This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer File: HY6N9cAxEHEY2mHymrT0GdKdWoo.cer (raw, json) Hash identifier: 1DQXeUjIkp+mRIdIFFJgMjco9Wxk259mkaX8K2PiEOA= Subject key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C800A90C306ABA53DBC3783C26792CF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:44 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 3218 AS: 5386 IP: 62.61.0.0/19 IP: 195.170.224.0/19 IP: 2a0c:6d00::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:0a:90:c3:06:ab:a5:3d:bc:37:83:c2:67:92:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:56:40:a6:60:94:48:24:0c:81:2c:ad:f6:56: 04:71:6f:8e:1e:40:bd:59:d5:5d:90:be:2b:dc:a5: 56:d5:37:55:a0:59:ab:fb:a1:8f:89:cd:56:e6:bc: c7:f3:17:a1:ff:15:d6:37:51:e8:48:0c:1d:c2:3a: 91:87:fc:2c:c7:8f:92:b7:54:f3:e8:58:25:5a:7a: c3:a2:04:47:95:52:30:58:e7:8c:b3:78:3f:33:6b: b0:5f:54:58:40:5b:92:7c:9f:51:7e:e1:ef:c5:79: 48:75:b0:8d:18:90:c6:17:b4:4b:45:47:51:9d:d0: dc:cd:17:38:22:4c:9c:f6:b9:a4:c5:04:55:73:62: fb:90:8b:72:59:d9:63:94:26:10:f0:4a:16:e0:dd: 04:c0:ca:e4:31:50:0f:33:04:f0:b5:cb:fb:9e:d6: cf:c8:99:7f:52:ec:e4:bc:99:ed:59:ec:c3:52:57: bd:12:78:21:96:07:94:08:0d:13:ee:36:be:0c:1f: ed:db:ce:60:53:ad:8d:00:c7:05:b1:c1:63:29:68: f1:55:5f:82:c3:04:25:12:f8:0f:e7:aa:47:f4:55: df:30:7a:ed:61:d4:0e:3d:f6:ff:47:0f:1c:6e:88: 04:a5:a5:70:0b:c3:f8:cc:05:a2:56:01:61:f1:9c: 1c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.61.0.0/19 195.170.224.0/19 IPv6: 2a0c:6d00::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 3218 5386 Signature Algorithm: sha256WithRSAEncryption 92:00:73:32:a7:6b:45:fe:81:d0:16:55:ac:a0:ad:2c:5e:27: 3e:dd:e7:45:62:1a:a2:30:3c:ad:02:43:b5:f5:83:9a:20:7f: 75:6d:06:1f:84:ba:a5:d5:db:71:97:02:06:a7:3d:27:f7:33: 30:68:97:16:7b:c2:87:86:bf:79:3a:f0:b4:3d:dd:f5:ed:24: d7:99:71:b4:3b:40:ae:a8:6e:4c:d5:82:f9:59:10:77:03:c5: 66:dc:0c:2f:31:57:6e:1e:81:33:1c:c0:79:09:87:b5:6e:aa: 23:f8:a8:3c:f9:02:cb:84:f7:89:9a:be:8e:50:7b:65:be:2c: 8c:c4:bb:a7:ea:1c:e0:15:fa:6c:2d:0c:d1:fb:84:f8:a8:b4: 4c:8e:b1:f2:fa:cb:15:b8:a5:5b:82:15:95:4b:13:ba:62:72: d0:84:27:86:13:bd:cf:06:71:96:9c:27:cb:37:72:ad:fd:af: 52:d8:27:c3:75:48:1f:36:ed:16:7f:0f:17:88:db:90:f0:c1: 75:89:43:10:42:12:63:b6:4f:02:30:4f:6b:0f:89:84:cc:61: f9:57:11:39:d6:b3:ad:b2:cb:81:57:2c:0e:63:1e:e6:39:64: 0c:de:d1:8c:38:b2:7f:7f:31:9e:3c:61:c5:8b:25:90:d8:ac: 1e:44:35:68 -----BEGIN CERTIFICATE----- MIIFrDCCBJSgAwIBAgISAZt8gAqQwwarpT28N4PCZ5LPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDhlOGRmNWMwMzExMDcxMThkYTYxZjI5YWI0ZjQxOWQyOWQ1YThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFZApmCUSCQMgSyt9lYEcW+OHkC9 WdVdkL4r3KVW1TdVoFmr+6GPic1W5rzH8xeh/xXWN1HoSAwdwjqRh/wsx4+St1Tz 6FglWnrDogRHlVIwWOeMs3g/M2uwX1RYQFuSfJ9RfuHvxXlIdbCNGJDGF7RLRUdR ndDczRc4Ikyc9rmkxQRVc2L7kItyWdljlCYQ8EoW4N0EwMrkMVAPMwTwtcv7ntbP yJl/UuzkvJntWezDUle9EnghlgeUCA0T7ja+DB/t285gU62NAMcFscFjKWjxVV+C wwQlEvgP56pH9FXfMHrtYdQOPfb/Rw8cbogEpaVwC8P4zAWiVgFh8ZwcbQIDAQAB o4ICuDCCArQwHQYDVR0OBBYEFB2OjfXAMRBxGNph8pq09BnSnVqKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FhLzU1YWM2 Ny05Yzc2LTQ4OTMtODlhNS1iMWQzOGIxM2ZkYTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWEvNTVhYzY3 LTljNzYtNDg5My04OWE1LWIxZDM4YjEzZmRhOS8xL0hZNk45Y0F4RUhFWTJtSHlt clQwR2RLZFdvby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQFPj0AAwQFw6rgMA0EAgACMAcDBQAqDG0AMB0G CCsGAQUFBwEIAQH/BA4wDKAKMAgCAgySAgIVCjANBgkqhkiG9w0BAQsFAAOCAQEA kgBzMqdrRf6B0BZVrKCtLF4nPt3nRWIaojA8rQJDtfWDmiB/dW0GH4S6pdXbcZcC Bqc9J/czMGiXFnvCh4a/eTrwtD3d9e0k15lxtDtArqhuTNWC+VkQdwPFZtwMLzFX bh6BMxzAeQmHtW6qI/ioPPkCy4T3iZq+jlB7Zb4sjMS7p+oc4BX6bC0M0fuE+Ki0 TI6x8vrLFbilW4IVlUsTumJy0IQnhhO9zwZxlpwnyzdyrf2vUtgnw3VIHzbtFn8P F4jbkPDBdYlDEEISY7ZPAjBPaw+JhMxh+VcROdazrbLLgVcsDmMe5jlkDN7RjDiy f38xnjxhxYslkNisHkQ1aA== -----END CERTIFICATE-----Generated at Mon Jan 26 01:18:05 2026 by rpki-client