Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer
File: 1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer (raw, json)
Hash identifier: MUu9+Ft/8mG3pSzPYe2RRDk1Trd+vU4NyTn6xhIbxC4=
Subject key identifier: 1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 7B9DBE1D796542E9211057F897C21075A9DC532B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Sat 07 Mar 2026 04:38:38 +0000
Certificate not after: Sat 06 Mar 2027 04:43:38 +0000
Subordinate resources: IP: 2a14:1ec7:f000::/40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 05:04:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:9d:be:1d:79:65:42:e9:21:10:57:f8:97:c2:10:75:a9:dc:53:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Mar 7 04:38:38 2026 GMT
Not After : Mar 6 04:43:38 2027 GMT
Subject: CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:fe:55:6f:c3:21:e5:c4:fb:40:30:a5:db:18:
c2:08:a5:ce:4a:91:2c:a5:44:3f:19:be:34:7b:14:
1f:2d:67:fa:f7:db:f6:67:f6:8a:73:b6:49:70:72:
48:e9:5e:d6:23:43:af:13:5c:c8:fe:9a:d9:cf:52:
83:dd:c2:d6:59:bf:c4:73:45:b2:a2:95:52:1a:aa:
a7:fb:46:ed:80:66:37:41:19:b1:b1:ef:05:11:a7:
b2:44:6b:a5:45:e6:b6:a8:a4:c4:13:12:9a:b0:ee:
a8:47:8c:5b:3d:5d:a4:8a:38:20:30:ed:18:2c:ff:
4e:18:6d:6e:55:0d:b9:a5:c8:2d:70:8d:19:b7:25:
42:84:45:29:f5:1c:51:36:d2:a7:7d:a3:82:e5:28:
0e:67:a9:7b:2c:da:01:94:e4:e3:c2:6c:60:ca:06:
5a:5e:02:b9:8a:48:62:00:33:d2:0c:8c:3f:32:b2:
1c:6a:91:55:43:8a:98:4e:ad:87:c1:93:18:2b:69:
18:c6:3e:e0:97:ae:fb:1f:6f:a3:94:6d:32:6d:48:
10:5d:ea:8d:ba:73:56:0d:e0:c1:6a:aa:dc:c8:5c:
ca:a3:54:10:98:f0:3b:e2:e0:2f:80:61:a0:f1:fe:
dd:c0:1c:8b:63:80:af:56:28:18:b0:15:d9:1f:62:
70:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:f000::/40
Signature Algorithm: sha256WithRSAEncryption
76:13:2a:72:fc:a1:44:85:4c:e0:e3:31:7c:68:96:0d:01:2b:
06:98:38:3b:c8:93:53:5a:2c:6a:1a:21:9e:06:d5:03:39:ca:
3b:04:16:ef:da:06:5e:22:3f:12:6b:8e:76:e6:5b:94:43:68:
37:e5:4a:8c:03:c0:3c:5b:e6:e2:0d:73:a2:5b:25:14:ee:be:
3c:df:8d:2e:23:d3:66:57:e8:e0:b5:f0:5c:f0:2d:3f:51:a8:
6c:bc:bd:bd:97:79:03:5b:fd:ec:56:b2:4f:7a:88:16:ea:35:
82:53:5f:c2:1a:fb:92:86:e9:b3:74:7e:e3:d7:26:14:66:c9:
c3:5a:11:f6:41:31:9d:aa:92:9b:67:08:eb:d7:a7:1d:e7:e5:
9b:e6:4b:44:66:78:48:a2:4b:b4:c6:4d:66:1f:2d:07:e7:a5:
84:1d:07:19:a1:4f:1e:bf:ba:09:b2:4c:01:30:c0:d8:a2:13:
f9:62:f4:2a:46:d2:c7:a6:dd:9c:51:3c:76:54:dc:24:34:eb:
f3:9b:33:8c:3c:30:02:21:8c:79:a9:38:72:ff:e9:c2:b1:1a:
ef:1b:45:c0:fc:ab:91:3c:14:f7:1a:af:60:99:9f:5e:bc:1b:
67:39:57:69:e5:33:1c:8d:19:09:b0:02:24:34:f9:31:63:2c:
f5:e0:4e:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 21:03:06 2026 by rpki-client