This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yjNIq_Fz0ndMiUIAjK321gEqPVI.cer File: yjNIq_Fz0ndMiUIAjK321gEqPVI.cer (raw, json) Hash identifier: t6WASQwKWzYXxGQFa4+5xnZ04rGv/C7AzdgUZKj1LEw= Subject key identifier: CA:33:48:AB:F1:73:D2:77:4C:89:42:00:8C:AD:F6:D6:01:2A:3D:52 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA4DCDC45222B4BC11EA4B191D0E461 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/yjNIq_Fz0ndMiUIAjK321gEqPVI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:18:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216417 IP: 46.29.32.0/24 IP: 2a04:5040::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:dc:dc:45:22:2b:4b:c1:1e:a4:b1:91:d0:e4:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca3348abf173d2774c8942008cadf6d6012a3d52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:47:55:87:df:a1:7f:0f:fb:6d:16:38:6d:bb: bb:35:31:84:84:05:34:18:ad:d0:c6:0b:bb:93:bd: a8:27:7a:9b:bf:f3:db:b2:34:a2:6a:9a:0e:96:73: 17:3f:2b:52:fe:39:31:fd:e1:69:e2:d0:98:16:f8: ac:57:92:75:48:b2:a1:f5:9a:85:25:00:79:f6:fd: b7:4b:28:53:a4:89:f7:e7:a9:1a:31:df:39:b2:5c: 7d:7d:04:43:72:76:e4:cb:eb:fd:d5:59:66:17:57: d0:2a:a7:c3:e5:e6:67:63:40:02:b6:3f:be:2e:46: 06:fa:d4:c2:4e:48:3c:d8:19:97:6c:41:fe:5d:16: b8:4a:5a:30:70:64:44:51:dc:bf:de:51:ce:96:87: b7:a1:90:69:30:81:40:62:84:6d:29:27:5b:e9:90: 84:02:98:43:86:f2:ad:77:5e:51:6b:3f:6d:50:43: 8a:b1:77:f2:c7:93:55:b5:cb:0b:8e:bf:d1:45:43: 79:0c:a1:dd:d0:ad:15:56:2f:73:99:1e:0c:69:3d: d7:62:b8:24:89:a7:8d:b3:50:92:5c:ca:d6:1f:c4: 62:b1:0e:26:95:6c:47:2b:07:a3:0d:c2:8e:5e:df: 54:ce:c2:dc:5f:e5:6d:91:43:d2:7b:8d:4b:23:88: 6f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:33:48:AB:F1:73:D2:77:4C:89:42:00:8C:AD:F6:D6:01:2A:3D:52 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/yjNIq_Fz0ndMiUIAjK321gEqPVI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.29.32.0/24 IPv6: 2a04:5040::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 216417 Signature Algorithm: sha256WithRSAEncryption 02:0d:af:9c:2f:ea:25:a5:2e:e8:f2:53:a1:07:5c:17:1c:88: 65:53:b6:c0:a8:b5:3c:cc:75:71:71:34:fc:83:42:9b:f1:d7: c5:ec:e6:84:e0:9a:5d:c8:e9:00:45:90:b2:f3:39:e9:be:13: 6e:52:92:dd:b0:b8:21:9e:33:60:17:f7:1e:d6:7f:c1:ba:76: 7f:c7:2d:62:65:e9:3d:a8:7a:ae:41:38:32:49:7f:af:db:18: e5:5e:90:64:56:fa:ee:80:0a:e4:80:96:f3:6f:45:ea:bf:ea: 25:1f:31:80:17:33:8c:7a:7b:1a:54:af:99:f6:64:50:06:4a: 33:0b:a3:71:c2:0c:a1:9c:99:e6:62:28:9d:ef:6c:71:a4:de: b4:b0:50:4b:82:55:9b:4f:24:f2:06:20:57:4b:8d:d8:0d:99: 36:87:b8:eb:0f:14:7d:38:62:cb:f8:6f:ce:d2:45:12:e5:3f: 63:c3:47:c3:4a:57:5d:bb:93:dd:69:f6:84:c4:13:c4:b5:a2: 0c:c2:2c:03:85:85:0c:bd:c3:e6:22:fc:c3:aa:75:09:12:8d: 64:c4:7e:78:fc:93:33:8d:fa:f5:d1:60:1f:ca:ae:a1:e1:af: b3:a0:fc:b8:e8:2a:6c:70:b3:51:1b:2c:31:b1:72:cb:a5:2f: e4:5a:3d:97 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt+pNzcRSIrS8EepLGR0ORhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTMzNDhhYmYxNzNkMjc3NGM4OTQyMDA4Y2FkZjZkNjAxMmEzZDUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0dVh9+hfw/7bRY4bbu7NTGEhAU0 GK3Qxgu7k72oJ3qbv/PbsjSiapoOlnMXPytS/jkx/eFp4tCYFvisV5J1SLKh9ZqF JQB59v23SyhTpIn356kaMd85slx9fQRDcnbky+v91VlmF1fQKqfD5eZnY0ACtj++ LkYG+tTCTkg82BmXbEH+XRa4SlowcGREUdy/3lHOloe3oZBpMIFAYoRtKSdb6ZCE AphDhvKtd15Raz9tUEOKsXfyx5NVtcsLjr/RRUN5DKHd0K0VVi9zmR4MaT3XYrgk iaeNs1CSXMrWH8RisQ4mlWxHKwejDcKOXt9UzsLcX+VtkUPSe41LI4hvfwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFMozSKvxc9J3TIlCAIyt9tYBKj1SMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMxLzAyNjkx NC0xNjEyLTQ1ZjQtYWNkZi0yYWNiOWQxN2MxMWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEvMDI2OTE0 LTE2MTItNDVmNC1hY2RmLTJhY2I5ZDE3YzExYy8xL3lqTklxX0Z6MG5kTWlVSUFq SzMyMWdFcVBWSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQALh0gMA0EAgACMAcDBQAqBFBAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNNYTANBgkqhkiG9w0BAQsFAAOCAQEAAg2vnC/qJaUu 6PJToQdcFxyIZVO2wKi1PMx1cXE0/INCm/HXxezmhOCaXcjpAEWQsvM56b4TblKS 3bC4IZ4zYBf3HtZ/wbp2f8ctYmXpPah6rkE4Mkl/r9sY5V6QZFb67oAK5ICW829F 6r/qJR8xgBczjHp7GlSvmfZkUAZKMwujccIMoZyZ5mIone9scaTetLBQS4JVm08k 8gYgV0uN2A2ZNoe46w8UfThiy/hvztJFEuU/Y8NHw0pXXbuT3Wn2hMQTxLWiDMIs A4WFDL3D5iL8w6p1CRKNZMR+ePyTM4369dFgH8quoeGvs6D8uOgqbHCzURssMbFy y6Uv5Fo9lw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:08 2026 by rpki-client