Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MHLNXfcyOVerh8B_XN0VyR7_yNU.cer
File: MHLNXfcyOVerh8B_XN0VyR7_yNU.cer (raw, json)
Hash identifier: yH/jagm5gCRPnyq+ioigSjiE9c14Uh2HUkDz1tXLBBo=
Subject key identifier: 30:72:CD:5D:F7:32:39:57:AB:87:C0:7F:5C:DD:15:C9:1E:FF:C8:D5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194738F85D0A2D081A057CFF3925A61C353
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/MHLNXfcyOVerh8B_XN0VyR7_yNU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 17 Jan 2025 09:19:33 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 43955
AS: 58262
IP: 5.61.24.0/21
IP: 45.89.222.0/24
IP: 92.119.56.0/22
IP: 185.73.112.0/22
IP: 2a05:2d80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:73:8f:85:d0:a2:d0:81:a0:57:cf:f3:92:5a:61:c3:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 17 09:19:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3072cd5df7323957ab87c07f5cdd15c91effc8d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0f:78:70:54:3d:32:0f:13:89:19:c1:e5:dc:
c5:67:c6:5a:64:a3:c6:10:e9:c4:6b:e2:34:c7:00:
af:9b:f7:72:c9:15:d9:f0:ac:cc:94:fd:a2:d9:97:
ac:86:ed:7b:53:3b:a4:29:96:4c:17:f6:6a:ed:ca:
6c:65:bf:46:f6:69:a9:a1:24:79:e3:18:9b:4d:59:
70:76:37:c0:0a:9b:89:76:d2:40:5f:d5:4d:11:f7:
17:cf:76:bd:e4:45:5e:5a:43:d1:6c:53:7e:6c:87:
15:f4:0b:74:5b:44:63:99:29:f3:22:e6:40:e1:9e:
b5:ec:53:86:fb:f4:cb:8f:8e:5e:c6:0a:ec:14:98:
ac:f0:d6:0c:c2:cb:49:d9:53:82:79:bc:37:72:96:
63:ab:d8:9f:3c:74:22:b6:5c:42:0c:25:7e:e9:fc:
b7:62:27:31:aa:1b:ed:a1:12:be:68:f2:48:96:84:
2c:a2:69:bb:b4:2c:b2:c6:dc:2b:f8:93:21:40:6c:
8e:51:e7:31:6e:9f:d2:aa:59:d2:04:13:7e:2a:6f:
63:6f:7f:44:ff:54:28:4d:6b:ba:d4:a6:c5:c6:c9:
d4:2e:07:bb:d6:9b:7a:af:4c:be:75:92:8d:e1:e0:
2d:4c:8f:de:62:9b:db:3f:31:a0:c1:c2:56:87:95:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:72:CD:5D:F7:32:39:57:AB:87:C0:7F:5C:DD:15:C9:1E:FF:C8:D5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/MHLNXfcyOVerh8B_XN0VyR7_yNU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.24.0/21
45.89.222.0/24
92.119.56.0/22
185.73.112.0/22
IPv6:
2a05:2d80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43955
58262
Signature Algorithm: sha256WithRSAEncryption
2c:56:4e:23:73:b9:70:07:f2:5c:9a:8a:09:ea:09:9a:53:3b:
c8:d3:82:26:a4:56:6e:28:26:f4:c8:21:e8:4d:54:83:9e:d2:
07:77:02:c1:92:5c:d2:48:3f:0f:8b:fa:b9:c0:be:e6:1e:a8:
37:68:44:4e:7b:cd:12:6c:80:13:dc:cd:4a:7b:07:00:e9:ec:
83:fd:d1:dd:5b:38:73:39:2b:ea:4e:8b:98:d9:30:87:af:14:
d7:12:97:37:72:75:9c:83:ab:9f:c2:68:c2:f6:b8:8c:a6:50:
49:73:c4:27:cc:79:ac:b7:06:95:8e:c3:d6:80:ea:02:e1:0a:
4e:7a:b3:23:3a:87:54:50:e0:5e:f6:70:68:62:aa:44:e7:23:
87:ac:12:ae:03:cf:dd:43:98:f2:3c:14:92:84:1d:13:42:c1:
4a:56:06:fa:7f:39:35:c6:d5:c8:48:c7:b4:dc:52:d5:b9:55:
9a:73:f4:96:d8:ba:5d:74:86:a3:99:a6:95:42:92:37:e8:3e:
03:63:cb:44:a2:bc:f6:a1:e2:b4:8a:7e:ea:3d:d2:b4:e2:a9:
2b:0a:28:17:8f:cf:8d:56:77:67:9f:60:7c:60:50:cf:77:c8:
20:f6:c4:3b:c5:ff:1d:e3:e3:f0:48:a2:06:ad:eb:cf:98:d3:
86:45:60:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:15:01 2025 by rpki-client