This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/y2vyuJWE7JYIAEjcP9wuOYPCd_M.cer File: y2vyuJWE7JYIAEjcP9wuOYPCd_M.cer (raw, json) Hash identifier: GocYfXr7CN9fzXA6H/qkGnnXvqwL3eYlhxmjZpnrWBQ= Subject key identifier: CB:6B:F2:B8:95:84:EC:96:08:00:48:DC:3F:DC:2E:39:83:C2:77:F3 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED041AE1356DF8357462B9E9845D09 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/74/6a87f1-e197-4a23-953d-10fdfce94513/1/y2vyuJWE7JYIAEjcP9wuOYPCd_M.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/74/6a87f1-e197-4a23-953d-10fdfce94513/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:54 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198012 AS: 203152 IP: 178.255.24.0/21 IP: 185.127.136.0/22 IP: 2a13:4540::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:04:1a:e1:35:6d:f8:35:74:62:b9:e9:84:5d:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb6bf2b89584ec96080048dc3fdc2e3983c277f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:11:d3:e4:d9:fe:22:a7:df:fb:e8:03:92:d5: d7:e8:6d:9a:1f:58:1e:ae:58:73:2d:8d:be:12:4e: 21:a2:2b:36:33:7f:14:33:18:db:72:0e:a2:c9:91: 14:10:61:17:33:0c:29:d3:c1:8f:d3:c3:13:ad:b7: 81:9a:9f:31:bb:4a:38:59:55:8e:fa:98:b5:44:a6: a0:4b:70:53:92:fe:d2:9e:9b:bd:fd:fc:3d:96:02: 67:8e:5a:4e:3b:46:c0:75:d7:a4:71:86:3c:ed:40: 64:51:74:bb:be:53:8f:db:02:70:30:ff:f8:61:50: b5:9e:4f:01:95:06:bd:a1:86:2c:49:9d:30:58:de: 06:1c:02:91:e0:9d:19:71:f9:d4:ab:db:44:52:be: 9a:f4:1b:4f:4d:9e:2c:45:2d:be:af:fe:0c:98:4c: 68:82:e1:4d:93:8d:0e:f7:dc:29:a4:b6:b1:d5:8d: 27:d3:9f:34:35:13:c1:d6:1f:f4:78:f5:6c:eb:06: 1e:16:3f:c2:a9:f4:17:81:f1:a9:62:dd:78:9b:cd: d6:d7:1c:4c:4b:2c:26:ba:26:41:3b:ca:07:f3:a0: 07:cd:d0:39:81:3c:04:17:85:84:c1:37:1b:c5:af: c4:a7:3c:75:1e:0c:1c:e4:72:f6:a1:6a:be:bc:4d: 67:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6B:F2:B8:95:84:EC:96:08:00:48:DC:3F:DC:2E:39:83:C2:77:F3 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6a87f1-e197-4a23-953d-10fdfce94513/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6a87f1-e197-4a23-953d-10fdfce94513/1/y2vyuJWE7JYIAEjcP9wuOYPCd_M.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.255.24.0/21 185.127.136.0/22 IPv6: 2a13:4540::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198012 203152 Signature Algorithm: sha256WithRSAEncryption 8e:fc:cd:13:ee:49:33:43:93:1a:02:35:89:9b:85:6d:a9:67: be:31:a0:b5:32:95:a5:53:c1:d2:30:b3:5a:7e:15:de:1c:d8: 02:2c:c6:67:66:ee:33:b3:83:f1:7f:55:96:2f:8b:0e:0f:de: d5:80:8a:83:55:d9:e4:c2:4e:67:3b:24:27:6b:f1:f7:5c:65: 36:32:2e:b0:9c:7e:02:e3:63:a9:02:9c:d9:f9:cb:59:d1:28: e1:93:1d:af:aa:5c:76:93:bd:35:ff:7c:6c:56:ca:6a:81:87: de:f1:fe:72:8e:b7:94:d7:b9:30:e0:fa:86:6a:2d:b6:75:e8: cf:a0:86:55:f4:f0:e4:fe:11:c3:8a:55:b7:fd:62:f2:4b:88: e6:b1:7f:fb:32:95:8e:49:e1:3b:00:86:00:f7:09:ad:15:66: 16:0d:ce:b7:98:0d:d6:26:83:08:63:7e:84:0c:81:cb:95:1b: 39:ae:ff:5f:40:fe:80:9a:38:26:e6:68:ee:7b:3c:e0:34:5e: dc:bc:d1:c6:6f:db:51:da:b6:b6:02:c5:6b:c4:37:4b:29:b1: a9:a2:3b:f9:64:d9:77:9b:b2:5d:88:21:d6:26:95:b5:10:41: ba:f6:a9:f9:40:cd:25:ec:56:23:24:52:96:15:31:0f:61:cd: fc:8d:24:74 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt57QQa4TVt+DV0YrnphF0JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjZiZjJiODk1ODRlYzk2MDgwMDQ4ZGMzZmRjMmUzOTgzYzI3N2YzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxHT5Nn+Iqff++gDktXX6G2aH1ge rlhzLY2+Ek4hois2M38UMxjbcg6iyZEUEGEXMwwp08GP08MTrbeBmp8xu0o4WVWO +pi1RKagS3BTkv7Snpu9/fw9lgJnjlpOO0bAddekcYY87UBkUXS7vlOP2wJwMP/4 YVC1nk8BlQa9oYYsSZ0wWN4GHAKR4J0ZcfnUq9tEUr6a9BtPTZ4sRS2+r/4MmExo guFNk40O99wppLax1Y0n0580NRPB1h/0ePVs6wYeFj/CqfQXgfGpYt14m83W1xxM SywmuiZBO8oH86AHzdA5gTwEF4WEwTcbxa/Epzx1Hgwc5HL2oWq+vE1nBwIDAQAB o4ICujCCArYwHQYDVR0OBBYEFMtr8riVhOyWCABI3D/cLjmDwnfzMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc0LzZhODdm MS1lMTk3LTRhMjMtOTUzZC0xMGZkZmNlOTQ1MTMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzQvNmE4N2Yx LWUxOTctNGEyMy05NTNkLTEwZmRmY2U5NDUxMy8xL3kydnl1SldFN0pZSUFFamNQ OXd1T1lQQ2RfTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDsv8YAwQCuX+IMA0EAgACMAcDBQMqE0VAMB8G CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwMFfAIDAxmQMA0GCSqGSIb3DQEBCwUAA4IB AQCO/M0T7kkzQ5MaAjWJm4VtqWe+MaC1MpWlU8HSMLNafhXeHNgCLMZnZu4zs4Px f1WWL4sOD97VgIqDVdnkwk5nOyQna/H3XGU2Mi6wnH4C42OpApzZ+ctZ0Sjhkx2v qlx2k701/3xsVspqgYfe8f5yjreU17kw4PqGai22dejPoIZV9PDk/hHDilW3/WLy S4jmsX/7MpWOSeE7AIYA9wmtFWYWDc63mA3WJoMIY36EDIHLlRs5rv9fQP6Amjgm 5mjuezzgNF7cvNHGb9tR2ra2AsVrxDdLKbGpojv5ZNl3m7JdiCHWJpW1EEG69qn5 QM0l7FYjJFKWFTEPYc38jSR0 -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:04 2026 by rpki-client