This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer File: yniqfjFrIfhDz7lYEMaAzdv6bm8.cer (raw, json) Hash identifier: JsjtNKJyrdVT9/DphL9jB0fXFeiqbLR+cp9VKcl6i7c= Subject key identifier: CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834D51B1ACBDE2209FA24328FE3CC03 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41307 IP: 88.133.192.0/19 IP: 89.28.136.0/21 IP: 109.69.96.0/21 IP: 185.39.64.0/22 IP: 2a02:ca00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:d5:1b:1a:cb:de:22:09:fa:24:32:8f:e3:cc:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:db:82:fb:50:e4:d1:59:ca:0d:bf:81:6f:96: 25:a3:ea:c2:a7:ee:0f:1e:5f:b0:24:28:40:c5:3b: de:1e:8b:de:ed:42:60:dd:30:11:45:f9:9b:89:0d: 5b:95:de:ba:2e:58:59:64:6e:ea:d1:60:07:62:30: 94:15:7f:ef:f3:56:3c:93:8c:92:9a:bd:db:00:ad: 15:5c:61:69:f9:79:33:c1:c1:93:3c:16:eb:bc:01: cd:be:fd:92:da:cd:78:e2:bb:7c:5c:3f:aa:66:d8: bc:22:00:12:7f:99:88:ff:9e:c2:91:5b:85:ee:12: d9:48:4c:54:38:12:01:16:b0:bb:a8:c3:b9:d9:95: c8:2e:0b:f7:6a:7a:c5:1d:be:6e:08:b1:12:c3:ce: 8b:da:d4:bf:43:fd:32:3f:1d:74:69:ee:c8:ec:97: 87:6f:5e:0c:e0:40:b4:20:9c:56:1f:b6:db:dc:34: 92:d7:98:a7:9f:52:9b:3b:82:c5:6d:7f:ae:38:ee: e3:db:ba:6d:fc:16:4b:af:5f:85:94:9d:13:74:97: c2:75:16:7d:d0:c0:f3:3f:e6:d1:7c:50:4f:1f:97: 6b:e1:d0:09:91:35:bd:d8:77:c7:47:62:22:1f:cc: ef:a3:1b:8f:79:a2:f1:1a:3a:f8:27:9d:45:5d:41: f1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.133.192.0/19 89.28.136.0/21 109.69.96.0/21 185.39.64.0/22 IPv6: 2a02:ca00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41307 Signature Algorithm: sha256WithRSAEncryption 4e:08:af:34:45:cf:53:54:b9:5f:24:a7:06:3c:91:52:d6:f7: 3c:b3:b4:ac:2e:44:7d:cb:8b:53:2d:57:0f:f1:a0:3e:2a:77: 1d:e5:93:92:b4:37:9b:c6:5e:68:86:cc:7a:b4:f1:7a:09:b6: ce:7a:30:bf:cb:b1:87:f4:a3:05:e8:db:60:9e:08:be:c4:38: e7:15:58:dd:5d:82:1a:41:8c:55:1c:5b:1f:ef:16:df:75:d3: dc:24:8b:87:67:ca:ce:72:6b:5a:d7:16:d7:dd:8d:a2:0b:54: 94:02:96:20:32:f3:6b:a2:48:cb:7f:40:87:40:a2:e6:88:7b: 26:69:19:78:79:6c:71:b8:d8:2d:7c:95:0d:3d:a6:a2:ff:9d: e5:de:2e:90:63:cf:ef:ff:b1:3c:41:79:ff:ea:99:73:f7:d8: 32:3a:39:eb:e6:eb:f5:1c:b0:d2:1c:c7:26:76:25:96:e7:0a: 55:92:b6:eb:dc:a2:29:91:ec:d7:a8:b3:d0:52:5e:ab:77:38: 73:3f:12:a1:03:60:ba:61:4c:6d:36:34:25:08:e5:85:b9:a2: 1b:1a:77:16:f1:31:a1:1a:80:be:75:a1:6f:fc:46:7b:e6:06: bc:a2:13:72:72:4b:7d:b3:5b:6d:70:83:fe:d3:2a:0f:50:0f: af:2a:12:8c -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgISAZt4NNUbGsveIgn6JDKP48wDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTc4YWE3ZTMxNmIyMWY4NDNjZmI5NTgxMGM2ODBjZGRiZmE2ZTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6duC+1Dk0VnKDb+Bb5Ylo+rCp+4P Hl+wJChAxTveHove7UJg3TARRfmbiQ1bld66LlhZZG7q0WAHYjCUFX/v81Y8k4yS mr3bAK0VXGFp+XkzwcGTPBbrvAHNvv2S2s144rt8XD+qZti8IgASf5mI/57CkVuF 7hLZSExUOBIBFrC7qMO52ZXILgv3anrFHb5uCLESw86L2tS/Q/0yPx10ae7I7JeH b14M4EC0IJxWH7bb3DSS15inn1KbO4LFbX+uOO7j27pt/BZLr1+FlJ0TdJfCdRZ9 0MDzP+bRfFBPH5dr4dAJkTW92HfHR2IiH8zvoxuPeaLxGjr4J51FXUHxzwIDAQAB o4ICwTCCAr0wHQYDVR0OBBYEFMp4qn4xayH4Q8+5WBDGgM3b+m5vMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I3LzdkYTM0 Yy0zOTg0LTQ0NDItYjY0Ni1lMzEzOGZmMWU4OTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjcvN2RhMzRj LTM5ODQtNDQ0Mi1iNjQ2LWUzMTM4ZmYxZTg5OS8xL3luaXFmakZySWZoRHo3bFlF TWFBemR2NmJtOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQFWIXAAwQDWRyIAwQDbUVgAwQCuSdAMA0EAgAC MAcDBQMqAsoAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwChWzANBgkqhkiG9w0B AQsFAAOCAQEATgivNEXPU1S5XySnBjyRUtb3PLO0rC5EfcuLUy1XD/GgPip3HeWT krQ3m8ZeaIbMerTxegm2znowv8uxh/SjBejbYJ4IvsQ45xVY3V2CGkGMVRxbH+8W 33XT3CSLh2fKznJrWtcW192NogtUlAKWIDLza6JIy39Ah0Ci5oh7JmkZeHlscbjY LXyVDT2mov+d5d4ukGPP7/+xPEF5/+qZc/fYMjo56+br9Ryw0hzHJnYllucKVZK2 69yiKZHs16iz0FJeq3c4cz8SoQNgumFMbTY0JQjlhbmiGxp3FvExoRqAvnWhb/xG e+YGvKITcnJLfbNbbXCD/tMqD1APryoSjA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:49:41 2026 by rpki-client