Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YL_5RwTkpHU3ThcMvhc2X6if4Hs.cer
File: YL_5RwTkpHU3ThcMvhc2X6if4Hs.cer (raw, json)
Hash identifier: +re65JlJf+MrMBRwHHWDQKmckderf61+DXkXzypNmU8=
Subject key identifier: 60:BF:F9:47:04:E4:A4:75:37:4E:17:0C:BE:17:36:5F:A8:9F:E0:7B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0198EFE7D76C4359291C600FBEA6985D5F6C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/672fdd-cc7c-4449-9f55-023995906c46/1/YL_5RwTkpHU3ThcMvhc2X6if4Hs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/672fdd-cc7c-4449-9f55-023995906c46/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 28 Aug 2025 09:00:05 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 212116
IP: 79.108.232.0/21
IP: 185.225.126.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:ef:e7:d7:6c:43:59:29:1c:60:0f:be:a6:98:5d:5f:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 28 09:00:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60bff94704e4a475374e170cbe17365fa89fe07b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b1:80:1f:e6:cf:8b:33:78:b1:7e:bb:e1:38:
ee:80:52:55:fd:03:c0:6e:b8:f8:8c:42:f0:71:92:
a0:98:87:fc:e1:20:69:13:21:53:bb:90:84:bc:63:
20:42:fd:ea:9c:53:47:65:62:fc:e6:0f:a5:07:ec:
15:65:1f:c8:af:4d:d9:29:a6:b5:21:4b:3e:e8:0b:
8a:b7:5d:09:7c:de:1c:11:ac:66:b6:1b:b4:f8:51:
74:2b:d1:f7:91:bf:ee:b5:92:6b:00:ec:5d:06:b4:
9f:2b:6c:81:b4:3c:46:ea:d8:e0:36:29:03:fe:de:
6a:06:0a:49:0f:44:04:bc:7c:5f:c0:07:63:c8:e6:
25:b1:30:09:47:03:46:ce:dd:3b:1f:0b:1c:d7:f8:
86:e2:1f:60:d5:26:7b:04:54:be:70:02:ef:63:9d:
63:be:53:97:de:de:f4:f2:6f:c1:b0:17:2b:31:af:
ee:25:5f:51:91:ef:40:84:ba:d5:b8:0f:10:58:dc:
db:1c:a1:3e:2a:ad:5c:7c:dd:42:35:ec:7b:e3:6a:
36:63:60:14:43:14:63:df:71:57:bf:53:d2:49:27:
47:ad:9d:83:2b:b3:ff:79:06:12:09:83:2a:68:08:
22:91:8b:d2:61:b0:c4:f2:83:33:84:92:5a:26:f3:
8b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BF:F9:47:04:E4:A4:75:37:4E:17:0C:BE:17:36:5F:A8:9F:E0:7B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/672fdd-cc7c-4449-9f55-023995906c46/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/672fdd-cc7c-4449-9f55-023995906c46/1/YL_5RwTkpHU3ThcMvhc2X6if4Hs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.108.232.0/21
185.225.126.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212116
Signature Algorithm: sha256WithRSAEncryption
30:a3:37:c9:ed:f6:55:24:64:9b:1c:8f:b8:64:7d:b2:c4:11:
57:aa:38:2f:2e:c0:67:fa:f7:65:29:b6:25:58:65:c2:b6:51:
2f:d3:e0:00:8f:18:1e:7d:80:20:3c:37:1c:5e:e4:86:9f:c4:
e9:3e:6d:93:26:4b:ac:c5:48:ed:84:54:16:12:e2:49:5e:36:
ab:5d:35:f8:5d:92:b7:23:1f:34:38:d2:61:b7:6c:e5:05:09:
f3:d7:97:37:67:04:c4:c6:ef:35:61:d5:ec:9d:1f:8e:90:82:
86:e2:33:23:54:ef:d8:11:1e:f8:e3:42:05:a0:e2:c6:ce:d7:
a8:8e:ce:00:8b:87:14:3b:d3:9d:f2:c3:cd:c3:3c:56:8d:78:
b1:1b:ed:ae:7d:59:e0:a4:69:c5:ad:4c:8f:ac:4f:c0:60:79:
0f:ef:7d:9e:8a:fe:66:2f:5c:ae:12:a7:0a:4d:09:af:c9:0f:
23:b8:1f:b6:56:5c:f3:03:54:45:53:15:15:41:b9:35:40:ee:
1d:fa:4c:0b:80:9c:4b:fb:69:2e:43:2d:07:2f:81:1d:aa:a3:
db:3b:5b:bc:a1:c8:73:b5:19:4e:dc:79:4f:78:0b:c8:97:29:
b8:97:98:03:f5:38:07:ea:f6:0e:5d:d8:05:2d:cb:6c:4d:88:
6a:92:a7:3a
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgISAZjv59dsQ1kpHGAPvqaYXV9sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwODI4MDkwMDA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGJmZjk0NzA0ZTRhNDc1Mzc0ZTE3MGNiZTE3MzY1ZmE4OWZlMDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLGAH+bPizN4sX674TjugFJV/QPA
brj4jELwcZKgmIf84SBpEyFTu5CEvGMgQv3qnFNHZWL85g+lB+wVZR/Ir03ZKaa1
IUs+6AuKt10JfN4cEaxmthu0+FF0K9H3kb/utZJrAOxdBrSfK2yBtDxG6tjgNikD
/t5qBgpJD0QEvHxfwAdjyOYlsTAJRwNGzt07Hwsc1/iG4h9g1SZ7BFS+cALvY51j
vlOX3t708m/BsBcrMa/uJV9Rke9AhLrVuA8QWNzbHKE+Kq1cfN1CNex742o2Y2AU
QxRj33FXv1PSSSdHrZ2DK7P/eQYSCYMqaAgikYvSYbDE8oMzhJJaJvOLhwIDAQAB
o4ICpjCCAqIwHQYDVR0OBBYEFGC/+UcE5KR1N04XDL4XNl+on+B7MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRhLzY3MmZk
ZC1jYzdjLTQ0NDktOWY1NS0wMjM5OTU5MDZjNDYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEvNjcyZmRk
LWNjN2MtNDQ0OS05ZjU1LTAyMzk5NTkwNmM0Ni8xL1lMXzVSd1RrcEhVM1RoY012
aGMyWDZpZjRIcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQDT2zoAwQAueF+MBoGCCsGAQUFBwEIAQH/BAsw
CaAHMAUCAwM8lDANBgkqhkiG9w0BAQsFAAOCAQEAMKM3ye32VSRkmxyPuGR9ssQR
V6o4Ly7AZ/r3ZSm2JVhlwrZRL9PgAI8YHn2AIDw3HF7khp/E6T5tkyZLrMVI7YRU
FhLiSV42q101+F2StyMfNDjSYbds5QUJ89eXN2cExMbvNWHV7J0fjpCChuIzI1Tv
2BEe+ONCBaDixs7XqI7OAIuHFDvTnfLDzcM8Vo14sRvtrn1Z4KRpxa1Mj6xPwGB5
D+99nor+Zi9crhKnCk0Jr8kPI7gftlZc8wNURVMVFUG5NUDuHfpMC4CcS/tpLkMt
By+BHaqj2ztbvKHIc7UZTtx5T3gLyJcpuJeYA/U4B+r2Dl3YBS3LbE2IapKnOg==
-----END CERTIFICATE-----
Generated at Fri Sep 5 05:58:28 2025 by rpki-client