This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28rKr4rBOpZKs9Rhk1hByOHJO4A.cer File: 28rKr4rBOpZKs9Rhk1hByOHJO4A.cer (raw, json) Hash identifier: VIWyxQOii4i5Ng1QQdNtAzuXyeCmmf6YVrMt01doagU= Subject key identifier: DB:CA:CA:AF:8A:C1:3A:96:4A:B3:D4:61:93:58:41:C8:E1:C9:3B:80 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78351FE2CEE294CA34D5FDAD80F809B1 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bc/5737b0-bb24-4e92-b19d-5e65c7d61b9e/1/28rKr4rBOpZKs9Rhk1hByOHJO4A.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bc/5737b0-bb24-4e92-b19d-5e65c7d61b9e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 141.79.0.0/16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:1f:e2:ce:e2:94:ca:34:d5:fd:ad:80:f8:09:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dbcacaaf8ac13a964ab3d461935841c8e1c93b80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:30:f0:7f:27:47:2d:68:84:d0:4b:23:fd:ff: ce:45:04:41:8a:0d:9d:70:02:85:1d:b7:2b:e1:ee: f4:c6:20:30:0e:1f:f9:99:26:82:38:6b:8c:73:0d: 21:46:ef:cd:9b:67:e7:0f:6c:d9:84:85:aa:e0:05: 11:b7:cd:bd:73:cd:42:c2:a6:19:a4:1b:af:0e:53: 2b:f6:74:af:61:f3:87:23:ff:14:49:18:aa:be:7d: f8:45:3f:d4:fe:5c:4a:14:b2:67:16:00:c7:64:a9: 67:65:63:92:ca:4e:52:99:ca:ce:33:29:58:3b:ae: 61:76:ae:c3:51:a7:6a:51:7a:f1:09:8c:f5:94:60: da:72:43:08:95:01:f7:62:97:f9:81:de:16:fa:2c: 0e:9d:dc:09:4a:22:be:97:d9:31:49:8f:6d:fb:3a: 3d:7c:74:3d:96:61:c6:3b:a2:29:78:77:6c:24:f6: f0:93:9b:94:4b:0c:88:cb:8e:45:62:26:36:6c:88: a4:79:3b:15:b6:aa:3b:ed:3a:e5:85:71:ea:4e:92: ec:fd:ad:06:c4:97:8c:b5:3d:1d:b5:3f:a8:0d:e2: 24:84:6b:44:dc:0b:33:cf:40:0a:58:45:1e:9b:ab: 54:08:88:dd:ea:4f:04:41:74:60:70:f3:4c:73:32: 72:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:CA:CA:AF:8A:C1:3A:96:4A:B3:D4:61:93:58:41:C8:E1:C9:3B:80 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5737b0-bb24-4e92-b19d-5e65c7d61b9e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5737b0-bb24-4e92-b19d-5e65c7d61b9e/1/28rKr4rBOpZKs9Rhk1hByOHJO4A.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5f:e8:e6:1d:9d:cc:47:1e:a5:7d:09:49:95:31:bf:88:b0:b9: 03:3c:ff:f7:dd:54:5c:4d:27:00:07:5c:a2:18:0e:0a:8d:79: fd:a4:47:e9:f4:60:f3:14:22:bb:09:0c:dd:24:5d:50:ce:ab: ee:b0:5b:af:17:1f:f6:d3:52:ce:72:4c:a7:05:32:87:c5:a3: 93:a0:ed:01:10:13:17:07:c8:ad:aa:11:19:35:f4:54:85:32: a1:70:af:1a:52:b8:1e:60:95:c9:7d:41:35:3d:b7:32:3a:9e: 62:b4:9f:60:65:6b:52:6c:f4:b7:ea:b7:ba:d2:af:41:88:ba: 10:19:31:70:52:4f:17:5f:ac:4b:fe:5b:60:1a:cf:71:2a:15: af:91:13:ba:d0:e2:80:db:f2:2c:81:6c:e2:cf:43:e7:9b:bf: b9:88:f3:54:dd:8e:ee:6c:d7:86:d9:1a:b9:c4:45:a9:84:da: e1:82:80:f1:e3:01:d6:61:fd:9b:d6:ec:97:5d:84:ad:1d:3b: 02:87:7f:cb:e4:ec:6f:29:3e:47:90:8c:b2:e6:a2:cb:6c:6c: 2e:21:d1:f9:27:5a:99:fa:41:2e:64:1f:fe:ce:ab:11:2d:68: e7:75:86:6b:a6:ae:14:e2:8a:a4:88:ae:0a:9b:24:73:aa:11: 37:51:30:68 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgISAZt4NR/izuKUyjTV/a2A+AmxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYmNhY2FhZjhhYzEzYTk2NGFiM2Q0NjE5MzU4NDFjOGUxYzkzYjgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTDwfydHLWiE0Esj/f/ORQRBig2d cAKFHbcr4e70xiAwDh/5mSaCOGuMcw0hRu/Nm2fnD2zZhIWq4AURt829c81CwqYZ pBuvDlMr9nSvYfOHI/8USRiqvn34RT/U/lxKFLJnFgDHZKlnZWOSyk5SmcrOMylY O65hdq7DUadqUXrxCYz1lGDackMIlQH3Ypf5gd4W+iwOndwJSiK+l9kxSY9t+zo9 fHQ9lmHGO6IpeHdsJPbwk5uUSwyIy45FYiY2bIikeTsVtqo77TrlhXHqTpLs/a0G xJeMtT0dtT+oDeIkhGtE3Aszz0AKWEUem6tUCIjd6k8EQXRgcPNMczJyBwIDAQAB o4ICgzCCAn8wHQYDVR0OBBYEFNvKyq+KwTqWSrPUYZNYQcjhyTuAMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JjLzU3Mzdi MC1iYjI0LTRlOTItYjE5ZC01ZTY1YzdkNjFiOWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMvNTczN2Iw LWJiMjQtNGU5Mi1iMTlkLTVlNjVjN2Q2MWI5ZS8xLzI4cktyNHJCT3BaS3M5Umhr MWhCeU9ISk80QS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUF BwEHAQH/BA8wDTALBAIAATAFAwMAjU8wDQYJKoZIhvcNAQELBQADggEBAF/o5h2d zEcepX0JSZUxv4iwuQM8//fdVFxNJwAHXKIYDgqNef2kR+n0YPMUIrsJDN0kXVDO q+6wW68XH/bTUs5yTKcFMofFo5Og7QEQExcHyK2qERk19FSFMqFwrxpSuB5glcl9 QTU9tzI6nmK0n2Bla1Js9Lfqt7rSr0GIuhAZMXBSTxdfrEv+W2Aaz3EqFa+RE7rQ 4oDb8iyBbOLPQ+ebv7mI81Tdju5s14bZGrnERamE2uGCgPHjAdZh/ZvW7JddhK0d OwKHf8vk7G8pPkeQjLLmostsbC4h0fknWpn6QS5kH/7OqxEtaOd1hmumrhTiiqSI rgqbJHOqETdRMGg= -----END CERTIFICATE-----Generated at Mon Feb 2 09:28:55 2026 by rpki-client