Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xYigeeTOtrskwjxSceRYPhzy-ak.cer
File: xYigeeTOtrskwjxSceRYPhzy-ak.cer (raw, json)
Hash identifier: qDuiD9kV5k/FPDgwH1b+x00w/KfqvVCFOg5PRhJKlOA=
Subject key identifier: C5:88:A0:79:E4:CE:B6:BB:24:C2:3C:52:71:E4:58:3E:1C:F2:F9:A9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019A24D4639915508E714C33404C475F427A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/xYigeeTOtrskwjxSceRYPhzy-ak.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 27 Oct 2025 08:41:30 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 42083
IP: 185.208.100.0/22
IP: 194.99.57.0/24
IP: 2a0b:2240::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:d4:63:99:15:50:8e:71:4c:33:40:4c:47:5f:42:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 27 08:41:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c588a079e4ceb6bb24c23c5271e4583e1cf2f9a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9b:63:8e:0c:5c:e3:d7:8e:44:3f:02:36:7b:
b2:6a:d3:99:8c:f4:17:32:48:b0:11:58:de:07:74:
bf:ba:4d:86:ed:bd:51:04:bc:9a:fa:42:05:f6:9c:
a5:2b:ba:7a:e5:26:a6:9c:0e:fa:ea:20:8b:6e:6d:
6b:ff:7b:12:18:00:e0:40:27:35:4e:c2:aa:b2:3c:
9f:07:b2:31:04:7d:00:cb:7d:ec:0d:5b:8a:82:b6:
ad:85:b7:d1:38:7f:f3:03:1c:b5:c0:c1:c7:63:33:
07:ac:13:01:d4:96:0b:0b:dd:92:76:87:e8:01:84:
61:b9:5c:80:9e:5b:0b:73:cd:35:15:94:4f:00:fa:
a1:43:50:5c:f2:cb:ea:e8:dd:5c:b9:ee:1d:0a:30:
f0:a1:15:94:3c:de:0a:94:9d:6f:5e:1b:f3:e3:01:
a8:c8:74:9c:3b:9f:61:87:e2:b4:75:07:7f:4d:f1:
a2:5d:c1:5d:ec:92:e2:58:3b:e0:fd:05:10:fb:55:
0c:c6:e8:74:ad:81:a3:e8:fd:2c:d7:c4:8e:48:6d:
36:a9:66:7b:eb:8c:7f:8a:d3:db:6b:0f:91:10:39:
25:7f:4e:3b:a0:f3:77:31:62:ca:05:aa:f7:cf:e7:
92:e2:1b:92:90:31:91:61:10:7c:6e:32:36:0f:0f:
93:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:88:A0:79:E4:CE:B6:BB:24:C2:3C:52:71:E4:58:3E:1C:F2:F9:A9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/xYigeeTOtrskwjxSceRYPhzy-ak.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.100.0/22
194.99.57.0/24
IPv6:
2a0b:2240::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42083
Signature Algorithm: sha256WithRSAEncryption
83:41:28:a0:d4:95:77:0f:2c:ed:99:2b:75:96:b7:10:50:40:
d8:9b:58:fe:2b:97:86:86:98:10:af:0d:bb:d1:2b:b6:4b:6f:
fe:32:c7:b6:77:9e:4c:a5:7d:5b:04:4e:91:ae:d1:57:03:15:
18:e5:15:41:84:1c:ba:b8:0c:c9:e7:88:f8:54:9e:88:b0:18:
70:d0:b4:8f:2a:dd:8b:fd:92:6f:9d:85:f2:f2:bd:f0:63:56:
db:3e:43:d1:cd:d4:00:0d:0b:89:19:16:97:7f:90:a4:06:79:
aa:b2:7f:4c:6b:cc:08:9a:32:ac:bd:ca:eb:b3:79:13:bd:43:
0f:ca:4f:9f:f7:2e:33:99:0d:d3:41:88:a8:f0:d0:fe:20:bf:
ee:12:02:be:03:c9:9d:72:4f:74:b0:2a:2c:10:7f:9d:a8:26:
14:a0:5c:b6:93:58:24:89:3b:c5:1f:e5:82:19:3d:a1:7e:ea:
15:30:97:56:5d:38:fe:e4:dd:11:60:c2:13:c8:33:4e:f1:2b:
49:8e:15:35:6e:7c:c5:d7:c6:24:a7:65:37:ec:bf:10:06:57:
67:98:9d:f2:7c:4c:bf:58:af:a6:0a:c8:29:e3:8f:9a:67:48:
a4:be:7a:ac:66:7d:39:9c:24:f0:74:5a:72:7f:c2:88:54:5b:
c0:32:16:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 20:33:55 2025 by rpki-client