This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/syj-JYobm_YUimzg6KcS8YhAkEw.cer File: syj-JYobm_YUimzg6KcS8YhAkEw.cer (raw, json) Hash identifier: GP9otX9xqMH7HnwHe5J+BcaYa+7IojnaMYwV25eMefQ= Subject key identifier: B3:28:FE:25:8A:1B:9B:F6:14:8A:6C:E0:E8:A7:12:F1:88:40:90:4C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC892AE3C1102ACBF59CE3EA106C7AE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/syj-JYobm_YUimzg6KcS8YhAkEw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:43 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 83.172.128.0 -- 83.172.133.255 IP: 83.172.160.0/23 IP: 83.172.180.0/22 IP: 83.172.188.0/23 IP: 2a02:cec0::/30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:92:ae:3c:11:02:ac:bf:59:ce:3e:a1:06:c7:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b328fe258a1b9bf6148a6ce0e8a712f18840904c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:22:c1:de:5c:3a:2b:32:40:20:d9:b6:22:2b: 29:61:9f:c8:03:f0:50:69:95:42:07:de:a5:32:17: 7d:eb:d7:a0:ab:8a:24:de:27:36:07:3f:ab:dd:e3: d0:ab:2d:d2:98:39:d8:be:ca:69:6e:ef:73:27:b9: cb:32:c3:09:a9:de:2e:82:a3:5f:b3:58:bc:6f:dd: 0f:8f:50:de:c4:ce:ad:69:34:e9:31:51:01:2e:ec: 01:4f:7a:76:f9:f6:f6:1a:fc:0d:00:e5:c9:bd:0a: 12:8f:06:9c:60:eb:cc:9d:56:50:9c:5a:31:64:e5: 9d:96:c9:bd:f9:91:4a:58:31:29:73:75:e1:e1:76: a2:30:d2:c9:5c:be:9e:c5:26:7f:28:9c:b4:7b:6b: dc:03:6f:e2:04:0b:a0:44:73:9f:87:cc:8c:30:57: e4:bd:50:69:3e:a6:4f:9a:46:94:e9:75:ac:35:fd: ab:16:da:b6:c8:f0:c5:4e:46:24:ea:16:ae:68:76: 42:02:e3:28:8c:51:5a:e3:da:fe:ba:3b:f4:b9:d2: cd:95:fb:16:cd:74:bf:03:4c:a0:84:3e:75:11:26: bc:2e:49:3d:6f:10:60:ec:3e:80:4a:b7:97:ad:02: 8d:71:03:69:21:fc:19:f5:da:2c:b3:60:59:01:da: fb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:28:FE:25:8A:1B:9B:F6:14:8A:6C:E0:E8:A7:12:F1:88:40:90:4C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/syj-JYobm_YUimzg6KcS8YhAkEw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.172.128.0-83.172.133.255 83.172.160.0/23 83.172.180.0/22 83.172.188.0/23 IPv6: 2a02:cec0::/30 Signature Algorithm: sha256WithRSAEncryption 35:be:51:40:f7:7d:ec:22:a6:ba:8d:3c:03:fa:86:ec:ce:a5: 6e:ce:15:fe:10:d0:22:93:0f:14:dd:11:1e:bb:4f:0b:33:ac: ec:c7:c6:f0:b8:7c:ef:ce:f5:48:22:20:e7:f0:9b:eb:67:8d: f5:fd:ce:6a:bf:91:65:d0:45:c0:4c:90:6b:5d:35:aa:b1:5b: 2c:85:31:da:0f:76:5c:25:14:69:34:45:79:69:08:29:e4:00: b9:13:c9:75:87:83:72:7c:5f:d0:10:41:99:f0:12:d7:ac:0e: 28:72:f8:9f:e1:e7:c8:af:f8:ab:5c:1b:c0:67:22:5c:1b:7b: 77:b6:50:58:b9:a1:78:ca:91:a0:ec:ec:ad:f6:48:d4:2e:5b: a4:c7:08:b6:29:d9:0d:68:c3:70:ba:05:ce:8d:08:cf:6c:09: f7:a3:03:ac:5b:d6:0c:a9:9f:58:44:11:98:82:5f:6f:1c:51: 46:18:79:03:4a:aa:68:87:ab:12:27:d2:9c:f0:45:6e:87:40: 45:64:7e:f9:cd:0e:96:b7:ca:7e:df:a6:c8:ee:e3:13:98:58: 04:bb:07:ee:f7:ed:4c:ff:13:13:f4:55:ab:3c:6f:ab:34:25: b1:e4:9b:59:3d:a8:b6:4b:ff:9f:81:90:70:0f:53:e1:7b:7a: e9:f9:2d:66 -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgISAZt6yJKuPBECrL9Zzj6hBseuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzI4ZmUyNThhMWI5YmY2MTQ4YTZjZTBlOGE3MTJmMTg4NDA5MDRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyLB3lw6KzJAINm2IispYZ/IA/BQ aZVCB96lMhd969egq4ok3ic2Bz+r3ePQqy3SmDnYvsppbu9zJ7nLMsMJqd4ugqNf s1i8b90Pj1DexM6taTTpMVEBLuwBT3p2+fb2GvwNAOXJvQoSjwacYOvMnVZQnFox ZOWdlsm9+ZFKWDEpc3Xh4XaiMNLJXL6exSZ/KJy0e2vcA2/iBAugRHOfh8yMMFfk vVBpPqZPmkaU6XWsNf2rFtq2yPDFTkYk6hauaHZCAuMojFFa49r+ujv0udLNlfsW zXS/A0yghD51ESa8Lkk9bxBg7D6ASreXrQKNcQNpIfwZ9doss2BZAdr7jQIDAQAB o4ICrTCCAqkwHQYDVR0OBBYEFLMo/iWKG5v2FIps4OinEvGIQJBMMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdkL2ExODhi Yy1kZWVlLTQyZWMtODI4OS1lZDg0YTAwNThhOWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2QvYTE4OGJj LWRlZWUtNDJlYy04Mjg5LWVkODRhMDA1OGE5Zi8xL3N5ai1KWW9ibV9ZVWltemc2 S2NTOFloQWtFdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEgGCCsGAQUF BwEHAQH/BDkwNzAmBAIAATAgMAwDBAdTrIADBAFTrIQDBAFTrKADBAJTrLQDBAFT rLwwDQQCAAIwBwMFAioCzsAwDQYJKoZIhvcNAQELBQADggEBADW+UUD3fewiprqN PAP6huzOpW7OFf4Q0CKTDxTdER67TwszrOzHxvC4fO/O9UgiIOfwm+tnjfX9zmq/ kWXQRcBMkGtdNaqxWyyFMdoPdlwlFGk0RXlpCCnkALkTyXWHg3J8X9AQQZnwEtes Dihy+J/h58iv+KtcG8BnIlwbe3e2UFi5oXjKkaDs7K32SNQuW6THCLYp2Q1ow3C6 Bc6NCM9sCfejA6xb1gypn1hEEZiCX28cUUYYeQNKqmiHqxIn0pzwRW6HQEVkfvnN Dpa3yn7fpsju4xOYWAS7B+737Uz/ExP0Vas8b6s0JbHkm1k9qLZL/5+BkHAPU+F7 eun5LWY= -----END CERTIFICATE-----Generated at Mon Jan 26 21:52:44 2026 by rpki-client