This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Z_UaJdLzkiUkpqabHX1hzTzCqNo.cer File: Z_UaJdLzkiUkpqabHX1hzTzCqNo.cer (raw, json) Hash identifier: tUOmwtf8H+1eBHYl4Bd0DPy/vgXuEEXkEPgW3A7O4X8= Subject key identifier: 67:F5:1A:25:D2:F3:92:25:24:A6:A6:9B:1D:7D:61:CD:3C:C2:A8:DA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB0FE02D09FE583E4F95DD408F3FCE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5c/544c39-0ef7-41ab-b156-5626b54d1a21/1/Z_UaJdLzkiUkpqabHX1hzTzCqNo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5c/544c39-0ef7-41ab-b156-5626b54d1a21/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:17:55 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 141.62.0.0/16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:0f:e0:2d:09:fe:58:3e:4f:95:dd:40:8f:3f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67f51a25d2f3922524a6a69b1d7d61cd3cc2a8da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ef:76:bb:9d:b9:04:38:07:fe:da:3e:31:5f: b0:d3:0f:fa:66:6a:f7:67:2b:e7:38:a2:62:ad:f6: 23:2f:3f:5c:62:e7:2b:82:30:57:0c:9b:59:85:a6: 3c:e2:00:ea:ce:61:1f:35:66:b2:93:5f:10:d9:89: 83:4e:6d:db:49:49:37:99:c8:14:71:79:67:23:aa: 5c:01:4f:a9:7c:89:d5:79:df:61:1c:ee:3f:ed:fd: 60:5b:e9:35:9b:8c:fd:8f:ea:52:e7:38:ef:b5:67: 30:23:ea:9e:59:a5:9a:e9:8d:39:a7:3a:52:ba:41: a0:f6:4c:70:33:e0:61:5d:46:ea:05:34:42:98:7a: 71:15:30:66:19:20:56:07:f2:3b:a4:4d:c7:fb:d5: c8:96:3a:30:b7:d4:76:2b:a8:e1:0f:49:88:66:b9: 89:7d:7d:f3:13:f2:5f:00:93:4b:06:b0:63:08:7a: e5:5c:51:29:66:3f:be:2d:7a:4a:a7:ba:64:84:bb: 89:bb:c6:0f:2c:3f:96:12:7f:bc:b5:ba:70:bc:84: 4d:0a:d6:ae:35:ce:e5:df:c3:2d:55:05:c7:3b:0c: 33:b5:28:4f:e8:33:ce:44:88:f2:eb:2c:c1:05:79: 7b:91:58:95:0f:39:97:0d:6c:04:36:f0:07:e2:64: 96:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F5:1A:25:D2:F3:92:25:24:A6:A6:9B:1D:7D:61:CD:3C:C2:A8:DA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/544c39-0ef7-41ab-b156-5626b54d1a21/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/544c39-0ef7-41ab-b156-5626b54d1a21/1/Z_UaJdLzkiUkpqabHX1hzTzCqNo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.62.0.0/16 Signature Algorithm: sha256WithRSAEncryption 22:de:34:92:4b:83:ef:4f:b9:bb:51:b3:e7:3e:74:d9:ff:10: f1:d9:45:2c:e4:3c:63:19:e1:12:06:48:70:d3:5d:a4:62:a6: 01:8c:0c:dc:94:92:c8:42:98:2a:21:50:06:a7:2f:2a:15:87: d3:85:08:df:0e:45:70:85:72:75:83:13:88:43:0d:30:e4:87: 09:8f:55:d0:fa:3d:94:23:17:a8:b3:00:80:e7:8e:a9:29:d4: c8:d6:e9:dc:a3:20:48:4b:45:12:dc:8a:aa:8d:0d:df:d4:0b: 80:74:59:0d:3e:5b:3d:84:78:26:3f:7b:26:1f:83:81:55:53: 4f:8b:b8:4b:4e:6e:43:b4:fd:28:38:15:1f:d6:4b:90:54:24: 96:bb:23:39:a4:c2:9d:54:2d:2d:62:3f:4a:eb:91:95:b3:fd: 00:d2:2b:55:3a:8a:86:73:b0:f5:51:d8:54:cc:50:4b:f9:98: 2f:8a:0f:be:42:8a:26:39:41:f0:d2:41:60:68:23:f6:a1:b8: bf:1b:d4:08:87:54:dd:10:88:ae:b2:a0:bf:92:4a:17:03:fe: d6:f3:37:51:57:0d:66:e6:75:67:1a:d6:bd:67:43:3c:a7:b2: e8:09:67:93:11:6d:32:8b:88:9b:63:b4:5e:c8:4d:6b:45:54: 1b:af:c5:88 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgISAZt26w/gLQn+WD5Pld1Ajz/OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2Y1MWEyNWQyZjM5MjI1MjRhNmE2OWIxZDdkNjFjZDNjYzJhOGRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0u92u525BDgH/to+MV+w0w/6Zmr3 ZyvnOKJirfYjLz9cYucrgjBXDJtZhaY84gDqzmEfNWayk18Q2YmDTm3bSUk3mcgU cXlnI6pcAU+pfInVed9hHO4/7f1gW+k1m4z9j+pS5zjvtWcwI+qeWaWa6Y05pzpS ukGg9kxwM+BhXUbqBTRCmHpxFTBmGSBWB/I7pE3H+9XIljowt9R2K6jhD0mIZrmJ fX3zE/JfAJNLBrBjCHrlXFEpZj++LXpKp7pkhLuJu8YPLD+WEn+8tbpwvIRNCtau Nc7l38MtVQXHOwwztShP6DPORIjy6yzBBXl7kViVDzmXDWwENvAH4mSWbQIDAQAB o4ICgzCCAn8wHQYDVR0OBBYEFGf1GiXS85IlJKammx19Yc08wqjaMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVjLzU0NGMz OS0wZWY3LTQxYWItYjE1Ni01NjI2YjU0ZDFhMjEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWMvNTQ0YzM5 LTBlZjctNDFhYi1iMTU2LTU2MjZiNTRkMWEyMS8xL1pfVWFKZEx6a2lVa3BxYWJI WDFoelR6Q3FOby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUF BwEHAQH/BA8wDTALBAIAATAFAwMAjT4wDQYJKoZIhvcNAQELBQADggEBACLeNJJL g+9PubtRs+c+dNn/EPHZRSzkPGMZ4RIGSHDTXaRipgGMDNyUkshCmCohUAanLyoV h9OFCN8ORXCFcnWDE4hDDTDkhwmPVdD6PZQjF6izAIDnjqkp1MjW6dyjIEhLRRLc iqqNDd/UC4B0WQ0+Wz2EeCY/eyYfg4FVU0+LuEtObkO0/Sg4FR/WS5BUJJa7Izmk wp1ULS1iP0rrkZWz/QDSK1U6ioZzsPVR2FTMUEv5mC+KD75CiiY5QfDSQWBoI/ah uL8b1AiHVN0QiK6yoL+SShcD/tbzN1FXDWbmdWca1r1nQzynsugJZ5MRbTKLiJtj tF7ITWtFVBuvxYg= -----END CERTIFICATE-----Generated at Mon Feb 2 09:36:25 2026 by rpki-client