This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wly3EywZ99UfAC7UrYEa7PWyD1c.cer File: wly3EywZ99UfAC7UrYEa7PWyD1c.cer (raw, json) Hash identifier: oTmZ4UDyz2b6al6aenSQyHjIvUCnpx3Nm823zuNdwmo= Subject key identifier: C2:5C:B7:13:2C:19:F7:D5:1F:00:2E:D4:AD:81:1A:EC:F5:B2:0F:57 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A2A13B1E26BAA07A99ED2C19ABC0AC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/wly3EywZ99UfAC7UrYEa7PWyD1c.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:02 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 3245 IP: 185.143.80.0/22 IP: 192.92.129.0/24 IP: 193.68.0.0/19 IP: 193.68.96.0 -- 193.68.255.255 IP: 2a02:6a80::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:a1:3b:1e:26:ba:a0:7a:99:ed:2c:19:ab:c0:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c25cb7132c19f7d51f002ed4ad811aecf5b20f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b0:e4:6c:33:34:f3:f4:00:a6:bf:27:d7:02: 96:1b:42:a8:5a:86:44:37:94:d5:f3:b8:d3:f6:d4: d5:d0:03:88:6a:66:ad:8d:84:1f:5b:80:b8:ac:e2: f5:e3:df:f1:7c:5f:9f:bb:03:26:95:57:fe:91:bc: 4e:de:cc:c5:b6:2d:6a:a0:73:36:d4:0c:a5:42:25: a6:ac:49:80:e8:68:a9:31:f7:30:17:03:e9:7f:75: c3:6f:90:8a:5c:1c:52:79:9b:0f:0d:c8:24:86:ed: 58:50:33:0c:7c:8b:e4:5d:61:c5:e2:72:03:e0:70: 40:ba:7c:f3:4c:75:e9:5c:c6:f8:aa:99:5c:85:dd: 65:86:a1:eb:eb:a4:87:36:d2:60:a6:69:cf:cc:aa: 11:eb:c5:b3:f8:99:38:e0:02:09:26:47:35:a0:45: bd:b1:00:0b:14:86:7c:7d:06:7c:4a:3d:5a:de:2c: 1e:59:31:19:7c:47:82:d3:05:c5:bb:8a:79:f4:7f: 34:21:56:f4:21:44:8c:94:f0:a0:96:90:49:0e:50: c1:d4:99:c5:24:70:36:dd:17:23:a6:6a:36:82:94: ee:28:fe:ad:8f:c0:7c:ee:e7:10:43:0f:90:d7:9c: 8e:a9:c3:fd:5f:91:d2:65:23:13:e5:d8:54:6b:c2: a5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:5C:B7:13:2C:19:F7:D5:1F:00:2E:D4:AD:81:1A:EC:F5:B2:0F:57 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/wly3EywZ99UfAC7UrYEa7PWyD1c.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.143.80.0/22 192.92.129.0/24 193.68.0.0/19 193.68.96.0-193.68.255.255 IPv6: 2a02:6a80::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 3245 Signature Algorithm: sha256WithRSAEncryption 71:ae:79:5d:d9:d7:1f:ce:98:aa:6f:60:8d:e9:59:e3:a8:42: af:3f:b7:fc:15:fd:57:46:b0:ea:94:da:46:bc:5c:64:92:c1: b6:4b:10:1b:d1:e2:3e:19:c1:9e:0b:06:23:4b:98:cf:8c:cd: a8:2d:25:e6:ec:df:b7:0d:91:57:b9:ea:f6:df:2c:b0:f9:45: 86:a5:7c:6c:5a:45:29:09:25:f4:3a:c9:96:16:d6:7c:6f:eb: ad:31:97:a1:7a:fe:e2:34:2d:78:a6:1c:87:1f:44:2b:e6:8c: 07:47:4b:a9:49:d9:4d:6d:81:cb:d5:1b:06:6b:6b:d7:56:3a: 0b:38:9a:cd:1f:24:0e:8a:43:01:3e:06:f4:8a:02:94:89:ad: e5:43:e2:c0:fd:8b:24:f9:db:21:1a:6c:85:87:80:3f:8a:84: 75:28:e2:40:0d:45:84:11:22:3b:bb:19:70:4e:9d:f1:ef:77: 81:39:f6:f2:e1:49:81:89:35:50:90:35:cc:fa:de:45:15:9f: c7:10:0f:eb:d3:98:33:0c:ea:67:ec:ac:c0:6e:99:02:0f:24: 62:eb:87:b5:76:9c:8b:f4:38:25:bd:1a:a5:0a:f3:e3:00:ed: 5f:bf:96:3f:50:25:02:a3:68:d4:cb:37:22:09:82:d5:26:aa: a0:be:b7:58 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgISAZt4oqE7Hia6oHqZ7SwZq8CsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMjVjYjcxMzJjMTlmN2Q1MWYwMDJlZDRhZDgxMWFlY2Y1YjIwZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLDkbDM08/QApr8n1wKWG0KoWoZE N5TV87jT9tTV0AOIamatjYQfW4C4rOL149/xfF+fuwMmlVf+kbxO3szFti1qoHM2 1AylQiWmrEmA6GipMfcwFwPpf3XDb5CKXBxSeZsPDcgkhu1YUDMMfIvkXWHF4nID 4HBAunzzTHXpXMb4qplchd1lhqHr66SHNtJgpmnPzKoR68Wz+Jk44AIJJkc1oEW9 sQALFIZ8fQZ8Sj1a3iweWTEZfEeC0wXFu4p59H80IVb0IUSMlPCglpBJDlDB1JnF JHA23Rcjpmo2gpTuKP6tj8B87ucQQw+Q15yOqcP9X5HSZSMT5dhUa8KlxwIDAQAB o4ICxzCCAsMwHQYDVR0OBBYEFMJctxMsGffVHwAu1K2BGuz1sg9XMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY5L2IyNzIw My05ZDQ4LTQ5YTUtYWYyNS00OWQ0MGExM2NiYzIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkvYjI3MjAz LTlkNDgtNDlhNS1hZjI1LTQ5ZDQwYTEzY2JjMi8xL3dseTNFeXdaOTlVZkFDN1Vy WUVhN1BXeUQxYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEcGCCsGAQUF BwEHAQH/BDgwNjAlBAIAATAfAwQCuY9QAwQAwFyBAwQFwUQAMAsDBAXBRGADAwDB RDANBAIAAjAHAwUAKgJqgDAZBggrBgEFBQcBCAEB/wQKMAigBjAEAgIMrTANBgkq hkiG9w0BAQsFAAOCAQEAca55XdnXH86Yqm9gjelZ46hCrz+3/BX9V0aw6pTaRrxc ZJLBtksQG9HiPhnBngsGI0uYz4zNqC0l5uzftw2RV7nq9t8ssPlFhqV8bFpFKQkl 9DrJlhbWfG/rrTGXoXr+4jQteKYchx9EK+aMB0dLqUnZTW2By9UbBmtr11Y6Czia zR8kDopDAT4G9IoClImt5UPiwP2LJPnbIRpshYeAP4qEdSjiQA1FhBEiO7sZcE6d 8e93gTn28uFJgYk1UJA1zPreRRWfxxAP69OYMwzqZ+yswG6ZAg8kYuuHtXaci/Q4 Jb0apQrz4wDtX7+WP1AlAqNo1Ms3IgmC1SaqoL63WA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:48 2026 by rpki-client