Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer
File: 1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer (raw, json)
Hash identifier: fsC5R2jSf0zN6FKSYFtxtwVTHpeg2ZkeyTIcsF+VEMM=
Subject key identifier: 1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 37281B823B9B570AE67EC597E39FC0C32BCA406B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Tue 21 Apr 2026 16:55:17 +0000
Certificate not after: Tue 20 Apr 2027 17:00:17 +0000
Subordinate resources: IP: 2a14:1ec7:f000::/40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 14:21:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:28:1b:82:3b:9b:57:0a:e6:7e:c5:97:e3:9f:c0:c3:2b:ca:40:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Apr 21 16:55:17 2026 GMT
Not After : Apr 20 17:00:17 2027 GMT
Subject: CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:fe:55:6f:c3:21:e5:c4:fb:40:30:a5:db:18:
c2:08:a5:ce:4a:91:2c:a5:44:3f:19:be:34:7b:14:
1f:2d:67:fa:f7:db:f6:67:f6:8a:73:b6:49:70:72:
48:e9:5e:d6:23:43:af:13:5c:c8:fe:9a:d9:cf:52:
83:dd:c2:d6:59:bf:c4:73:45:b2:a2:95:52:1a:aa:
a7:fb:46:ed:80:66:37:41:19:b1:b1:ef:05:11:a7:
b2:44:6b:a5:45:e6:b6:a8:a4:c4:13:12:9a:b0:ee:
a8:47:8c:5b:3d:5d:a4:8a:38:20:30:ed:18:2c:ff:
4e:18:6d:6e:55:0d:b9:a5:c8:2d:70:8d:19:b7:25:
42:84:45:29:f5:1c:51:36:d2:a7:7d:a3:82:e5:28:
0e:67:a9:7b:2c:da:01:94:e4:e3:c2:6c:60:ca:06:
5a:5e:02:b9:8a:48:62:00:33:d2:0c:8c:3f:32:b2:
1c:6a:91:55:43:8a:98:4e:ad:87:c1:93:18:2b:69:
18:c6:3e:e0:97:ae:fb:1f:6f:a3:94:6d:32:6d:48:
10:5d:ea:8d:ba:73:56:0d:e0:c1:6a:aa:dc:c8:5c:
ca:a3:54:10:98:f0:3b:e2:e0:2f:80:61:a0:f1:fe:
dd:c0:1c:8b:63:80:af:56:28:18:b0:15:d9:1f:62:
70:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:f000::/40
Signature Algorithm: sha256WithRSAEncryption
17:dc:68:8a:4a:ff:bd:e2:3c:0e:9c:67:b2:c5:9e:5c:cd:f3:
a2:25:c8:51:35:7d:f2:a0:50:27:bd:d4:42:17:80:f2:29:15:
0f:ca:de:33:35:b6:c4:e0:c0:ce:95:2c:b8:b8:69:4f:26:c3:
b3:b9:49:23:7f:e4:ff:76:a0:38:f8:ad:fb:8b:c8:1f:d9:d0:
72:3c:c5:7f:bd:98:8f:8d:eb:a7:3a:bb:4b:f3:dc:dc:b1:33:
b6:80:42:7a:17:03:ed:3b:73:5d:08:01:c8:ed:11:5a:2c:e5:
ae:8f:3c:7b:49:eb:49:04:0b:27:7d:a0:f3:f9:07:57:bf:c1:
d1:cf:c2:fa:78:23:3a:dc:da:8b:13:a3:6f:86:28:b5:f1:03:
fd:30:f0:dd:5b:d6:da:9f:a7:3c:60:01:0f:c1:91:56:4c:16:
5e:d3:2c:9e:6e:82:02:71:22:31:b4:ed:29:87:1f:81:6c:39:
d3:4e:6b:4a:45:96:9a:c6:97:71:d0:23:30:a9:e4:3b:40:46:
03:84:78:54:0e:6f:60:56:95:9f:78:16:77:9b:bc:40:18:6d:
57:ac:e0:22:fc:6e:3e:b8:09:92:bf:1f:4a:ac:9d:0e:5b:39:
4f:5d:82:70:59:af:49:fa:e6:98:81:de:4a:73:5f:d2:5f:b2:
1f:81:0b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 00:08:33 2026 by rpki-client