Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
File: xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer (raw, json)
Hash identifier: u7Q91LUft0/zrRp5JSpfu1VSZYyuebNvtJhLdMp/5iA=
Subject key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019E8C7B0C77C7B35CD74F20B2716037EBBB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 03 Jun 2026 07:55:34 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 29262
AS: 201064
IP: 46.29.24.0/22
IP: 91.194.53.0/24
IP: 91.194.55.0/24
IP: 93.190.12.0/22
IP: 109.236.48.0/22
IP: 160.20.108.0/22
IP: 185.85.188.0/22
IP: 185.85.236.0/22
IP: 185.86.4.0/22
IP: 185.86.12.0/22
IP: 185.86.152.0/22
IP: 185.86.164.0/22
IP: 185.87.24.0/22
IP: 185.87.120.0/22
IP: 185.88.172.0/22
IP: 185.98.60.0/22
IP: 185.119.80.0/22
IP: 185.141.32.0/22
IP: 185.184.24.0/22
IP: 185.185.232.0/22
IP: 185.243.180.0/22
IP: 185.249.200.0/22
IP: 185.250.210.0/24
IP: 185.254.28.0/22
IP: 185.254.236.0/22
IP: 193.35.152.0/22
IP: 193.160.140.0/22
IP: 193.223.104.0/22
IP: 194.62.52.0/22
IP: 2a03:f3c0::/29
IP: 2a05:4f80::/29
IP: 2a05:bf00::/29
IP: 2a06:3440::/29
IP: 2a06:a700::/29
IP: 2a07:21c0::/29
IP: 2a07:d800::/29
IP: 2a07:e700::/29
IP: 2a07:fe40::/29
IP: 2a0b:2780::/29
IP: 2a0b:6780::/29
IP: 2a0c:1340::/29
IP: 2a0c:46c0::/29
IP: 2a0c:5c40::/29
IP: 2a0c:67c0::/29
IP: 2a0c:7a40::/29
IP: 2a0c:89c0::/29
IP: 2a0c:9dc0::/29
IP: 2a0c:acc0::/29
IP: 2a0d:7c0::/29
IP: 2a0d:49c0::/29
IP: 2a10:8b00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 06:29:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8c:7b:0c:77:c7:b3:5c:d7:4f:20:b2:71:60:37:eb:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 3 07:55:34 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:36:6d:f9:3c:13:64:c3:c3:e5:36:e5:d4:2f:
da:22:c9:ab:49:b8:12:d0:a7:0e:02:d9:53:09:b3:
b9:89:f2:1d:72:29:f4:27:49:2c:50:14:ee:d7:93:
e6:f6:ee:1f:66:29:31:1a:d3:95:51:e6:98:bf:9f:
75:ed:39:c1:4f:10:19:27:12:6b:d5:17:cf:11:b5:
29:70:a4:9b:af:86:ce:6d:93:d1:5c:7c:5b:80:1b:
71:f6:6a:42:03:44:25:7e:66:bb:5e:58:e1:19:f1:
0a:60:a0:3d:8f:eb:74:5f:c7:89:7e:d4:82:36:00:
c9:db:06:58:e5:87:29:93:94:79:dd:d6:b4:0c:cb:
0c:71:38:f9:50:b1:b9:be:59:6d:51:31:84:86:61:
1e:0f:89:c5:be:e0:20:cc:6a:55:bd:89:07:0d:60:
3b:0d:4d:1e:4f:70:04:c0:fa:ad:fb:ef:81:cd:ab:
9e:76:a2:22:a3:de:45:e4:ce:6b:e7:bb:17:64:dc:
cb:15:f5:66:53:0d:dd:5f:46:3e:c7:b9:14:1c:04:
1c:24:40:20:99:52:f9:12:ff:9e:c3:7f:fe:e9:34:
62:b1:07:35:ba:20:03:20:fe:33:80:28:1d:ae:87:
f2:a3:91:e0:cf:10:60:39:31:fe:d9:fc:5c:ca:cc:
d8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.24.0/22
91.194.53.0/24
91.194.55.0/24
93.190.12.0/22
109.236.48.0/22
160.20.108.0/22
185.85.188.0/22
185.85.236.0/22
185.86.4.0/22
185.86.12.0/22
185.86.152.0/22
185.86.164.0/22
185.87.24.0/22
185.87.120.0/22
185.88.172.0/22
185.98.60.0/22
185.119.80.0/22
185.141.32.0/22
185.184.24.0/22
185.185.232.0/22
185.243.180.0/22
185.249.200.0/22
185.250.210.0/24
185.254.28.0/22
185.254.236.0/22
193.35.152.0/22
193.160.140.0/22
193.223.104.0/22
194.62.52.0/22
IPv6:
2a03:f3c0::/29
2a05:4f80::/29
2a05:bf00::/29
2a06:3440::/29
2a06:a700::/29
2a07:21c0::/29
2a07:d800::/29
2a07:e700::/29
2a07:fe40::/29
2a0b:2780::/29
2a0b:6780::/29
2a0c:1340::/29
2a0c:46c0::/29
2a0c:5c40::/29
2a0c:67c0::/29
2a0c:7a40::/29
2a0c:89c0::/29
2a0c:9dc0::/29
2a0c:acc0::/29
2a0d:7c0::/29
2a0d:49c0::/29
2a10:8b00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29262
201064
Signature Algorithm: sha256WithRSAEncryption
03:04:05:e1:25:8a:0d:15:71:cf:01:cf:30:e2:f3:e0:41:41:
19:b4:e4:e5:2f:3a:09:a6:d3:7c:82:ae:b2:85:0c:97:26:69:
28:5a:b7:ff:aa:90:b6:26:a0:e0:b9:5a:db:48:17:31:8c:df:
e0:75:ad:ea:90:4b:48:90:e7:b5:c8:9f:d8:6c:a5:37:e4:05:
52:16:02:82:35:a8:e7:d9:0a:7a:47:a8:88:b1:f7:cd:6e:45:
17:18:b0:1b:a2:18:d2:34:26:1a:42:ce:7a:72:49:56:01:21:
4c:74:a9:74:f3:d2:c3:f6:09:0c:5a:76:13:44:4d:59:a3:bc:
93:67:8e:88:30:55:58:1d:ca:3a:bd:c6:f3:4e:bc:2c:5a:0b:
78:4f:db:bb:81:1d:db:af:5d:09:cf:28:fe:59:d4:68:73:78:
1b:d8:b3:a6:98:d4:2b:41:ba:53:e8:83:de:67:21:d3:3a:80:
39:16:3d:bf:53:fc:8d:99:f5:c8:6e:70:b4:81:c1:8f:c4:2e:
30:e0:e8:f6:79:db:20:c7:36:e3:28:57:9a:ca:31:d1:20:45:
74:cd:35:84:33:7e:0f:4d:21:5c:95:36:bc:74:50:b1:86:13:
6e:fc:60:cf:26:37:41:53:41:6b:48:db:5e:de:d9:c8:2e:d9:
f1:b8:d3:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 09:00:59 2026 by rpki-client