This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yYlmC_FH9ij7fPiycYc3_qhimNA.cer File: yYlmC_FH9ij7fPiycYc3_qhimNA.cer (raw, json) Hash identifier: zAfv9B60jkyGWvcWqP2nh5YHFU9QieW7h4GR6JFskM8= Subject key identifier: C9:89:66:0B:F1:47:F6:28:FB:7C:F8:B2:71:87:37:FE:A8:62:98:D0 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E375C1702A82D8882EC46BB4B3A5AB8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/37/6f0392-8a85-47ab-8746-c198653aac5f/1/yYlmC_FH9ij7fPiycYc3_qhimNA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/37/6f0392-8a85-47ab-8746-c198653aac5f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:18:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 33883 IP: 46.30.232.0/21 IP: 185.22.124.0/22 IP: 217.168.208.0/20 IP: 2a03:2b80::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:5c:17:02:a8:2d:88:82:ec:46:bb:4b:3a:5a:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c989660bf147f628fb7cf8b2718737fea86298d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:03:45:3e:7e:a6:f3:ff:23:1e:d2:c6:89:c7: bf:33:b4:dc:7f:03:bb:24:3d:cc:d9:48:90:97:33: d8:76:50:ad:e1:e7:f6:21:4a:92:a9:a1:b8:73:5d: 0d:01:da:c9:36:8f:bd:0d:73:aa:97:d1:49:bd:bf: 50:1b:3a:68:76:13:81:ce:2b:84:6e:e2:67:29:ae: 17:ca:0a:bc:7a:30:b5:b3:50:c7:1a:42:e1:e0:e8: 59:0b:ec:98:54:00:b4:96:83:0b:dc:01:e3:80:a1: 47:90:50:44:16:a1:94:50:6d:b0:b3:37:db:d8:5b: 3a:74:1c:04:97:fc:04:bf:bf:3c:f9:86:6e:ae:17: e1:e9:61:55:ce:f3:cf:e8:41:9e:12:42:1c:31:5a: 3e:48:09:48:ba:39:48:b6:0e:71:37:56:77:84:bd: da:1c:22:57:c8:bf:35:ea:38:70:ed:f1:52:f6:7c: 20:57:70:39:e4:8d:07:4e:93:d1:b0:32:94:4f:18: 31:e2:6d:d3:7b:f5:17:fb:1f:8d:ba:8a:24:dd:e9: 54:5c:04:c3:d2:ec:e4:36:ac:58:ad:6a:de:96:e1: 41:47:e9:46:08:39:14:d1:81:3c:49:a7:41:f6:aa: 05:7b:17:da:35:e5:0c:22:97:9b:92:fb:fd:5c:2b: 69:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:89:66:0B:F1:47:F6:28:FB:7C:F8:B2:71:87:37:FE:A8:62:98:D0 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6f0392-8a85-47ab-8746-c198653aac5f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6f0392-8a85-47ab-8746-c198653aac5f/1/yYlmC_FH9ij7fPiycYc3_qhimNA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.30.232.0/21 185.22.124.0/22 217.168.208.0/20 IPv6: 2a03:2b80::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 33883 Signature Algorithm: sha256WithRSAEncryption 22:23:5c:ab:82:f9:ce:10:45:03:a9:e4:62:47:33:9e:d8:3c: 78:f0:53:33:02:61:26:b5:b1:5e:2c:d8:06:b7:3c:5c:76:60: df:36:47:e8:0a:2b:03:82:fd:5a:80:4b:22:1e:c3:34:3e:30: c8:82:ad:1c:43:37:2b:9a:2e:b7:51:e4:e9:00:d7:9a:2d:ac: 97:cf:e6:90:4d:c1:7b:c8:7c:4f:b2:1a:52:52:3f:96:55:fa: 89:30:5d:19:3f:73:a4:79:bc:0f:0a:41:a8:51:91:25:13:24: 88:2a:f0:d2:a2:71:bb:70:89:ec:a8:ac:d9:41:a6:45:13:42: 7b:74:d2:ce:67:8a:c6:a1:26:06:7c:d9:de:9f:1a:73:ae:8f: a8:8b:ad:5c:8a:6e:96:3a:aa:88:f4:77:29:af:aa:36:24:f2: b5:17:74:7f:ff:4a:7a:a5:76:1b:8f:a4:9d:40:e3:cd:77:27: d7:3f:b5:8b:61:9d:55:99:db:bb:8b:e5:bf:4c:cd:26:25:1b: ee:ee:66:60:9d:36:30:0d:33:e8:bb:f2:01:45:c7:41:7d:3a: bd:16:d1:25:14:2b:b9:73:e9:7e:98:ce:e6:b8:fa:5d:df:2c: f0:32:6b:9d:5e:64:87:2c:51:22:a9:84:16:1a:14:c7:3e:52: c4:97:de:dd -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZt+N1wXAqgtiILsRrtLOlq4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTg5NjYwYmYxNDdmNjI4ZmI3Y2Y4YjI3MTg3MzdmZWE4NjI5OGQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgNFPn6m8/8jHtLGice/M7TcfwO7 JD3M2UiQlzPYdlCt4ef2IUqSqaG4c10NAdrJNo+9DXOql9FJvb9QGzpodhOBziuE buJnKa4Xygq8ejC1s1DHGkLh4OhZC+yYVAC0loML3AHjgKFHkFBEFqGUUG2wszfb 2Fs6dBwEl/wEv788+YZurhfh6WFVzvPP6EGeEkIcMVo+SAlIujlItg5xN1Z3hL3a HCJXyL816jhw7fFS9nwgV3A55I0HTpPRsDKUTxgx4m3Te/UX+x+Nuook3elUXATD 0uzkNqxYrWreluFBR+lGCDkU0YE8SadB9qoFexfaNeUMIpebkvv9XCtpHwIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFMmJZgvxR/Yo+3z4snGHN/6oYpjQMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM3LzZmMDM5 Mi04YTg1LTQ3YWItODc0Ni1jMTk4NjUzYWFjNWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzcvNmYwMzky LThhODUtNDdhYi04NzQ2LWMxOTg2NTNhYWM1Zi8xL3lZbG1DX0ZIOWlqN2ZQaXlj WWMzX3FoaW1OQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQDLh7oAwQCuRZ8AwQE2ajQMA0EAgACMAcDBQMq AyuAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwCEWzANBgkqhkiG9w0BAQsFAAOC AQEAIiNcq4L5zhBFA6nkYkczntg8ePBTMwJhJrWxXizYBrc8XHZg3zZH6AorA4L9 WoBLIh7DND4wyIKtHEM3K5out1Hk6QDXmi2sl8/mkE3Be8h8T7IaUlI/llX6iTBd GT9zpHm8DwpBqFGRJRMkiCrw0qJxu3CJ7Kis2UGmRRNCe3TSzmeKxqEmBnzZ3p8a c66PqIutXIpuljqqiPR3Ka+qNiTytRd0f/9KeqV2G4+knUDjzXcn1z+1i2GdVZnb u4vlv0zNJiUb7u5mYJ02MA0z6LvyAUXHQX06vRbRJRQruXPpfpjO5rj6Xd8s8DJr nV5khyxRIqmEFhoUxz5SxJfe3Q== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:41 2026 by rpki-client