This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer File: yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer (raw, json) Hash identifier: u2XTL2YwDGoFKHISrccHYb180bNuz6ExIk/qbCbF28Y= Subject key identifier: CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910D76445EAC4B6270DBDBFE3A950E5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:25 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 24630 AS: 199995 IP: 80.91.214.0/24 IP: 109.71.77.0/24 IP: 146.19.226.0/24 IP: 185.76.68.0/22 IP: 185.109.52.0/22 IP: 185.151.84.0/22 IP: 188.93.115.0/24 IP: 193.37.251.0/24 IP: 2a05:5740::/29 IP: 2a06:4ec0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:d7:64:45:ea:c4:b6:27:0d:bd:bf:e3:a9:50:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb36180ab4542d6eee66d9f99030df71236ce264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3e:d6:c4:3f:40:55:96:df:24:32:ca:3f:0c: 36:f6:48:08:3d:65:35:d8:23:b4:e4:2d:71:2d:f3: fa:f7:7f:6f:22:3c:83:b3:97:52:e4:f4:86:b7:6d: 73:ce:81:42:14:7b:b8:4a:b7:0a:15:ad:5c:25:e6: f0:b0:67:9d:81:f8:47:88:04:74:92:9f:fa:aa:6e: 4a:46:81:ec:20:18:54:1e:ac:df:cd:88:3b:ad:5e: 74:f4:c8:fb:9e:11:2b:14:27:21:6e:68:ec:0b:fe: bc:ab:2a:eb:97:96:c9:17:b2:9f:a9:0a:c1:38:f3: 3b:f2:aa:5f:b7:ab:c8:48:13:56:82:51:85:9b:cf: 03:b2:24:4e:94:22:d7:ab:ac:f4:61:17:13:32:92: 47:6a:c6:28:2a:9e:20:13:ab:90:fa:62:57:29:b2: 81:17:e1:16:ce:ed:35:1e:a5:a6:b4:8b:25:1e:88: ae:23:c5:58:e4:b4:0b:52:9a:0c:cf:ff:d0:84:c1: e8:74:e7:71:94:13:47:39:77:fb:68:7f:ef:1f:76: b4:1d:ac:3d:2f:2b:ba:02:8d:9c:aa:be:e2:88:d2: 91:e6:48:79:e4:1a:4c:7e:c6:34:b3:36:25:ab:e9: e0:c7:67:e7:c0:d8:e1:92:75:5c:5e:8d:9e:08:85: c2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.91.214.0/24 109.71.77.0/24 146.19.226.0/24 185.76.68.0/22 185.109.52.0/22 185.151.84.0/22 188.93.115.0/24 193.37.251.0/24 IPv6: 2a05:5740::/29 2a06:4ec0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 24630 199995 Signature Algorithm: sha256WithRSAEncryption 64:5e:b1:e5:77:2c:2f:2f:a9:6b:ab:d9:17:3a:e9:e8:8e:fc: 7f:58:bd:7c:b2:a8:9a:fe:58:e5:a0:e3:9e:6f:36:c3:e8:6f: 6e:eb:23:f9:7a:e2:fe:65:83:df:bf:bc:f6:df:64:38:03:fa: b6:73:1a:24:1b:f6:c9:ba:38:f0:8a:68:83:e3:f0:0c:46:a8: bf:3e:89:9f:71:f7:8d:b7:59:36:62:02:42:b6:39:4d:c6:5c: c1:52:af:c0:9f:e6:fc:65:9b:0d:70:f6:c2:93:d2:13:ac:21: d5:da:30:7f:60:a6:d0:6e:64:8c:e9:69:ee:e2:3a:78:a7:7c: b8:3a:10:c7:a3:94:e1:79:dd:25:d0:c0:8e:6f:5d:32:47:72: 3c:0c:d4:c3:d4:a3:a0:85:1f:b1:b9:80:4e:13:8c:40:82:c3: fb:7f:28:7c:d7:d4:a5:3a:16:10:db:38:61:7b:22:00:35:bb: 84:9e:d2:d8:89:33:0c:ec:a9:00:92:3a:0f:14:05:3e:5a:2e: 3b:70:e6:9d:6e:49:c1:d1:52:19:0a:32:64:04:92:bb:5e:c4: ac:38:d1:14:ab:c6:a1:6f:cd:64:34:ee:ea:ed:27:ac:84:02: e7:b1:10:df:8a:a5:12:fa:69:b0:44:4b:d8:b4:6a:bf:c9:07: 83:ac:16:90 -----BEGIN CERTIFICATE----- MIIF2DCCBMCgAwIBAgISAZt5ENdkRerEticNvb/jqVDlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjM2MTgwYWI0NTQyZDZlZWU2NmQ5Zjk5MDMwZGY3MTIzNmNlMjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApD7WxD9AVZbfJDLKPww29kgIPWU1 2CO05C1xLfP6939vIjyDs5dS5PSGt21zzoFCFHu4SrcKFa1cJebwsGedgfhHiAR0 kp/6qm5KRoHsIBhUHqzfzYg7rV509Mj7nhErFCchbmjsC/68qyrrl5bJF7KfqQrB OPM78qpft6vISBNWglGFm88DsiROlCLXq6z0YRcTMpJHasYoKp4gE6uQ+mJXKbKB F+EWzu01HqWmtIslHoiuI8VY5LQLUpoMz//QhMHodOdxlBNHOXf7aH/vH3a0Haw9 Lyu6Ao2cqr7iiNKR5kh55BpMfsY0szYlq+ngx2fnwNjhknVcXo2eCIXCQwIDAQAB o4IC5DCCAuAwHQYDVR0OBBYEFMs2GAq0VC1u7mbZ+ZAw33EjbOJkMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NiLzA3OTdk NC04YjJjLTQwYWMtOWNhYi02NjdkYjFkYzFiODYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2IvMDc5N2Q0 LThiMmMtNDBhYy05Y2FiLTY2N2RiMWRjMWI4Ni8xL3l6WVlDclJVTFc3dVp0bjVr RERmY1NOczRtUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GCCsGAQUF BwEHAQH/BFAwTjA2BAIAATAwAwQAUFvWAwQAbUdNAwQAkhPiAwQCuUxEAwQCuW00 AwQCuZdUAwQAvF1zAwQAwSX7MBQEAgACMA4DBQMqBVdAAwUDKgZOwDAeBggrBgEF BQcBCAEB/wQPMA2gCzAJAgJgNgIDAw07MA0GCSqGSIb3DQEBCwUAA4IBAQBkXrHl dywvL6lrq9kXOunojvx/WL18sqia/ljloOOebzbD6G9u6yP5euL+ZYPfv7z232Q4 A/q2cxokG/bJujjwimiD4/AMRqi/PomfcfeNt1k2YgJCtjlNxlzBUq/An+b8ZZsN cPbCk9ITrCHV2jB/YKbQbmSM6Wnu4jp4p3y4OhDHo5Thed0l0MCOb10yR3I8DNTD 1KOghR+xuYBOE4xAgsP7fyh819SlOhYQ2zhheyIANbuEntLYiTMM7KkAkjoPFAU+ Wi47cOadbknB0VIZCjJkBJK7XsSsONEUq8ahb81kNO7q7SeshALnsRDfiqUS+mmw REvYtGq/yQeDrBaQ -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:00 2026 by rpki-client