Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mFS9ioY6MYlcxsuSLzAIs_CKra4.cer
File: mFS9ioY6MYlcxsuSLzAIs_CKra4.cer (raw, json)
Hash identifier: qqUa2dhQROdOkfESQHVIvXQCwDbiF6KKFKEfEP9rPIY=
Subject key identifier: 98:54:BD:8A:86:3A:31:89:5C:C6:CB:92:2F:30:08:B3:F0:8A:AD:AE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0197F37CD62DA955AB8AD00EF95FAC244DD3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1d/2ed10c-04b0-4866-9b82-c522b74ddcfd/1/mFS9ioY6MYlcxsuSLzAIs_CKra4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1d/2ed10c-04b0-4866-9b82-c522b74ddcfd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 10 Jul 2025 08:38:54 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 212774
IP: 193.46.58.0/23
IP: 193.186.252.0/24
IP: 2001:678:10c8::/48
IP: 2001:67c:478::/48
IP: 2001:67c:934::/48
IP: 2001:67c:960::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:f3:7c:d6:2d:a9:55:ab:8a:d0:0e:f9:5f:ac:24:4d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 10 08:38:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9854bd8a863a31895cc6cb922f3008b3f08aadae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:32:a0:64:7f:af:26:00:4b:bd:d3:7e:72:72:
fe:fa:a2:30:cc:05:dc:2f:3c:bb:2e:3d:31:68:57:
9d:62:72:01:20:e1:bd:2b:99:ce:b9:df:32:5e:58:
40:57:fd:30:bd:bf:f8:0b:f7:70:5e:e0:4e:d8:a1:
72:bf:30:e2:d5:3d:55:f8:63:1f:05:90:42:8a:c6:
77:9e:97:4a:e2:4d:35:0e:cf:55:47:34:34:f6:ca:
87:db:85:39:34:60:6c:f3:8e:2b:c3:c4:bb:59:ad:
be:9b:09:74:2a:d1:80:d1:cc:11:25:3c:99:21:57:
92:63:d7:35:4e:f9:a2:c0:4d:76:c3:6c:be:63:b0:
7c:79:c9:44:25:39:3c:83:48:1d:1c:c4:20:51:8b:
1d:c3:ce:14:dc:4e:64:78:61:7e:df:82:ec:fc:4c:
a0:67:12:ea:9a:5f:78:6d:54:32:27:b3:c3:30:0e:
64:89:23:1f:f4:fc:dc:c8:2e:c7:48:c9:82:9b:a8:
45:c7:ec:2f:c9:e2:8c:f3:88:2d:a0:63:e6:0a:3e:
24:ea:e3:e3:b4:30:30:17:f3:0a:10:c5:a4:8e:3a:
29:49:e9:22:8d:83:e2:4a:3b:79:14:da:a1:fd:5c:
41:bb:67:2c:70:17:7b:b9:c1:56:04:6b:40:0c:e1:
b5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:54:BD:8A:86:3A:31:89:5C:C6:CB:92:2F:30:08:B3:F0:8A:AD:AE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2ed10c-04b0-4866-9b82-c522b74ddcfd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2ed10c-04b0-4866-9b82-c522b74ddcfd/1/mFS9ioY6MYlcxsuSLzAIs_CKra4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.58.0/23
193.186.252.0/24
IPv6:
2001:678:10c8::/48
2001:67c:478::/48
2001:67c:934::/48
2001:67c:960::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212774
Signature Algorithm: sha256WithRSAEncryption
80:ca:b1:3e:c2:62:9c:ed:a8:95:fb:e2:fa:5d:41:da:5c:2b:
48:40:49:60:62:e5:a8:b5:26:6e:29:54:71:96:68:dd:4e:9a:
a1:2d:a4:81:ea:bb:6e:1e:a6:98:ea:01:21:85:d6:38:96:d9:
db:60:27:ad:3a:6e:d7:59:b6:54:b4:96:41:34:4c:14:84:0c:
84:40:94:6c:21:b8:ed:0d:50:24:50:de:ee:0e:a4:45:85:55:
db:e6:b3:21:c6:0b:e5:bb:c5:00:48:d3:9a:d8:aa:03:8b:2f:
25:3f:25:87:5b:d8:9b:97:c3:bb:a8:81:91:69:d4:e8:b6:e4:
60:14:93:1a:c2:27:f8:51:49:b1:e8:fe:50:6d:ef:53:05:a0:
41:9e:2f:26:d5:8c:33:1d:a0:4d:d3:45:ce:2a:03:33:6b:7d:
d8:7b:dd:62:58:54:41:75:67:e8:1d:fb:c6:6d:3a:74:e5:f8:
72:62:26:e9:0a:8b:89:27:ef:61:1f:8e:36:e9:e1:f6:a4:ec:
88:90:5a:66:ba:f8:2b:78:d0:6d:f6:b2:0b:82:23:94:19:85:
87:72:b3:c2:88:d6:2b:6a:59:67:2e:0a:b3:f7:85:87:f9:d3:
4b:06:f7:b8:87:25:e5:b9:12:d7:d7:54:fb:d6:d4:cd:d6:34:
78:e2:56:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:08:13 2025 by rpki-client