This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yCvtvPe1Ng_uJFt6JV9mQLcnaWg.cer File: yCvtvPe1Ng_uJFt6JV9mQLcnaWg.cer (raw, json) Hash identifier: 5s9KhLC91LGxXE2t1l2Rmdz4apobb7qhuEoBHV7QVC0= Subject key identifier: C8:2B:ED:BC:F7:B5:36:0F:EE:24:5B:7A:25:5F:66:40:B7:27:69:68 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7835573CC398911BB884B3094C0F1888 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d1/dd59d9-eadf-4713-8977-42fa3cfbb503/1/yCvtvPe1Ng_uJFt6JV9mQLcnaWg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d1/dd59d9-eadf-4713-8977-42fa3cfbb503/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43756 IP: 194.37.252.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:57:3c:c3:98:91:1b:b8:84:b3:09:4c:0f:18:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c82bedbcf7b5360fee245b7a255f6640b7276968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cb:bc:97:6c:69:33:69:5c:e0:94:d1:11:99: 50:f2:00:d4:dd:7d:28:3d:9a:ae:13:c0:de:46:d3: 58:66:76:3c:24:a5:68:83:58:7a:ef:c3:73:e4:90: 3d:9e:e2:f9:fe:fb:f7:52:ad:7a:b9:81:88:cd:30: fc:c2:18:de:1f:06:db:8b:8e:7c:20:e0:f8:84:17: c4:39:e7:d6:8d:30:ae:60:83:8c:03:4f:ca:ee:c6: 1d:c1:91:a1:29:4a:31:e0:e8:24:c7:d4:5f:5b:8e: 6f:0a:77:ae:e3:94:bb:54:83:48:23:53:36:94:00: d8:f4:94:39:48:90:4c:bd:fb:dc:7c:23:61:28:a4: 8e:28:13:43:65:1b:20:26:a4:71:61:67:5b:6e:91: 6b:0d:38:a8:32:c0:db:e5:00:2a:6b:05:44:2d:d7: 8f:50:ad:0c:77:d7:0c:5d:4b:8c:fe:87:78:e0:09: 44:c3:79:f4:fc:6b:94:bd:39:5d:96:6a:a0:4d:7c: ac:9a:d5:0d:13:73:20:5b:3d:96:31:c3:d7:4d:28: 13:a8:5e:0f:44:fb:bd:b1:cb:51:0a:ba:34:c1:a0: 6d:1e:b5:38:02:91:09:bd:61:10:38:ca:63:c3:0e: 52:4f:b5:1d:e6:ae:ea:23:81:6a:79:33:2d:51:e7: 9a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:2B:ED:BC:F7:B5:36:0F:EE:24:5B:7A:25:5F:66:40:B7:27:69:68 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/dd59d9-eadf-4713-8977-42fa3cfbb503/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/dd59d9-eadf-4713-8977-42fa3cfbb503/1/yCvtvPe1Ng_uJFt6JV9mQLcnaWg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.37.252.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43756 Signature Algorithm: sha256WithRSAEncryption 44:28:e0:bc:0f:15:80:84:49:50:6d:38:8d:02:47:35:f7:48: d6:7a:3e:cc:5e:cd:0c:e4:08:64:f7:e0:e8:1f:55:87:d4:49: 09:71:a5:f9:61:c4:28:d6:66:55:54:ed:0f:30:c9:c3:59:1b: 15:2e:6b:9f:c0:a3:4a:e0:5a:7e:12:12:62:20:04:cf:6a:61: dc:5b:0c:c1:ef:b5:f8:12:b2:c1:8b:d2:ac:ae:2c:63:ec:69: 69:02:8c:58:41:83:2a:7b:48:6d:9f:c8:c2:ff:a9:46:63:59: 12:f9:49:c7:ed:96:ba:7f:1d:e9:60:8c:4a:ff:68:87:99:40: 93:e9:61:bb:5b:4a:3b:de:43:07:d8:80:20:59:45:ef:da:fb: d8:99:f5:b3:03:0f:3f:9b:fb:9a:23:84:fd:af:b1:e0:72:eb: 1a:33:5f:4e:f4:9b:b8:60:e2:e3:ca:ba:35:60:d3:48:a0:60: 42:a1:1f:35:c3:a9:21:64:fc:be:e8:85:9e:8d:ad:2f:3e:9d: bd:40:cb:b9:e0:d9:ca:03:ef:96:62:69:67:1c:5a:9d:14:5b: 0b:77:0e:95:71:f2:05:6f:ee:c3:69:53:53:9a:c1:77:94:da: 4e:87:b3:99:49:3c:1e:9b:54:d6:ad:b4:0e:a6:04:97:a4:bb: d4:fb:87:0f -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4NVc8w5iRG7iEswlMDxiIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODJiZWRiY2Y3YjUzNjBmZWUyNDViN2EyNTVmNjY0MGI3Mjc2OTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMu8l2xpM2lc4JTREZlQ8gDU3X0o PZquE8DeRtNYZnY8JKVog1h678Nz5JA9nuL5/vv3Uq16uYGIzTD8whjeHwbbi458 IOD4hBfEOefWjTCuYIOMA0/K7sYdwZGhKUox4Ogkx9RfW45vCneu45S7VINII1M2 lADY9JQ5SJBMvfvcfCNhKKSOKBNDZRsgJqRxYWdbbpFrDTioMsDb5QAqawVELdeP UK0Md9cMXUuM/od44AlEw3n0/GuUvTldlmqgTXysmtUNE3MgWz2WMcPXTSgTqF4P RPu9sctRCro0waBtHrU4ApEJvWEQOMpjww5ST7Ud5q7qI4FqeTMtUeeaOQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFMgr7bz3tTYP7iRbeiVfZkC3J2loMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QxL2RkNTlk OS1lYWRmLTQ3MTMtODk3Ny00MmZhM2NmYmI1MDMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDEvZGQ1OWQ5 LWVhZGYtNDcxMy04OTc3LTQyZmEzY2ZiYjUwMy8xL3lDdnR2UGUxTmdfdUpGdDZK VjltUUxjbmFXZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwiX8MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCq7DANBgkqhkiG9w0BAQsFAAOCAQEARCjgvA8VgIRJUG04jQJHNfdI1no+zF7N DOQIZPfg6B9Vh9RJCXGl+WHEKNZmVVTtDzDJw1kbFS5rn8CjSuBafhISYiAEz2ph 3FsMwe+1+BKywYvSrK4sY+xpaQKMWEGDKntIbZ/Iwv+pRmNZEvlJx+2Wun8d6WCM Sv9oh5lAk+lhu1tKO95DB9iAIFlF79r72Jn1swMPP5v7miOE/a+x4HLrGjNfTvSb uGDi48q6NWDTSKBgQqEfNcOpIWT8vuiFno2tLz6dvUDLueDZygPvlmJpZxxanRRb C3cOlXHyBW/uw2lTU5rBd5TaToezmUk8HptU1q20DqYEl6S71PuHDw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:14:24 2026 by rpki-client