This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yyzHzkLnnDUax9KPZF3n9ZOKzJw.cer File: yyzHzkLnnDUax9KPZF3n9ZOKzJw.cer (raw, json) Hash identifier: RAfhJGYfYK+X3KzJwJHEQQjfAZ50dwExKZVPGJX7JaY= Subject key identifier: CB:2C:C7:CE:42:E7:9C:35:1A:C7:D2:8F:64:5D:E7:F5:93:8A:CC:9C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F1564AD131132D24F4FBBD7D29F92F7 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b0/90c403-e6e9-41e0-b157-781d8fb1d2fb/1/yyzHzkLnnDUax9KPZF3n9ZOKzJw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b0/90c403-e6e9-41e0-b157-781d8fb1d2fb/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:07 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197064 IP: 151.248.56.0/21 IP: 178.23.104.0/21 IP: 185.24.196.0/22 IP: 2a02:2408::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:64:ad:13:11:32:d2:4f:4f:bb:d7:d2:9f:92:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb2cc7ce42e79c351ac7d28f645de7f5938acc9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c9:bd:8b:23:58:e7:5b:2c:aa:5c:c5:f1:1d: d7:93:15:d3:fa:bb:1e:6a:1b:61:8d:a2:28:49:6c: 2b:1c:5b:43:96:ac:03:5c:d0:ea:b6:3a:2d:cc:ee: f5:1f:f7:88:2c:08:fb:a2:40:b3:dc:78:d1:1d:e2: 7f:ad:ef:6e:cc:14:67:95:a1:8a:b1:6e:f6:2b:f7: 0a:77:67:8f:1a:e9:f1:58:e7:f1:5c:ec:f3:bb:cb: 03:1b:4c:d0:1f:8c:59:56:c2:e4:65:4d:f4:b8:d7: 29:4f:76:85:f5:e1:c9:37:86:31:23:51:d0:3d:86: 76:3c:19:db:49:14:8c:0f:18:26:c4:c7:37:11:1f: c6:64:c5:fa:cb:00:50:58:d7:f4:89:60:a7:b9:6a: 4f:73:66:7f:1f:d0:03:4e:22:0e:cf:cf:66:ad:e3: fa:d7:68:83:6a:f3:9e:bb:d3:8b:b4:5b:94:45:13: cf:4d:ce:43:b4:62:32:8a:23:43:27:e3:da:0e:07: 73:68:3d:90:a5:a8:f9:df:70:01:67:ed:3c:e7:25: 6f:4b:8c:52:7e:e1:c5:ef:49:61:75:69:19:f3:61: 0b:ac:11:7a:48:bd:82:37:f1:47:5b:58:97:90:0b: 3b:01:ad:dc:cd:11:01:91:84:4e:99:b0:7d:60:02: bc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2C:C7:CE:42:E7:9C:35:1A:C7:D2:8F:64:5D:E7:F5:93:8A:CC:9C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/90c403-e6e9-41e0-b157-781d8fb1d2fb/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/90c403-e6e9-41e0-b157-781d8fb1d2fb/1/yyzHzkLnnDUax9KPZF3n9ZOKzJw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.248.56.0/21 178.23.104.0/21 185.24.196.0/22 IPv6: 2a02:2408::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 197064 Signature Algorithm: sha256WithRSAEncryption 6c:2d:ce:a7:41:e3:ca:a2:b8:70:fb:ec:22:20:86:3b:05:28: eb:12:c5:2b:f2:5e:c4:d7:ac:2e:f6:a1:a1:6a:dc:3b:b6:53: 0b:bc:da:65:2b:b8:63:af:5c:23:26:fa:97:21:20:ff:34:13: 18:7c:1c:61:b9:46:d2:29:26:ab:5e:66:c8:cc:13:8d:da:26: 9c:1d:5b:f8:97:98:e8:c3:20:aa:a7:b5:68:b8:7b:f7:a0:e6: 21:3c:36:13:62:5b:63:dc:da:59:1e:f9:02:2a:f5:6f:59:44: 1e:11:6f:a7:ad:d0:33:2b:83:5c:20:aa:3b:82:7a:62:60:a5: b0:6c:22:d9:c3:f9:02:19:0d:7a:09:f5:9c:52:36:80:83:3a: f5:a9:89:44:53:97:58:16:68:90:da:d7:f3:c1:f3:9b:52:53: 9f:4a:b2:4c:10:9f:10:07:97:5f:9b:a1:d2:c4:c5:5b:f2:13: 22:0c:12:05:f8:ab:2c:45:bb:64:14:7f:8c:b5:b6:65:d3:4d: 8a:be:78:f3:98:5c:22:44:f1:90:bb:45:3f:b4:54:0b:8e:8d: 95:1f:6e:2e:62:0d:af:a4:2e:ab:76:26:c4:09:0d:35:57:36: 73:ec:1d:23:6d:79:67:01:90:92:ce:d1:b0:e8:b1:d0:5a:7c: 58:ae:d0:6a -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZt/FWStExEy0k9Pu9fSn5L3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjJjYzdjZTQyZTc5YzM1MWFjN2QyOGY2NDVkZTdmNTkzOGFjYzljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcm9iyNY51ssqlzF8R3XkxXT+rse ahthjaIoSWwrHFtDlqwDXNDqtjotzO71H/eILAj7okCz3HjRHeJ/re9uzBRnlaGK sW72K/cKd2ePGunxWOfxXOzzu8sDG0zQH4xZVsLkZU30uNcpT3aF9eHJN4YxI1HQ PYZ2PBnbSRSMDxgmxMc3ER/GZMX6ywBQWNf0iWCnuWpPc2Z/H9ADTiIOz89mreP6 12iDavOeu9OLtFuURRPPTc5DtGIyiiNDJ+PaDgdzaD2Qpaj533ABZ+085yVvS4xS fuHF70lhdWkZ82ELrBF6SL2CN/FHW1iXkAs7Aa3czREBkYROmbB9YAK8eQIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFMssx85C55w1GsfSj2Rd5/WTisycMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IwLzkwYzQw My1lNmU5LTQxZTAtYjE1Ny03ODFkOGZiMWQyZmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAvOTBjNDAz LWU2ZTktNDFlMC1iMTU3LTc4MWQ4ZmIxZDJmYi8xL3l5ekh6a0xubkRVYXg5S1Ba RjNuOVpPS3pKdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQDl/g4AwQDshdoAwQCuRjEMA0EAgACMAcDBQAq AiQIMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMByDANBgkqhkiG9w0BAQsFAAOC AQEAbC3Op0HjyqK4cPvsIiCGOwUo6xLFK/JexNesLvahoWrcO7ZTC7zaZSu4Y69c Iyb6lyEg/zQTGHwcYblG0ikmq15myMwTjdomnB1b+JeY6MMgqqe1aLh796DmITw2 E2JbY9zaWR75Air1b1lEHhFvp63QMyuDXCCqO4J6YmClsGwi2cP5AhkNegn1nFI2 gIM69amJRFOXWBZokNrX88Hzm1JTn0qyTBCfEAeXX5uh0sTFW/ITIgwSBfirLEW7 ZBR/jLW2ZdNNir5485hcIkTxkLtFP7RUC46NlR9uLmINr6Quq3YmxAkNNVc2c+wd I215ZwGQks7RsOix0Fp8WK7Qag== -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:13 2026 by rpki-client