NKMEPWjnwIdl0m5mcF7QRvW YFrD8KZML+BWuZd6HKnZwnGkCV3F0NVdGfWS7N9iw+2JwlYOka3K/dIlXAMn5c4q dvM1peb3h/onNFRtSZkJjbc1t4sAGfetPE18jwDFbvhN6DUF0ns/SRCPk6vklrbE Inwvq/qqC3krOC+BjdjQShZpBaxiODYDcepKWmNi3u1EzopktlZOhrMtgC4PaY0I yqFmkLGGAyblSA5l3gsextmoSVkkykR7NoQEAiQRoOy+Sia5zgvKRrCvnNBt52q9 37jIpCfhjmpKklhU1psHbXhB4TwT38RzLqnv5C33F8iL1TWNvVZn8g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:01 2026 by rpki-client