Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
File: YninaMkQutzVxK73wXKp8GFUfow.cer (raw, json)
Hash identifier: EcFFsMe294G6Osx2t6lLFWitNJn4Z2bzJeaxGB58w8U=
Subject key identifier: 62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0197349241AF21BF6D8CF7FBEBDD143BA793
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/YninaMkQutzVxK73wXKp8GFUfow.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 03 Jun 2025 06:54:49 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 6700
AS: 15982
AS: 50693
AS: 56452
IP: 62.108.96.0/19
IP: 62.193.128.0/19
IP: 91.148.64.0/18
IP: 91.223.162.0/24
IP: 91.228.18.0/23
IP: 178.20.205.0/24
IP: 178.20.207.0/24
IP: 185.47.208.0/22
IP: 194.106.160.0/19
IP: 195.252.64.0/18
IP: 213.244.228.0 -- 213.244.239.255
IP: 217.26.64.0/20
IP: 2001:8c8::/32
IP: 2a02:e40::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:34:92:41:af:21:bf:6d:8c:f7:fb:eb:dd:14:3b:a7:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 3 06:54:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b2:f0:53:e5:0c:24:5e:db:01:de:7c:fe:d8:
9b:48:a0:4a:b6:36:0a:a1:23:5d:71:26:e9:46:32:
97:1c:fe:94:ca:c0:55:e9:57:5a:39:5a:21:3d:47:
a9:f8:fe:95:60:ed:bf:25:48:87:96:8c:d9:d0:77:
5c:e9:9a:87:bd:0d:c3:a4:70:95:32:9b:86:82:a9:
2a:55:98:05:4f:26:2b:7f:e6:f6:f2:c3:8c:44:70:
de:d7:12:3e:16:f9:b7:1b:b4:fd:44:65:13:ab:d4:
be:96:e8:51:a4:a5:58:05:b3:9d:5d:db:a8:bd:6f:
5e:76:f8:69:17:09:1f:99:2e:8e:e9:bb:7a:9d:c9:
25:ec:55:1b:95:d9:f6:70:7d:c2:7c:6a:4e:86:69:
2e:c7:4b:ea:5a:bf:32:31:0c:26:b8:d8:41:f4:fd:
63:67:04:0d:74:83:5f:f1:7b:a7:79:6e:a1:97:6e:
42:11:cf:b7:c3:6a:ff:61:22:15:52:ec:a2:01:35:
46:aa:39:2c:da:e0:8c:1f:fe:6f:47:e4:9b:58:a6:
11:a7:52:a4:88:2f:8c:f7:83:d0:d2:0e:33:db:8d:
1c:1a:65:70:ee:1d:71:e3:7b:15:fe:34:76:7c:e0:
2e:66:df:d4:ad:18:00:9a:86:db:3e:f5:c6:4c:0e:
24:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/YninaMkQutzVxK73wXKp8GFUfow.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.108.96.0/19
62.193.128.0/19
91.148.64.0/18
91.223.162.0/24
91.228.18.0/23
178.20.205.0/24
178.20.207.0/24
185.47.208.0/22
194.106.160.0/19
195.252.64.0/18
213.244.228.0-213.244.239.255
217.26.64.0/20
IPv6:
2001:8c8::/32
2a02:e40::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
6700
15982
50693
56452
Signature Algorithm: sha256WithRSAEncryption
9c:66:ba:c8:dc:7e:26:c0:ed:f1:37:de:4e:90:6e:f7:a9:26:
61:be:ce:d3:14:eb:7f:d9:25:c6:88:03:d0:0b:21:64:75:f2:
5c:a8:d0:6d:b1:ae:5e:69:cd:70:4f:49:20:a2:46:b6:56:1f:
3a:4a:1a:6e:cc:e5:5b:38:02:f9:10:3c:59:68:97:a4:ea:b8:
43:4f:8e:06:10:f5:2b:06:d2:6f:e3:fb:17:58:82:5e:28:52:
c2:6c:6b:a0:67:d0:99:5c:51:4b:11:18:0c:37:fe:10:36:80:
f4:b9:e0:57:aa:42:81:62:26:89:be:7f:81:48:ec:85:1a:ec:
a0:dd:9e:7e:a0:0a:80:57:14:d9:b0:5c:9a:e8:a0:37:07:95:
fc:97:5a:a3:e6:a6:37:80:14:c4:30:d0:0c:3b:83:88:3a:65:
64:9d:22:02:68:89:36:f9:45:2a:24:d1:ef:ec:c3:7c:62:cc:
8a:52:4d:90:05:51:af:f9:f1:ef:84:85:29:9a:b1:1a:ed:9f:
a5:73:a9:f0:84:93:93:ae:b1:b9:70:f4:b1:c0:2e:d3:32:09:
3b:71:85:13:26:1a:1b:d7:e6:ea:96:82:3d:02:08:bd:51:42:
56:9c:bd:1b:53:fd:d2:20:66:ba:96:97:4f:45:fe:9e:79:47:
95:ae:21:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:03:08 2025 by rpki-client