This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YDJcIdL6_nQzmNweVXRDMoARBGk.cer File: YDJcIdL6_nQzmNweVXRDMoARBGk.cer (raw, json) Hash identifier: Dzt2fr4RKHDmcQe0/q81qF5tRVpwnndxHyKQJokAWp0= Subject key identifier: 60:32:5C:21:D2:FA:FE:74:33:98:DC:1E:55:74:43:32:80:11:04:69 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5ABF1F08E671C7C6BB40FD65AFC6D4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/YDJcIdL6_nQzmNweVXRDMoARBGk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 195.10.217.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:bf:1f:08:e6:71:c7:c6:bb:40:fd:65:af:c6:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60325c21d2fafe743398dc1e5574433280110469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0e:be:1f:0d:ff:5d:b5:99:9c:7b:1c:34:05: 05:b8:f1:3b:20:a2:f7:e0:ce:7c:fe:07:49:f1:74: 6a:9e:09:cc:0e:ca:fd:7c:ea:93:5d:d3:40:88:1d: 71:92:2b:4e:7d:3c:a1:cf:c0:ad:cc:df:9a:18:c8: e8:cc:10:d1:24:e7:f4:0e:94:09:a6:8d:35:7c:a7: 6f:2c:14:15:28:a6:72:77:30:95:9e:1a:35:d6:ba: 64:a4:b1:ad:7b:7c:f8:ed:98:c0:9a:9a:4d:50:a0: 63:da:ce:15:61:d1:4e:f8:d0:31:f6:99:82:10:47: 35:e2:02:37:57:cf:68:71:26:b1:67:c0:f5:cb:7c: 93:1c:53:28:7c:81:63:64:4b:5f:95:84:92:d4:29: 36:50:59:04:58:fb:c7:c0:3e:24:b4:20:b7:bc:33: c6:0a:2e:64:81:ad:ef:9d:da:fa:d3:bd:17:61:31: 80:96:ad:02:a2:f5:d8:e6:e1:d5:ed:f6:43:3a:0d: b1:e8:45:cc:46:96:47:d9:07:db:38:e0:d5:50:8d: f8:f6:2b:d6:9e:3d:7b:aa:d5:24:0c:ef:f9:6e:81: e4:ae:a3:d8:d9:8f:b4:68:66:c8:ca:01:3a:0c:b7: 63:70:e7:67:7c:91:2c:28:e7:90:de:e2:40:ee:1d: a9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:32:5C:21:D2:FA:FE:74:33:98:DC:1E:55:74:43:32:80:11:04:69 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/YDJcIdL6_nQzmNweVXRDMoARBGk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.10.217.0/24 Signature Algorithm: sha256WithRSAEncryption 45:c6:7d:36:fe:3c:6e:b6:7e:3f:79:77:03:08:c6:0c:00:11: 3c:9f:7b:2e:0a:71:7b:c4:72:49:51:b9:69:d3:19:5d:2b:10: 48:99:07:eb:53:6f:5d:54:a2:c0:09:8e:ca:c1:ed:9f:08:7c: a0:55:81:20:a2:b1:ff:7f:a0:b7:06:42:ce:5c:dc:28:d6:28: 04:53:83:42:47:0c:e6:b8:99:ac:9a:63:83:cf:83:be:f1:98: be:ab:35:38:d5:04:0c:91:09:d3:cf:33:0f:4a:f1:60:76:61: 6e:52:26:d2:d8:b1:8e:26:8d:dc:6d:99:40:09:b9:43:37:11: 3d:be:42:d7:d7:78:de:7b:32:fd:3b:f5:d9:b0:93:a2:61:b7: 6a:ff:cf:ab:70:71:f8:2a:01:cf:90:fe:75:fc:15:05:41:bc: 36:e5:58:a5:92:cd:f4:7f:6e:35:3b:2d:47:a9:a6:80:66:9f: d7:d8:21:e7:17:cf:a6:ae:05:3b:45:ba:b9:e2:68:68:8b:4a: b7:49:29:11:f8:43:ca:92:92:24:b4:b0:de:10:15:a5:3c:8d: f1:e3:24:0a:01:ab:80:55:66:a4:f8:c8:02:88:c1:e1:bd:e8: 0e:7b:fa:ea:ef:e6:74:79:aa:db:e5:5d:d0:c6:3a:b3:92:15: 9b:80:2b:80 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt6Wr8fCOZxx8a7QP1lr8bUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDMyNWMyMWQyZmFmZTc0MzM5OGRjMWU1NTc0NDMzMjgwMTEwNDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwg6+Hw3/XbWZnHscNAUFuPE7IKL3 4M58/gdJ8XRqngnMDsr9fOqTXdNAiB1xkitOfTyhz8CtzN+aGMjozBDRJOf0DpQJ po01fKdvLBQVKKZydzCVnho11rpkpLGte3z47ZjAmppNUKBj2s4VYdFO+NAx9pmC EEc14gI3V89ocSaxZ8D1y3yTHFMofIFjZEtflYSS1Ck2UFkEWPvHwD4ktCC3vDPG Ci5kga3vndr6070XYTGAlq0CovXY5uHV7fZDOg2x6EXMRpZH2QfbOODVUI349ivW nj17qtUkDO/5boHkrqPY2Y+0aGbIygE6DLdjcOdnfJEsKOeQ3uJA7h2pYwIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFGAyXCHS+v50M5jcHlV0QzKAEQRpMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQwL2YyNzcw Yi1kYTE5LTQ3OTAtYTQ5NC1jNThlOTVjZDQyNzcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAvZjI3NzBi LWRhMTktNDc5MC1hNDk0LWM1OGU5NWNkNDI3Ny8xL1lESmNJZEw2X25Rem1Od2VW WFJETW9BUkJHay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwwrZMA0GCSqGSIb3DQEBCwUAA4IBAQBFxn02 /jxutn4/eXcDCMYMABE8n3suCnF7xHJJUblp0xldKxBImQfrU29dVKLACY7Kwe2f CHygVYEgorH/f6C3BkLOXNwo1igEU4NCRwzmuJmsmmODz4O+8Zi+qzU41QQMkQnT zzMPSvFgdmFuUibS2LGOJo3cbZlACblDNxE9vkLX13jeezL9O/XZsJOiYbdq/8+r cHH4KgHPkP51/BUFQbw25Vilks30f241Oy1HqaaAZp/X2CHnF8+mrgU7Rbq54mho i0q3SSkR+EPKkpIktLDeEBWlPI3x4yQKAauAVWak+MgCiMHhvegOe/rq7+Z0earb 5V3QxjqzkhWbgCuA -----END CERTIFICATE-----Generated at Sun Jan 25 06:00:41 2026 by rpki-client