This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yd1CJDGXhku0gWRh1NBlOrC6Mro.cer File: yd1CJDGXhku0gWRh1NBlOrC6Mro.cer (raw, json) Hash identifier: eT1p8txSt7YNQ+06qvozNHjqIgDB915n2FNxgu/wjpM= Subject key identifier: C9:DD:42:24:31:97:86:4B:B4:81:64:61:D4:D0:65:3A:B0:BA:32:BA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78343487715EB2A4E1A2EB53693C7322 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/5da15a-97a0-4a77-9bca-64a715a5f69b/1/yd1CJDGXhku0gWRh1NBlOrC6Mro.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/5da15a-97a0-4a77-9bca-64a715a5f69b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:25 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198725 IP: 91.220.201.0/24 IP: 185.21.196.0/22 IP: 2a02:c280::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:34:87:71:5e:b2:a4:e1:a2:eb:53:69:3c:73:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9dd42243197864bb4816461d4d0653ab0ba32ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:27:ee:bb:2f:2e:d6:9c:6e:92:4c:e7:01:a5: 43:46:1a:c8:66:9e:9f:92:c0:75:93:4a:8c:92:d5: 70:9c:29:4a:5b:70:77:2a:98:a0:8d:fe:f3:72:c6: 5e:6d:96:5c:b8:89:a2:52:2e:ef:15:43:05:7b:ed: 9d:97:0e:6a:6d:8d:45:e9:43:9d:15:8f:57:14:42: ca:10:8b:3e:4f:16:bf:1a:fb:be:7c:91:1b:ad:26: c5:47:3b:bb:a1:1c:76:b8:61:ff:4a:ae:b6:37:b5: 00:ee:2a:24:f8:94:14:63:76:d5:5d:fa:a6:8e:f8: f8:36:3d:6b:8c:b2:72:91:8c:2b:08:7a:a3:8c:69: 01:f7:52:64:d4:50:8e:3a:8c:46:31:f2:d3:f9:4c: 1c:5b:8a:28:d4:9d:f6:c1:57:e5:01:7a:17:31:cd: 19:34:e7:ce:51:cd:15:92:99:da:b5:48:ec:cf:e9: a1:e0:72:c8:bb:98:67:d6:e1:9a:20:0f:db:e5:5c: e8:b7:61:26:09:70:ab:31:c9:9a:30:ee:e9:6d:c3: 67:a8:9d:45:6d:77:2f:3f:36:c9:7e:59:2b:6c:d5: 54:3b:c5:ce:65:f7:7f:a0:a9:05:e1:02:08:a9:4c: 9d:ff:20:fe:ea:6e:3b:90:1b:a7:29:b2:63:da:39: b1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DD:42:24:31:97:86:4B:B4:81:64:61:D4:D0:65:3A:B0:BA:32:BA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5da15a-97a0-4a77-9bca-64a715a5f69b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5da15a-97a0-4a77-9bca-64a715a5f69b/1/yd1CJDGXhku0gWRh1NBlOrC6Mro.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.201.0/24 185.21.196.0/22 IPv6: 2a02:c280::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198725 Signature Algorithm: sha256WithRSAEncryption 1e:af:25:cf:0f:14:0b:ca:98:d0:65:aa:a1:61:86:1f:0c:a8: 31:1b:ca:7a:ae:08:a4:3e:91:60:80:d9:9b:54:01:ea:30:1a: 83:b6:4f:03:8c:65:3b:c0:d7:bc:17:aa:6f:1f:a0:6e:27:de: 01:f2:35:0a:a3:65:46:6f:d8:bc:2a:dc:b4:bc:ab:50:c7:1a: 04:39:e1:10:63:49:95:a3:51:e3:de:8b:86:4a:7d:43:2b:71: 96:27:26:5a:93:89:53:26:11:72:07:af:85:78:3a:32:e4:80: c8:5b:92:be:21:73:93:fa:b0:2b:33:49:ef:61:d9:3b:87:a3: 28:9e:a9:d6:4a:3d:a0:85:a9:53:93:a6:82:44:14:a9:8f:13: 22:7d:73:82:da:b2:ef:46:80:39:97:fc:60:b1:cc:6a:e5:f6: cb:04:92:14:5e:2d:68:74:61:e0:e9:ae:71:0d:a3:69:17:34: ae:eb:bb:91:f7:f7:5a:b4:71:4c:78:e6:1d:ee:e9:41:b6:56: e9:1f:5e:16:ac:60:5c:37:d7:45:e4:14:47:08:cd:93:3d:67: df:3f:d3:87:6a:15:c1:6e:2f:cd:c9:a2:c7:25:f1:ad:7f:71: 37:a5:7a:04:0c:f6:ec:47:58:cc:98:a3:fb:de:8c:7b:f6:d4: 43:46:02:06 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt4NDSHcV6ypOGi61NpPHMiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWRkNDIyNDMxOTc4NjRiYjQ4MTY0NjFkNGQwNjUzYWIwYmEzMmJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyfuuy8u1pxukkznAaVDRhrIZp6f ksB1k0qMktVwnClKW3B3Kpigjf7zcsZebZZcuImiUi7vFUMFe+2dlw5qbY1F6UOd FY9XFELKEIs+Txa/Gvu+fJEbrSbFRzu7oRx2uGH/Sq62N7UA7iok+JQUY3bVXfqm jvj4Nj1rjLJykYwrCHqjjGkB91Jk1FCOOoxGMfLT+UwcW4oo1J32wVflAXoXMc0Z NOfOUc0VkpnatUjsz+mh4HLIu5hn1uGaIA/b5Vzot2EmCXCrMcmaMO7pbcNnqJ1F bXcvPzbJflkrbNVUO8XOZfd/oKkF4QIIqUyd/yD+6m47kBunKbJj2jmxOQIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFMndQiQxl4ZLtIFkYdTQZTqwujK6MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM0LzVkYTE1 YS05N2EwLTRhNzctOWJjYS02NGE3MTVhNWY2OWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQvNWRhMTVh LTk3YTAtNGE3Ny05YmNhLTY0YTcxNWE1ZjY5Yi8xL3lkMUNKREdYaGt1MGdXUmgx TkJsT3JDNk1yby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAW9zJAwQCuRXEMA0EAgACMAcDBQMqAsKAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMIRTANBgkqhkiG9w0BAQsFAAOCAQEAHq8l zw8UC8qY0GWqoWGGHwyoMRvKeq4IpD6RYIDZm1QB6jAag7ZPA4xlO8DXvBeqbx+g bifeAfI1CqNlRm/YvCrctLyrUMcaBDnhEGNJlaNR496Lhkp9QytxlicmWpOJUyYR cgevhXg6MuSAyFuSviFzk/qwKzNJ72HZO4ejKJ6p1ko9oIWpU5OmgkQUqY8TIn1z gtqy70aAOZf8YLHMauX2ywSSFF4taHRh4OmucQ2jaRc0ruu7kff3WrRxTHjmHe7p QbZW6R9eFqxgXDfXReQURwjNkz1n3z/Th2oVwW4vzcmixyXxrX9xN6V6BAz27EdY zJij+96Me/bUQ0YCBg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:41 2026 by rpki-client