This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer File: yymndmnfWnpctQbYOe6KpDN8yqw.cer (raw, json) Hash identifier: LtphnnkraIy+S0VM6d8RUElUpZ2w15wRrXGO8KxQ+S4= Subject key identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78342FDA224CE6A288798DA44D477D18 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:24 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49374 AS: 59813 AS: 60735 AS: 207936 IP: 185.1.136.0/24 IP: 194.124.234.0 -- 194.124.237.255 IP: 2001:7f8:da::/48 IP: 2a0f:3cc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:2f:da:22:4c:e6:a2:88:79:8d:a4:4d:47:7d:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fb:1b:7a:99:c8:af:c9:68:28:c3:b0:09:f9: fc:0f:38:1c:22:83:3a:b2:cc:12:14:c5:9e:06:39: 7d:39:d3:3d:f5:35:9c:c8:ed:11:48:f2:9b:10:ee: 69:6c:5a:fb:0e:f1:14:c4:4a:47:94:e1:45:fe:0e: dc:4f:c4:08:c3:b9:a3:1b:59:eb:70:d8:48:41:36: 22:ef:f0:fe:f5:2b:d4:c5:b4:0e:32:90:aa:35:7a: 98:9e:f9:86:ff:d0:c9:9a:20:d6:48:d2:79:95:86: 39:e9:c1:d5:96:d3:e2:2e:c6:35:cc:50:61:d3:5c: 6a:ed:bf:b6:1c:b2:9e:07:b0:94:25:e9:4e:66:a1: 59:96:68:3e:46:4c:6e:1a:2c:9e:66:e6:b0:ab:83: a8:87:97:db:58:fc:eb:78:e8:5d:cc:e2:e8:bf:8b: ed:be:c5:f5:19:fb:51:cd:89:ff:19:e3:8f:d3:06: d5:88:d3:8e:6e:81:04:2d:59:2a:9a:5b:44:22:d6: 13:83:ab:5b:61:b9:e3:9f:0d:56:36:c1:74:aa:b5: 04:79:8d:b9:f5:bd:37:aa:d9:42:10:36:e7:e7:b2: 60:ef:31:41:68:78:af:de:4a:bf:01:88:15:b2:a2: 04:bf:1c:65:b4:5e:cf:43:53:84:73:c3:9f:9e:eb: 3c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.136.0/24 194.124.234.0-194.124.237.255 IPv6: 2001:7f8:da::/48 2a0f:3cc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49374 59813 60735 207936 Signature Algorithm: sha256WithRSAEncryption 8c:33:79:7f:ff:0f:c1:04:8b:35:96:2d:b8:61:5d:47:13:cd: 23:13:0d:eb:c7:be:c4:2c:40:38:e3:aa:3c:31:29:b3:02:2a: 4b:be:2f:f6:66:75:36:2a:b3:d6:43:79:4a:78:6b:5d:07:40: 4c:5c:a6:65:3c:66:04:c3:65:f9:ec:36:17:de:ef:de:6a:5b: 2f:d5:f7:5a:6a:fd:80:1a:d5:80:47:b8:95:d2:67:46:2f:4e: 40:8c:66:bb:55:18:57:25:53:6c:53:08:b7:62:3e:61:16:6c: af:1c:62:58:7a:18:aa:4a:18:ec:fb:7c:b1:14:62:a2:30:4d: 68:e9:5c:90:0d:5d:60:63:7e:db:23:8e:40:33:91:47:16:b5: 3b:00:3e:b6:a5:2f:91:87:6f:2f:1a:f7:8b:05:fe:05:7c:f8: ae:47:2d:fa:65:de:7b:32:52:1f:c6:3c:20:99:d1:0a:fc:67: 9e:ec:d9:4c:01:bc:8b:75:38:9b:92:a8:b4:74:db:c3:22:db: 87:e7:56:9f:6a:02:58:6c:48:3f:1b:be:35:05:91:03:be:7f: f6:a2:93:36:f6:79:94:50:d2:ba:48:5e:c7:6d:52:6b:aa:8a: b8:2b:76:87:ba:13:db:8d:be:5c:d1:24:8f:9d:9c:73:8f:a2: 0c:8a:8b:02 -----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgISAZt4NC/aIkzmooh5jaRNR30YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjI5YTc3NjY5ZGY1YTdhNWNiNTA2ZDgzOWVlOGFhNDMzN2NjYWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/sbepnIr8loKMOwCfn8DzgcIoM6 sswSFMWeBjl9OdM99TWcyO0RSPKbEO5pbFr7DvEUxEpHlOFF/g7cT8QIw7mjG1nr cNhIQTYi7/D+9SvUxbQOMpCqNXqYnvmG/9DJmiDWSNJ5lYY56cHVltPiLsY1zFBh 01xq7b+2HLKeB7CUJelOZqFZlmg+RkxuGiyeZuawq4Ooh5fbWPzreOhdzOLov4vt vsX1GftRzYn/GeOP0wbViNOOboEELVkqmltEItYTg6tbYbnjnw1WNsF0qrUEeY25 9b03qtlCEDbn57Jg7zFBaHiv3kq/AYgVsqIEvxxltF7PQ1OEc8Ofnus8NQIDAQAB o4IC8TCCAu0wHQYDVR0OBBYEFMspp3Zp31p6XLUG2DnuiqQzfMqsMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2JiMjVk MDY4LTdmOWMtNGIwZS1hNjk1LTE3NzliN2Q4ZjA2ZS8wLzCBiwYIKwYBBQUHMAqG f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmIy NWQwNjgtN2Y5Yy00YjBlLWE2OTUtMTc3OWI3ZDhmMDZlLzAvQ0IyOUE3NzY2OURG NUE3QTVDQjUwNkQ4MzlFRThBQTQzMzdDQ0FBQy5tZnQwPAYIKwYBBQUHMA2GMGh0 dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjBFBggrBgEFBQcBBwEB/wQ2MDQwGgQCAAEwFAME ALkBiDAMAwQBwnzqAwQBwnzsMBYEAgACMBADBwAgAQf4ANoDBQMqDzzAMCkGCCsG AQUFBwEIAQH/BBowGKAWMBQCAwDA3gIDAOmlAgMA7T8CAwMsQDANBgkqhkiG9w0B AQsFAAOCAQEAjDN5f/8PwQSLNZYtuGFdRxPNIxMN68e+xCxAOOOqPDEpswIqS74v 9mZ1Niqz1kN5SnhrXQdATFymZTxmBMNl+ew2F97v3mpbL9X3Wmr9gBrVgEe4ldJn Ri9OQIxmu1UYVyVTbFMIt2I+YRZsrxxiWHoYqkoY7Pt8sRRiojBNaOlckA1dYGN+ 2yOOQDORRxa1OwA+tqUvkYdvLxr3iwX+BXz4rkct+mXeezJSH8Y8IJnRCvxnnuzZ TAG8i3U4m5KotHTbwyLbh+dWn2oCWGxIPxu+NQWRA75/9qKTNvZ5lFDSukhex21S a6qKuCt2h7oT242+XNEkj52cc4+iDIqLAg== -----END CERTIFICATE-----Generated at Wed Jan 21 18:47:38 2026 by rpki-client