This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YOdz2_t1lX8Mxchj_M52ylijkwg.cer File: YOdz2_t1lX8Mxchj_M52ylijkwg.cer (raw, json) Hash identifier: psRDql0putjjcV3JxDFIisWOW1RIu8e+uEg3Eu61T6U= Subject key identifier: 60:E7:73:DB:FB:75:95:7F:0C:C5:C8:63:FC:CE:76:CA:58:A3:93:08 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79EBAAB30E88418962296762CFC007DE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:17:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 81.30.98.0/24 IP: 2a13:9a00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:aa:b3:0e:88:41:89:62:29:67:62:cf:c0:07:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60e773dbfb75957f0cc5c863fcce76ca58a39308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:3e:02:e1:2d:f0:f6:38:8a:71:fc:e6:ff:58: 2a:c9:13:2e:a9:74:89:05:51:c9:f2:c4:3e:21:5a: 84:b9:04:da:bf:31:01:e3:fc:84:c5:21:bd:6a:34: 8a:d8:26:fe:24:05:8a:55:5a:0c:41:ca:55:91:dd: 87:61:92:df:2a:5c:49:91:bf:0f:f0:47:2e:70:4c: 7f:77:76:3c:0f:12:3f:45:0e:61:62:56:c0:ec:f4: cd:79:2d:22:8e:cf:05:49:35:6c:2b:30:56:84:84: 98:85:10:c0:f1:64:f5:22:b3:8c:52:ba:88:d2:e9: 7c:1f:35:9c:85:91:83:63:8e:e1:6a:1c:9b:33:14: aa:72:65:c3:eb:bb:26:4e:ac:36:06:b6:7c:7e:8d: d9:d6:f5:68:d7:00:a3:5c:ee:05:9f:0c:2d:3b:3a: 79:f1:d0:d6:2a:c6:b9:64:9d:9c:cf:88:83:4f:59: 5d:65:fa:ba:35:6a:aa:25:19:d7:51:cf:25:2f:45: 99:6a:9f:f4:21:c5:ef:89:19:06:0b:1f:36:7e:86: 73:43:6c:0f:a1:ac:ff:db:b8:d0:b7:79:42:8a:78: 9a:a2:72:05:1d:fe:08:14:e3:3c:8b:9e:91:b3:47: 9f:d1:10:7b:5f:dc:22:7d:40:d7:5f:80:d6:6b:b6: 79:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E7:73:DB:FB:75:95:7F:0C:C5:C8:63:FC:CE:76:CA:58:A3:93:08 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.30.98.0/24 IPv6: 2a13:9a00::/29 Signature Algorithm: sha256WithRSAEncryption 29:cc:94:70:05:b9:9a:e6:ac:00:86:a5:19:4c:94:59:16:27: c1:de:78:d9:de:fe:88:07:a7:c9:20:03:e5:d9:53:04:37:a0: ef:e6:3d:e9:69:2a:20:1c:c8:0f:5e:ac:d8:ac:cd:f5:ae:66: fa:a8:b2:b9:d6:8e:19:fd:0a:09:00:bf:34:d1:57:1e:b4:dd: 2e:06:d8:d8:be:cb:e3:78:27:f2:89:2c:e1:70:b3:94:a5:ed: 08:2b:c8:1c:25:15:2b:66:1e:bf:e4:da:f2:0a:ca:6c:30:f1: e5:9a:49:74:3c:8a:a6:39:95:ae:2e:63:fc:49:42:22:57:1a: 5b:a8:f9:6f:b2:cf:24:22:f0:87:c1:09:c2:9b:7d:15:52:ae: 10:86:78:a2:8c:0a:39:92:5d:c7:43:79:0d:44:e8:10:c7:70: ca:1c:05:70:33:28:e3:dc:c3:93:d4:ae:b4:50:ac:a6:4a:e2: dd:dc:8c:02:d9:af:6d:d1:12:6a:b7:b6:9d:a3:bf:27:dc:24: 91:ac:0f:04:74:4a:81:09:ff:2e:24:09:7e:28:5f:05:de:c7: 7d:cd:f8:05:23:84:64:cf:5d:f6:a1:ed:32:8e:f0:5d:0c:80: 53:2a:ee:5e:d1:73:54:93:4e:4d:d9:51:c3:a6:bb:c6:1f:de: 84:99:b3:b1 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt566qzDohBiWIpZ2LPwAfeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGU3NzNkYmZiNzU5NTdmMGNjNWM4NjNmY2NlNzZjYTU4YTM5MzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8D4C4S3w9jiKcfzm/1gqyRMuqXSJ BVHJ8sQ+IVqEuQTavzEB4/yExSG9ajSK2Cb+JAWKVVoMQcpVkd2HYZLfKlxJkb8P 8EcucEx/d3Y8DxI/RQ5hYlbA7PTNeS0ijs8FSTVsKzBWhISYhRDA8WT1IrOMUrqI 0ul8HzWchZGDY47hahybMxSqcmXD67smTqw2BrZ8fo3Z1vVo1wCjXO4FnwwtOzp5 8dDWKsa5ZJ2cz4iDT1ldZfq6NWqqJRnXUc8lL0WZap/0IcXviRkGCx82foZzQ2wP oaz/27jQt3lCiniaonIFHf4IFOM8i56Rs0ef0RB7X9wifUDXX4DWa7Z5WwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFGDnc9v7dZV/DMXIY/zOdspYo5MIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk4L2M5OWQ2 Zi04MmVlLTQ3NjgtODA1Yi00NzZkN2U2MmNlZjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgvYzk5ZDZm LTgyZWUtNDc2OC04MDViLTQ3NmQ3ZTYyY2VmNi8xL1lPZHoyX3QxbFg4TXhjaGpf TTUyeWxpamt3Zy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAUR5iMA0EAgACMAcDBQMqE5oAMA0GCSqGSIb3 DQEBCwUAA4IBAQApzJRwBbma5qwAhqUZTJRZFifB3njZ3v6IB6fJIAPl2VMEN6Dv 5j3paSogHMgPXqzYrM31rmb6qLK51o4Z/QoJAL800VcetN0uBtjYvsvjeCfyiSzh cLOUpe0IK8gcJRUrZh6/5NryCspsMPHlmkl0PIqmOZWuLmP8SUIiVxpbqPlvss8k IvCHwQnCm30VUq4QhniijAo5kl3HQ3kNROgQx3DKHAVwMyjj3MOT1K60UKymSuLd 3IwC2a9t0RJqt7ado78n3CSRrA8EdEqBCf8uJAl+KF8F3sd9zfgFI4Rkz132oe0y jvBdDIBTKu5e0XNUk05N2VHDprvGH96EmbOx -----END CERTIFICATE-----Generated at Sun Jan 25 20:05:32 2026 by rpki-client