This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer File: 1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer (raw, json) Hash identifier: icUBtJseoBTWd0eOnFOF7ClGvUBH6T6dlDqQfANU5G8= Subject key identifier: D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C135FE29BFB72F20C6DDF6FFB4C1FEF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:20:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 60256 AS: 60423 IP: 5.145.112.0/21 IP: 185.24.252.0/22 IP: 2a04:2f00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:5f:e2:9b:fb:72:f2:0c:6d:df:6f:fb:4c:1f:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:20:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d6e2694652aa298511edafbe18d2b1cdbc792638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ed:4a:d3:99:58:f9:84:c9:21:64:e3:47:14: 22:e7:3e:84:a2:df:9d:ad:04:61:25:ab:7a:45:27: ce:b9:3f:5c:62:e7:b5:18:47:58:59:b0:e7:e3:fa: 1b:c7:43:73:ce:9d:8b:74:84:eb:c1:1b:0f:86:09: 8f:cf:b5:2a:f7:4e:4e:ae:b2:f6:b7:f5:0c:96:cc: fb:ed:89:80:2c:ca:cb:4a:6a:d3:16:39:d7:28:0e: 76:85:64:6c:ec:3c:5e:21:8b:4f:38:e7:87:22:d9: cf:25:73:18:66:fc:2b:f5:c3:cf:d8:0a:74:9e:16: f1:46:6a:f2:7e:c8:4e:55:a8:58:7d:cc:72:6a:2b: ca:8b:64:a6:f9:2a:99:18:e8:b7:4f:43:1d:c3:64: 5a:7d:a1:58:0a:ee:d2:7d:e7:71:10:85:85:eb:c5: 8f:5d:73:81:a3:e1:db:57:6c:22:f6:3d:09:67:94: 5c:a8:ac:f8:16:e2:81:99:10:76:05:d5:65:04:76: 74:5c:aa:33:c9:cf:86:56:4d:5c:56:9e:c9:ce:b5: a1:e1:24:91:d0:0f:56:14:ff:7b:2b:9c:25:f0:2e: 9e:c9:91:95:2b:1f:d3:a1:d8:06:5b:8b:56:fe:1b: 3b:79:e9:c3:26:1a:aa:46:46:2f:fc:04:d3:3d:89: 36:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.145.112.0/21 185.24.252.0/22 IPv6: 2a04:2f00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 60256 60423 Signature Algorithm: sha256WithRSAEncryption 44:08:ad:57:93:29:22:9a:0a:f4:8a:2c:f6:fb:8b:3b:25:84: 8f:e2:ba:00:a2:29:fb:e8:c5:1b:b3:ab:0d:30:29:2b:41:b1: 85:69:86:a0:d1:50:f1:b1:0b:91:16:02:58:1f:54:11:fe:e7: 3e:72:1a:dc:26:86:3e:fe:da:60:c2:db:57:9e:4b:de:ac:b4: 4c:f5:61:85:bb:74:29:31:9d:37:63:df:e3:9c:c2:55:65:7c: f4:57:0b:46:8d:b5:a7:5a:e6:21:66:2e:32:30:80:d4:78:a4: 49:92:ae:8b:0f:bd:73:6e:01:d7:44:e0:7a:58:59:d6:38:bc: 7f:ca:68:be:82:a1:d0:ea:97:6b:8b:70:85:d3:2e:aa:c5:30: f8:8a:eb:d3:3a:06:4a:f1:90:6c:e1:07:f4:cf:1f:69:bd:28: 09:53:e8:b4:92:6b:bf:b3:4b:54:09:43:19:c8:9e:d1:c1:db: 55:f1:0d:be:b3:3e:a0:9d:e9:7a:e9:4e:b8:3a:a3:0d:9f:1b: 65:c8:dc:81:3e:78:7a:f9:f5:bb:ad:70:34:8f:1e:b1:ee:65: 90:ee:2a:cd:c7:ca:c6:5b:32:1f:a9:0a:9a:ba:57:60:fc:6f: 78:6c:4b:60:a9:00:6b:82:b8:13:59:51:43:00:2a:64:7e:09: 4a:27:c0:3f -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt8E1/im/ty8gxt32/7TB/vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAyMDAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNmUyNjk0NjUyYWEyOTg1MTFlZGFmYmUxOGQyYjFjZGJjNzkyNjM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+1K05lY+YTJIWTjRxQi5z6Eot+d rQRhJat6RSfOuT9cYue1GEdYWbDn4/obx0Nzzp2LdITrwRsPhgmPz7Uq905OrrL2 t/UMlsz77YmALMrLSmrTFjnXKA52hWRs7DxeIYtPOOeHItnPJXMYZvwr9cPP2Ap0 nhbxRmryfshOVahYfcxyaivKi2Sm+SqZGOi3T0Mdw2RafaFYCu7SfedxEIWF68WP XXOBo+HbV2wi9j0JZ5RcqKz4FuKBmRB2BdVlBHZ0XKozyc+GVk1cVp7JzrWh4SSR 0A9WFP97K5wl8C6eyZGVKx/TodgGW4tW/hs7eenDJhqqRkYv/ATTPYk2lQIDAQAB o4ICujCCArYwHQYDVR0OBBYEFNbiaUZSqimFEe2vvhjSsc28eSY4MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2MwLzhjYzUw Ni03ZTcxLTQ3MDUtYTI4OS1iNDIzNjQ4OTUwODMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAvOGNjNTA2 LTdlNzEtNDcwNS1hMjg5LWI0MjM2NDg5NTA4My8xLzF1SnBSbEtxS1lVUjdhLS1H Tkt4emJ4NUpqZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDBZFwAwQCuRj8MA0EAgACMAcDBQMqBC8AMB8G CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwDrYAIDAOwHMA0GCSqGSIb3DQEBCwUAA4IB AQBECK1Xkykimgr0iiz2+4s7JYSP4roAoin76MUbs6sNMCkrQbGFaYag0VDxsQuR FgJYH1QR/uc+chrcJoY+/tpgwttXnkverLRM9WGFu3QpMZ03Y9/jnMJVZXz0VwtG jbWnWuYhZi4yMIDUeKRJkq6LD71zbgHXROB6WFnWOLx/ymi+gqHQ6pdri3CF0y6q xTD4iuvTOgZK8ZBs4Qf0zx9pvSgJU+i0kmu/s0tUCUMZyJ7RwdtV8Q2+sz6gnel6 6U64OqMNnxtlyNyBPnh6+fW7rXA0jx6x7mWQ7irNx8rGWzIfqQqauldg/G94bEtg qQBrgrgTWVFDACpkfglKJ8A/ -----END CERTIFICATE-----Generated at Mon Jan 26 22:11:33 2026 by rpki-client