This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-rZRJK62A6DdXFzuGgq2UhOX22A.cer File: 1-rZRJK62A6DdXFzuGgq2UhOX22A.cer (raw, json) Hash identifier: nE+XdaEc9BIB1cRZUB7d0is6BsrFQpMoIw6feXaA/sk= Subject key identifier: FA:B6:51:24:AE:B6:03:A0:DD:5C:5C:EE:1A:0A:B6:52:13:97:DB:60 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77590C9BF1D9EA59E7ED6344F7027762 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9e/ef1699-8c13-4235-a589-63fe6be62dc9/1/1-rZRJK62A6DdXFzuGgq2UhOX22A.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9e/ef1699-8c13-4235-a589-63fe6be62dc9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.51.184.0/22 IP: 2a01:b460::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:0c:9b:f1:d9:ea:59:e7:ed:63:44:f7:02:77:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fab65124aeb603a0dd5c5cee1a0ab6521397db60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:3c:91:b7:88:1b:99:a5:bf:a3:bc:df:34:5b: 1b:10:7c:8d:ef:6e:cd:29:41:5b:23:98:2c:2c:9a: 7f:03:73:ca:7b:d9:73:82:28:0c:d3:10:28:0f:a6: df:23:51:3c:59:5e:ae:2e:b2:00:a9:d4:55:52:3a: b4:71:31:a2:24:f8:a0:13:74:1f:04:c8:7a:88:82: d0:31:28:fc:3a:a2:ff:74:bb:b8:5d:1d:2b:94:f3: 18:16:87:55:88:a7:ea:7b:68:91:a2:c1:26:ce:cc: 54:c4:fe:bc:50:94:fc:6b:8c:cf:f6:c5:64:1a:ae: 87:cd:82:02:1c:b1:d0:54:cc:5d:a8:8d:d0:ff:86: fa:70:4a:41:b5:8f:d6:79:0e:07:61:7e:58:c8:e9: 00:d8:1a:32:e6:65:bf:80:5e:49:29:d6:de:03:30: 59:07:65:06:b5:5f:e7:e3:71:c2:96:54:39:3e:f5: 6d:64:27:7b:8f:e6:c7:81:b8:c3:1d:d2:ae:fc:27: f2:1b:16:c9:29:08:db:ac:a3:c2:01:bc:bd:92:c0: 18:53:38:64:24:06:f9:79:58:54:e1:ed:eb:86:d0: 64:46:5b:6f:fb:da:57:c5:61:89:b1:62:17:f6:a5: 44:15:ce:ef:3a:b6:e0:9a:1e:7f:d2:66:da:d3:19: b9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B6:51:24:AE:B6:03:A0:DD:5C:5C:EE:1A:0A:B6:52:13:97:DB:60 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/ef1699-8c13-4235-a589-63fe6be62dc9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/ef1699-8c13-4235-a589-63fe6be62dc9/1/1-rZRJK62A6DdXFzuGgq2UhOX22A.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.51.184.0/22 IPv6: 2a01:b460::/32 Signature Algorithm: sha256WithRSAEncryption 36:40:f7:c5:f8:f9:a2:41:e1:da:a4:5f:06:47:60:78:00:e0: 11:af:9c:af:b4:47:6c:8d:0c:31:49:f4:3d:e7:65:c8:67:66: 6c:d6:88:21:a8:38:40:3d:4b:ae:06:64:b8:73:34:36:44:0d: f9:b5:9c:99:44:3d:44:b0:f4:d1:01:83:ec:79:01:a0:d6:8b: 5a:92:6d:96:71:84:da:7b:1b:cb:2c:83:ce:bb:6b:0f:aa:1d: 34:17:35:2a:ca:f1:75:34:17:96:18:69:dd:70:5e:db:2e:18: c3:0a:db:37:94:20:fc:d7:aa:0a:f5:3c:b1:1b:6a:79:7c:95: 16:72:1b:5f:b0:c8:d2:d0:61:79:67:31:f1:34:0d:e0:36:f0: 02:db:7e:57:77:a4:c3:16:8c:56:36:49:43:5f:8d:08:12:b4: 03:fa:3e:92:62:b1:79:45:36:d8:fb:8f:98:aa:47:19:70:35: 9b:f6:a4:e2:99:e5:65:63:e6:7c:53:6d:a6:ca:10:01:7f:47: 6f:f6:49:7a:c4:ea:58:f2:f9:e5:1a:14:a7:1a:93:7a:17:28: 72:58:d1:ae:a0:46:62:60:d1:08:98:64:4c:59:e5:22:67:8c: ab:73:9c:84:d3:48:e5:45:53:4e:80:d9:2f:67:b3:37:fe:75: 5a:7c:62:20 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgISAZt3WQyb8dnqWeftY0T3AndiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYWI2NTEyNGFlYjYwM2EwZGQ1YzVjZWUxYTBhYjY1MjEzOTdkYjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhzyRt4gbmaW/o7zfNFsbEHyN727N KUFbI5gsLJp/A3PKe9lzgigM0xAoD6bfI1E8WV6uLrIAqdRVUjq0cTGiJPigE3Qf BMh6iILQMSj8OqL/dLu4XR0rlPMYFodViKfqe2iRosEmzsxUxP68UJT8a4zP9sVk Gq6HzYICHLHQVMxdqI3Q/4b6cEpBtY/WeQ4HYX5YyOkA2Boy5mW/gF5JKdbeAzBZ B2UGtV/n43HCllQ5PvVtZCd7j+bHgbjDHdKu/CfyGxbJKQjbrKPCAby9ksAYUzhk JAb5eVhU4e3rhtBkRltv+9pXxWGJsWIX9qVEFc7vOrbgmh5/0mba0xm5cQIDAQAB o4IClDCCApAwHQYDVR0OBBYEFPq2USSutgOg3Vxc7hoKtlITl9tgMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEkBggrBgEFBQcBCwSCARYwggESMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzllL2VmMTY5 OS04YzEzLTQyMzUtYTU4OS02M2ZlNmJlNjJkYzkvMS8wfQYIKwYBBQUHMAqGcXJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWUvZWYxNjk5 LThjMTMtNDIzNS1hNTg5LTYzZmU2YmU2MmRjOS8xLzEtclpSSks2MkE2RGRYRnp1 R2dxMlVoT1gyMkEubWZ0MDIGCCsGAQUFBzANhiZodHRwczovL3JyZHAucmlwZS5u ZXQvbm90aWZpY2F0aW9uLnhtbDBZBgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jw a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhD MlFIVlYzZDVtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEArkzuDANBAIAAjAHAwUAKgG0YDANBgkqhkiG 9w0BAQsFAAOCAQEANkD3xfj5okHh2qRfBkdgeADgEa+cr7RHbI0MMUn0PedlyGdm bNaIIag4QD1LrgZkuHM0NkQN+bWcmUQ9RLD00QGD7HkBoNaLWpJtlnGE2nsbyyyD zrtrD6odNBc1KsrxdTQXlhhp3XBe2y4YwwrbN5Qg/NeqCvU8sRtqeXyVFnIbX7DI 0tBheWcx8TQN4DbwAtt+V3ekwxaMVjZJQ1+NCBK0A/o+kmKxeUU22PuPmKpHGXA1 m/ak4pnlZWPmfFNtpsoQAX9Hb/ZJesTqWPL55RoUpxqTehcocljRrqBGYmDRCJhk TFnlImeMq3OchNNI5UVTToDZL2ezN/51WnxiIA== -----END CERTIFICATE-----Generated at Mon Jan 26 17:29:31 2026 by rpki-client