This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wYAgvcXmukpUdNOqDaSpYqaNmKs.cer File: wYAgvcXmukpUdNOqDaSpYqaNmKs.cer (raw, json) Hash identifier: JlJUTckEr55Pijk74IrtDTLTY5jthR4L6w7FoACmURM= Subject key identifier: C1:80:20:BD:C5:E6:BA:4A:54:74:D3:AA:0D:A4:A9:62:A6:8D:98:AB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB33A6F268757D247C6831B67485FA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/1/C18020BDC5E6BA4A5474D3AA0DA4A962A68D98AB.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/1/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204211 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:33:a6:f2:68:75:7d:24:7c:68:31:b6:74:85:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c18020bdc5e6ba4a5474d3aa0da4a962a68d98ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cb:e7:ea:c0:77:15:0a:eb:38:b8:99:cf:0b: a1:4c:c6:fc:3d:fe:72:1a:27:ab:f9:12:eb:f7:65: 93:06:ca:f0:62:33:d0:e8:3e:f9:80:a1:09:eb:69: ec:9a:43:7d:0b:5b:4b:5f:52:98:99:f1:eb:0b:a4: cd:2a:78:a1:0e:a2:ce:d7:57:2c:3c:ab:37:e1:41: 41:17:54:13:84:11:70:3c:1c:93:a7:a2:a3:54:6d: 68:95:33:6a:a7:8c:dc:f8:20:6e:67:04:49:8c:96: e8:04:65:73:f1:ba:cc:00:63:ca:6c:ae:e7:49:24: ab:e1:a7:fa:06:1c:f8:18:e7:36:ae:9d:55:ca:dc: b1:5d:42:4c:23:00:16:65:5e:a6:12:dc:9d:15:24: 80:08:35:5f:68:11:78:31:1e:1f:4b:ed:c1:12:26: 04:2f:04:74:d0:83:ba:10:4a:ab:47:63:43:e9:ba: 47:8d:3f:70:99:ba:98:db:5d:17:27:84:b1:c2:75: 0f:63:88:80:c9:cf:a1:fe:53:38:e1:46:6d:36:84: b8:9d:cd:a7:95:36:33:c5:d1:d5:ae:b2:6d:dc:3d: 7f:7a:7f:d7:08:27:f2:f4:ad:46:4c:62:e7:a1:83: d2:8d:be:d7:83:c1:26:c8:2e:b0:b0:7f:3e:95:a4: 14:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:80:20:BD:C5:E6:BA:4A:54:74:D3:AA:0D:A4:A9:62:A6:8D:98:AB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/1/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/1/C18020BDC5E6BA4A5474D3AA0DA4A962A68D98AB.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 204211 Signature Algorithm: sha256WithRSAEncryption 5b:58:45:6d:46:e9:28:a4:e3:c4:71:98:89:cf:1d:86:3c:ea: ea:5d:ab:f2:c4:67:5d:18:9b:4d:df:d9:7d:db:4d:64:51:88: a1:9d:0d:32:1c:d2:ea:06:a6:9a:e1:c7:73:56:5a:ef:6c:4a: e4:e9:5a:d2:06:30:8a:c4:11:38:3f:ca:99:b4:a9:4e:71:c2: 3c:d4:54:1f:77:d3:ca:82:28:1b:9c:58:2c:c1:5d:86:72:33: cd:95:31:03:2d:c5:af:48:f0:7a:1e:ff:5c:ce:e6:8e:af:50: bf:53:5b:2f:81:6f:bd:61:4b:f8:83:b9:b7:b1:2c:70:5b:f9: d4:73:8b:60:54:7a:d0:17:ed:60:8e:82:7a:f5:03:ec:25:d1: 42:b4:62:0d:03:05:49:e0:99:a8:16:0b:bf:0e:ce:9d:26:40: e8:a5:92:dd:39:b9:84:fb:a1:79:72:e4:d6:a0:24:37:65:dc: ae:3e:3a:2e:f5:f5:b9:3b:88:b9:b7:2c:c5:26:1e:1d:16:06: 41:27:6d:be:33:8a:6c:53:5a:2a:2b:3e:4b:a2:47:26:36:4b: aa:f0:4c:cb:c3:b6:bc:50:d9:3a:f5:ef:c5:c6:59:7e:3a:c5: 77:3d:9b:8b:26:ac:53:cf:2e:79:4a:a9:57:c2:a0:60:c1:64: ca:3c:a1:16 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgISAZt26zOm8mh1fSR8aDG2dIX6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMTgwMjBiZGM1ZTZiYTRhNTQ3NGQzYWEwZGE0YTk2MmE2OGQ5OGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8vn6sB3FQrrOLiZzwuhTMb8Pf5y Gier+RLr92WTBsrwYjPQ6D75gKEJ62nsmkN9C1tLX1KYmfHrC6TNKnihDqLO11cs PKs34UFBF1QThBFwPByTp6KjVG1olTNqp4zc+CBuZwRJjJboBGVz8brMAGPKbK7n SSSr4af6Bhz4GOc2rp1VytyxXUJMIwAWZV6mEtydFSSACDVfaBF4MR4fS+3BEiYE LwR00IO6EEqrR2ND6bpHjT9wmbqY210XJ4SxwnUPY4iAyc+h/lM44UZtNoS4nc2n lTYzxdHVrrJt3D1/en/XCCfy9K1GTGLnoYPSjb7Xg8EmyC6wsH8+laQUfQIDAQAB o4ICmzCCApcwHQYDVR0OBBYEFMGAIL3F5rpKVHTTqg2kqWKmjZirMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Y1MzJi OWViLTJmYWUtNDhhOC05NzkzLTMzZWVjMDY3Y2UzOS8xLzCBiwYIKwYBBQUHMAqG f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjUz MmI5ZWItMmZhZS00OGE4LTk3OTMtMzNlZWMwNjdjZTM5LzEvQzE4MDIwQkRDNUU2 QkE0QTU0NzREM0FBMERBNEE5NjJBNjhEOThBQi5tZnQwPAYIKwYBBQUHMA2GMGh0 dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgMDHbMw DQYJKoZIhvcNAQELBQADggEBAFtYRW1G6Sik48RxmInPHYY86updq/LEZ10Ym03f 2X3bTWRRiKGdDTIc0uoGpprhx3NWWu9sSuTpWtIGMIrEETg/ypm0qU5xwjzUVB93 08qCKBucWCzBXYZyM82VMQMtxa9I8Hoe/1zO5o6vUL9TWy+Bb71hS/iDubexLHBb +dRzi2BUetAX7WCOgnr1A+wl0UK0Yg0DBUngmagWC78Ozp0mQOilkt05uYT7oXly 5NagJDdl3K4+Oi719bk7iLm3LMUmHh0WBkEnbb4zimxTWiorPkuiRyY2S6rwTMvD trxQ2Tr178XGWX46xXc9m4smrFPPLnlKqVfCoGDBZMo8oRY= -----END CERTIFICATE-----Generated at Sun Jan 25 19:42:45 2026 by rpki-client