Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6DNGHp0r2vzCmtkYn7Cs8fM5YKk.cer
File: 6DNGHp0r2vzCmtkYn7Cs8fM5YKk.cer (raw, json)
Hash identifier: aGU2hfD9KtBzWL37BTfSINdcqIUw1Ug5KsILsh8ylw0=
Subject key identifier: E8:33:46:1E:9D:2B:DA:FC:C2:9A:D9:18:9F:B0:AC:F1:F3:39:60:A9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019EDAA547FF2D70C7611C33B2F26E344942
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/671194-51c8-4bcf-bd83-aefe8d178e6a/1/6DNGHp0r2vzCmtkYn7Cs8fM5YKk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/671194-51c8-4bcf-bd83-aefe8d178e6a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 18 Jun 2026 12:12:05 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 205275
IP: 31.14.49.0/24
IP: 85.204.19.0/24
IP: 86.104.13.0/24
IP: 86.104.221.0/24
IP: 86.105.214.0/24
IP: 86.106.30.0/24
IP: 86.107.23.0/24
IP: 86.107.169.0/24
IP: 89.33.24.0/22
IP: 89.33.44.0/24
IP: 89.34.92.0/24
IP: 89.36.248.0/22
IP: 89.37.57.0/24
IP: 89.37.212.0/22
IP: 89.39.83.0/24
IP: 89.39.246.0/24
IP: 89.40.72.0/24
IP: 89.41.36.0/22
IP: 89.42.26.0/24
IP: 89.42.216.0/21
IP: 89.44.124.0/24
IP: 89.44.137.0/24
IP: 89.45.15.0/24
IP: 89.45.83.0/24
IP: 89.47.53.0/24
IP: 89.47.240.0/22
IP: 91.212.74.0/24
IP: 91.238.37.0/24
IP: 93.113.152.0/23
IP: 93.115.53.0/24
IP: 94.177.66.0/24
IP: 185.162.64.0/22
IP: 188.209.214.0/24
IP: 188.212.126.0/24
IP: 188.213.205.0/24
IP: 188.214.210.0/23
IP: 188.214.215.0/24
IP: 188.215.2.0/24
IP: 188.215.232.0/24
IP: 188.240.20.0/22
IP: 188.241.142.0/24
IP: 188.241.152.0/24
IP: 188.241.155.0/24
IP: 193.111.68.0/23
IP: 195.88.38.0/23
IP: 2a13:7140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:da:a5:47:ff:2d:70:c7:61:1c:33:b2:f2:6e:34:49:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 18 12:12:05 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e833461e9d2bdafcc29ad9189fb0acf1f33960a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ad:ad:2d:02:d6:30:78:b1:0f:67:4c:7a:aa:
0e:81:e1:c6:31:09:f4:c4:6c:4d:8f:02:ec:64:d1:
bc:8c:8d:b4:cc:3b:35:a2:c6:de:5a:54:b3:ba:f6:
bf:5e:82:ec:9d:af:aa:44:0a:42:e9:6b:0d:03:01:
a1:36:99:29:82:db:84:43:be:d5:09:38:37:d3:39:
90:e6:cf:18:8a:87:80:df:b4:1e:0e:59:31:2f:a3:
67:d1:5c:c2:0b:c2:2a:6a:d0:6f:e6:39:34:78:11:
65:0d:43:27:a8:38:95:45:67:58:79:ac:ca:e1:86:
b4:c1:aa:9e:e5:de:a5:39:3a:bb:cd:f6:19:27:d2:
35:35:db:93:51:33:59:9f:29:4d:d2:30:4f:54:2c:
68:ca:8b:62:05:5f:09:f8:8a:0a:1d:83:e1:1a:84:
72:98:95:86:c5:b8:ec:1b:50:b7:fc:ed:56:f5:48:
8f:12:2f:57:42:6c:87:37:58:17:fe:eb:d5:10:5c:
e0:1b:18:de:e4:c3:61:f5:2f:c7:5d:6e:7d:55:15:
9a:14:5c:08:d0:94:76:ea:87:16:1f:4e:f1:44:f0:
26:4a:46:47:e5:1a:ee:9f:f2:d4:f2:95:64:e8:b3:
3e:2d:e7:8b:77:ad:c7:47:ab:a6:80:5a:7d:e5:ee:
8a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:33:46:1E:9D:2B:DA:FC:C2:9A:D9:18:9F:B0:AC:F1:F3:39:60:A9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/671194-51c8-4bcf-bd83-aefe8d178e6a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/671194-51c8-4bcf-bd83-aefe8d178e6a/1/6DNGHp0r2vzCmtkYn7Cs8fM5YKk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.49.0/24
85.204.19.0/24
86.104.13.0/24
86.104.221.0/24
86.105.214.0/24
86.106.30.0/24
86.107.23.0/24
86.107.169.0/24
89.33.24.0/22
89.33.44.0/24
89.34.92.0/24
89.36.248.0/22
89.37.57.0/24
89.37.212.0/22
89.39.83.0/24
89.39.246.0/24
89.40.72.0/24
89.41.36.0/22
89.42.26.0/24
89.42.216.0/21
89.44.124.0/24
89.44.137.0/24
89.45.15.0/24
89.45.83.0/24
89.47.53.0/24
89.47.240.0/22
91.212.74.0/24
91.238.37.0/24
93.113.152.0/23
93.115.53.0/24
94.177.66.0/24
185.162.64.0/22
188.209.214.0/24
188.212.126.0/24
188.213.205.0/24
188.214.210.0/23
188.214.215.0/24
188.215.2.0/24
188.215.232.0/24
188.240.20.0/22
188.241.142.0/24
188.241.152.0/24
188.241.155.0/24
193.111.68.0/23
195.88.38.0/23
IPv6:
2a13:7140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205275
Signature Algorithm: sha256WithRSAEncryption
25:4a:b3:23:a9:b1:4c:bf:fd:6c:15:22:51:73:c5:ac:6b:1b:
27:31:d0:bb:2e:d1:e0:cd:22:b7:d4:81:cf:77:26:4b:56:27:
85:58:3f:a8:60:75:a9:e7:8e:fd:eb:10:e8:34:28:24:a5:bf:
36:2f:09:4b:84:0f:e9:db:05:9a:71:28:78:e5:76:06:9a:5f:
45:a4:63:7e:21:82:a0:37:b2:71:d6:e3:81:2a:15:b4:67:e7:
bd:35:90:95:b9:73:db:c8:70:a1:c4:0b:e2:69:14:e7:77:18:
5c:20:9a:15:da:61:8f:04:2d:72:78:a6:cd:58:1f:c1:6e:e9:
c5:10:b2:28:80:c0:10:bd:62:54:50:ea:75:d6:77:81:54:7c:
ee:3b:4e:a5:ac:d6:dc:39:4c:56:87:8c:8b:f3:7e:90:60:da:
d7:7c:79:a5:bf:74:46:a4:61:b5:fb:70:8b:38:9c:9f:19:bb:
8f:a6:4c:2c:c3:5f:3b:f3:52:3f:8f:f2:30:e9:8f:dc:b6:8d:
06:5d:4c:49:d7:1f:bb:79:9a:ea:3d:4c:f1:c3:33:12:56:18:
f8:fc:c7:b0:6b:46:5f:02:54:65:05:04:8e:ea:81:d6:ad:2c:
8b:81:a9:a7:90:d8:22:ff:7b:8e:b5:a5:82:64:51:eb:3c:28:
14:6d:2f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 17:19:16 2026 by rpki-client