This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vY-cA-dX89tRTKONFa2kUfoulhU.cer File: vY-cA-dX89tRTKONFa2kUfoulhU.cer (raw, json) Hash identifier: 1ootgkwCvo93nZ6nAnvP5y+1RVFd1IMyO6Fagxh18G8= Subject key identifier: BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED29A7511ACEBB757B9C6E524A89A8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/vY-cA-dX89tRTKONFa2kUfoulhU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:19:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202072 AS: 204262 IP: 141.98.96.0/22 IP: 185.45.44.0/22 IP: 185.109.96.0/22 IP: 193.3.28.0/24 IP: 2a04:a0c0::/29 IP: 2a06:4f00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:29:a7:51:1a:ce:bb:75:7b:9c:6e:52:4a:89:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bd8f9c03e757f3db514ca38d15ada451fa2e9615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:34:8d:86:c3:35:9c:9f:56:61:1b:c1:0e:00: 7c:87:f1:30:a1:49:da:65:e2:c5:05:dc:95:02:26: 6f:45:93:f9:87:d5:38:1d:31:f4:6c:2d:5a:16:ea: 78:21:b8:fa:2c:2b:50:aa:cb:ef:b5:63:7f:98:89: 91:26:1a:1f:25:f4:85:fd:c9:d5:69:b3:5a:60:8a: 92:01:9a:3a:4a:b8:8c:b1:87:0a:08:57:15:4a:b3: 91:54:a0:17:29:fd:03:32:2a:1d:b9:ad:b6:82:dc: 39:d9:f3:20:d1:bf:0b:c5:52:e3:eb:79:dc:3a:26: fa:7e:91:23:49:32:cb:00:5d:84:13:36:81:75:ec: 06:ff:10:13:29:3a:22:f0:3d:64:1e:fa:25:c0:85: d0:e9:f1:11:70:a7:6c:0e:e6:14:56:5f:07:0a:b9: 70:d2:5f:ed:57:d4:ea:66:98:33:7d:f5:1b:a7:0c: 74:97:fa:5b:d8:dc:3a:48:4d:89:c6:4c:a4:ce:a9: f6:11:61:25:16:d8:6a:bc:2f:47:90:4b:74:ec:21: 82:a4:d9:50:2b:c5:eb:17:2e:34:60:66:55:cc:e4: a3:27:5d:2f:de:d3:1e:9f:b9:51:ca:61:e1:d7:1f: d8:ce:9e:72:a4:f9:25:b1:bd:e8:6a:6d:d8:24:3e: 9d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/vY-cA-dX89tRTKONFa2kUfoulhU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.98.96.0/22 185.45.44.0/22 185.109.96.0/22 193.3.28.0/24 IPv6: 2a04:a0c0::/29 2a06:4f00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202072 204262 Signature Algorithm: sha256WithRSAEncryption b1:00:1e:bd:6a:f7:b6:fa:d6:0d:94:f4:8a:72:63:4e:0d:0e: 28:da:2d:57:ee:d5:90:29:72:61:10:d7:75:a2:4b:28:99:f1: ea:c6:f3:94:3e:40:e0:08:b7:0e:ba:97:03:bd:53:af:53:9f: 16:a6:2f:1b:62:80:79:0b:97:0c:23:59:e0:5f:9d:6b:65:73: 0b:62:6c:de:52:1b:a7:27:e4:5b:19:27:e5:74:c6:4a:03:2d: f5:bb:32:ce:4c:72:42:48:9e:31:32:bf:66:d2:09:40:24:31: b6:c1:c1:da:b8:f5:24:3c:1e:17:b8:fe:91:1f:4c:0b:42:16: 46:7e:c5:ad:f3:91:bf:1b:5d:fe:a9:00:16:cb:aa:38:95:90: 51:05:87:b2:db:99:22:3a:41:3f:89:74:ed:81:1b:76:aa:36: 67:7a:c3:de:c1:1f:86:50:55:29:36:d5:2a:9e:70:5a:b5:27: 42:87:89:97:f9:d2:5a:9b:32:5d:1a:8c:29:4f:e9:b0:d3:26: 01:6b:46:93:1f:26:fb:51:7b:7d:e6:94:dd:85:1e:1c:0b:7e: ac:57:c8:20:eb:c1:0d:3b:ee:76:36:d3:52:71:ca:78:af:d0: dc:68:26:d4:e6:1b:e9:d0:45:8a:62:14:c7:a2:f3:3a:8b:5f: 35:5f:46:92 -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgISAZt57SmnURrOu3V7nG5SSomoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDhmOWMwM2U3NTdmM2RiNTE0Y2EzOGQxNWFkYTQ1MWZhMmU5NjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjSNhsM1nJ9WYRvBDgB8h/EwoUna ZeLFBdyVAiZvRZP5h9U4HTH0bC1aFup4Ibj6LCtQqsvvtWN/mImRJhofJfSF/cnV abNaYIqSAZo6SriMsYcKCFcVSrORVKAXKf0DMiodua22gtw52fMg0b8LxVLj63nc Oib6fpEjSTLLAF2EEzaBdewG/xATKToi8D1kHvolwIXQ6fERcKdsDuYUVl8HCrlw 0l/tV9TqZpgzffUbpwx0l/pb2Nw6SE2Jxkykzqn2EWElFthqvC9HkEt07CGCpNlQ K8XrFy40YGZVzOSjJ10v3tMen7lRymHh1x/Yzp5ypPklsb3oam3YJD6dywIDAQAB o4ICzTCCAskwHQYDVR0OBBYEFL2PnAPnV/PbUUyjjRWtpFH6LpYVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YxL2I4M2U0 Ny1iYzA0LTQ5MmQtOWEwNy1lY2RkODE3NDAwN2EvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjEvYjgzZTQ3 LWJjMDQtNDkyZC05YTA3LWVjZGQ4MTc0MDA3YS8xL3ZZLWNBLWRYODl0UlRLT05G YTJrVWZvdWxoVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEcGCCsGAQUF BwEHAQH/BDgwNjAeBAIAATAYAwQCjWJgAwQCuS0sAwQCuW1gAwQAwQMcMBQEAgAC MA4DBQMqBKDAAwUDKgZPADAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMDFVgCAwMd 5jANBgkqhkiG9w0BAQsFAAOCAQEAsQAevWr3tvrWDZT0inJjTg0OKNotV+7VkCly YRDXdaJLKJnx6sbzlD5A4Ai3DrqXA71Tr1OfFqYvG2KAeQuXDCNZ4F+da2VzC2Js 3lIbpyfkWxkn5XTGSgMt9bsyzkxyQkieMTK/ZtIJQCQxtsHB2rj1JDweF7j+kR9M C0IWRn7FrfORvxtd/qkAFsuqOJWQUQWHstuZIjpBP4l07YEbdqo2Z3rD3sEfhlBV KTbVKp5wWrUnQoeJl/nSWpsyXRqMKU/psNMmAWtGkx8m+1F7feaU3YUeHAt+rFfI IOvBDTvudjbTUnHKeK/Q3Ggm1OYb6dBFimIUx6LzOotfNV9Gkg== -----END CERTIFICATE-----Generated at Fri Jan 9 00:51:49 2026 by rpki-client