This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yTksMnayQ6_3QKCCxYj7c5Qeu_c.cer File: yTksMnayQ6_3QKCCxYj7c5Qeu_c.cer (raw, json) Hash identifier: hwhQnvVi/pme3kc1gKek0PdUk5NhSVWcFDkt7+mgxwM= Subject key identifier: C9:39:2C:32:76:B2:43:AF:F7:40:A0:82:C5:88:FB:73:94:1E:BB:F7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C8031A168DA7E132B42A45339B9633F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/256cb6-dc42-41a5-b920-24cba1c03c99/1/yTksMnayQ6_3QKCCxYj7c5Qeu_c.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/256cb6-dc42-41a5-b920-24cba1c03c99/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:54 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 195.128.184.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:31:a1:68:da:7e:13:2b:42:a4:53:39:b9:63:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9392c3276b243aff740a082c588fb73941ebbf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:18:24:70:81:f9:21:d3:07:01:7a:88:62:d7: b9:6d:3b:71:e1:12:dd:90:88:9b:42:12:3e:ce:27: ce:93:ee:b8:2e:9a:52:01:cb:86:d8:76:14:06:58: dc:86:a2:83:0c:7a:2c:2c:d2:b9:77:66:d2:a4:c1: 42:62:1d:51:8f:82:77:38:23:f1:41:c5:f9:31:f5: 8d:6d:c9:b4:f3:78:2b:04:7c:04:d2:1a:45:86:76: a8:1b:d0:99:93:e8:32:90:6d:65:39:29:b9:8c:4b: 20:25:69:7a:a8:cb:fa:54:a2:af:9c:10:71:3f:a3: f0:61:63:77:6f:7c:86:56:ae:dc:3e:48:81:60:52: c5:02:dd:29:9c:78:83:1c:ff:6d:2d:bb:a4:9d:ff: 58:7d:3e:f0:18:b8:43:75:ea:98:9c:45:55:5c:29: 66:1d:b0:18:51:15:af:19:5b:9e:46:22:d0:2e:e6: 81:98:4c:8b:57:8a:12:af:67:bd:c9:e3:56:87:76: b5:c9:73:34:3a:50:60:b1:10:d0:b2:25:b9:ac:79: 20:af:e5:fd:d8:1a:44:cb:a6:e0:95:22:70:c4:ef: 37:87:74:bf:af:7d:41:6f:fb:4e:d8:c2:c0:fa:45: cc:d3:e9:e6:58:d0:5b:3f:11:39:84:00:9f:07:63: b1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:39:2C:32:76:B2:43:AF:F7:40:A0:82:C5:88:FB:73:94:1E:BB:F7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/256cb6-dc42-41a5-b920-24cba1c03c99/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/256cb6-dc42-41a5-b920-24cba1c03c99/1/yTksMnayQ6_3QKCCxYj7c5Qeu_c.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.128.184.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:2f:2c:6d:22:69:4c:29:63:c9:8e:18:8e:45:89:48:f4:e8: ac:d2:ba:66:d3:78:b1:07:58:b8:c9:52:91:87:67:92:c5:96: 53:eb:29:63:53:bc:d3:06:2e:aa:2f:13:66:98:96:b8:99:22: 75:33:90:c5:7d:a3:0c:af:98:f6:24:75:07:fe:20:9d:ce:42: b5:a4:97:36:b3:19:7e:2a:84:39:6e:c9:37:cd:b0:d7:04:9c: c9:bf:82:55:c3:2f:e6:36:6a:0d:cb:5b:c8:46:85:40:5b:67: 4a:05:14:1d:ba:9e:30:98:50:c8:5d:fd:6b:c9:f6:4e:b7:ac: 8a:e6:a5:80:71:0a:43:b3:79:6f:45:5d:2a:fb:e8:81:a1:5f: 8b:f5:08:94:cf:3b:d2:d9:92:2b:9e:05:87:49:70:b1:70:9a: 5d:2a:bb:21:c4:62:63:d8:f6:16:5a:3b:72:2f:24:e4:ec:d5: 91:89:cc:76:ac:21:64:b3:dd:22:b6:15:ef:a2:33:c4:59:f3: c1:75:c4:fb:83:31:9a:21:58:0a:d5:59:9b:28:65:0b:97:54: 89:bd:d6:6f:89:7f:53:29:f8:4e:cf:25:1a:17:1d:b5:48:95: 4e:b0:70:8e:17:bf:de:4d:51:93:2a:23:f8:81:0e:fd:d3:96: d2:b9:5c:cf -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt8gDGhaNp+EytCpFM5uWM/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTM5MmMzMjc2YjI0M2FmZjc0MGEwODJjNTg4ZmI3Mzk0MWViYmY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxgkcIH5IdMHAXqIYte5bTtx4RLd kIibQhI+zifOk+64LppSAcuG2HYUBljchqKDDHosLNK5d2bSpMFCYh1Rj4J3OCPx QcX5MfWNbcm083grBHwE0hpFhnaoG9CZk+gykG1lOSm5jEsgJWl6qMv6VKKvnBBx P6PwYWN3b3yGVq7cPkiBYFLFAt0pnHiDHP9tLbuknf9YfT7wGLhDdeqYnEVVXClm HbAYURWvGVueRiLQLuaBmEyLV4oSr2e9yeNWh3a1yXM0OlBgsRDQsiW5rHkgr+X9 2BpEy6bglSJwxO83h3S/r31Bb/tO2MLA+kXM0+nmWNBbPxE5hACfB2OxyQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFMk5LDJ2skOv90CggsWI+3OUHrv3MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5LzI1NmNi Ni1kYzQyLTQxYTUtYjkyMC0yNGNiYTFjMDNjOTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvMjU2Y2I2 LWRjNDItNDFhNS1iOTIwLTI0Y2JhMWMwM2M5OS8xL3lUa3NNbmF5UTZfM1FLQ0N4 WWo3YzVRZXVfYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBw4C4MA0GCSqGSIb3DQEBCwUAA4IBAQBKLyxt ImlMKWPJjhiORYlI9Ois0rpm03ixB1i4yVKRh2eSxZZT6yljU7zTBi6qLxNmmJa4 mSJ1M5DFfaMMr5j2JHUH/iCdzkK1pJc2sxl+KoQ5bsk3zbDXBJzJv4JVwy/mNmoN y1vIRoVAW2dKBRQdup4wmFDIXf1ryfZOt6yK5qWAcQpDs3lvRV0q++iBoV+L9QiU zzvS2ZIrngWHSXCxcJpdKrshxGJj2PYWWjtyLyTk7NWRicx2rCFks90ithXvojPE WfPBdcT7gzGaIVgK1VmbKGULl1SJvdZviX9TKfhOzyUaFx21SJVOsHCOF7/eTVGT KiP4gQ7905bSuVzP -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:14 2026 by rpki-client