Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer
File: 1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer (raw, json)
Hash identifier: nD9gohqPXC5koAcYhEwZpSXHXvL9RhBfsiOhGcwIDi4=
Subject key identifier: 1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 083FD93B61DF078986159CD9F007DC7DDB35A8D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 04 Jun 2026 20:39:41 +0000
Certificate not after: Thu 03 Jun 2027 20:44:41 +0000
Subordinate resources: IP: 2a14:1ec7:f000::/40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 16:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:3f:d9:3b:61:df:07:89:86:15:9c:d9:f0:07:dc:7d:db:35:a8:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Jun 4 20:39:41 2026 GMT
Not After : Jun 3 20:44:41 2027 GMT
Subject: CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:fe:55:6f:c3:21:e5:c4:fb:40:30:a5:db:18:
c2:08:a5:ce:4a:91:2c:a5:44:3f:19:be:34:7b:14:
1f:2d:67:fa:f7:db:f6:67:f6:8a:73:b6:49:70:72:
48:e9:5e:d6:23:43:af:13:5c:c8:fe:9a:d9:cf:52:
83:dd:c2:d6:59:bf:c4:73:45:b2:a2:95:52:1a:aa:
a7:fb:46:ed:80:66:37:41:19:b1:b1:ef:05:11:a7:
b2:44:6b:a5:45:e6:b6:a8:a4:c4:13:12:9a:b0:ee:
a8:47:8c:5b:3d:5d:a4:8a:38:20:30:ed:18:2c:ff:
4e:18:6d:6e:55:0d:b9:a5:c8:2d:70:8d:19:b7:25:
42:84:45:29:f5:1c:51:36:d2:a7:7d:a3:82:e5:28:
0e:67:a9:7b:2c:da:01:94:e4:e3:c2:6c:60:ca:06:
5a:5e:02:b9:8a:48:62:00:33:d2:0c:8c:3f:32:b2:
1c:6a:91:55:43:8a:98:4e:ad:87:c1:93:18:2b:69:
18:c6:3e:e0:97:ae:fb:1f:6f:a3:94:6d:32:6d:48:
10:5d:ea:8d:ba:73:56:0d:e0:c1:6a:aa:dc:c8:5c:
ca:a3:54:10:98:f0:3b:e2:e0:2f:80:61:a0:f1:fe:
dd:c0:1c:8b:63:80:af:56:28:18:b0:15:d9:1f:62:
70:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:f000::/40
Signature Algorithm: sha256WithRSAEncryption
4e:d0:2c:06:65:19:2d:a3:57:b2:54:8b:a4:2a:5f:9b:3c:f6:
40:7e:96:b3:02:29:3e:1c:27:1b:88:91:be:b9:43:e5:8d:28:
46:a6:41:46:dd:71:9f:1d:d2:e2:3b:28:3c:3e:58:3e:65:e8:
05:b0:65:91:19:f7:cd:cf:49:2c:48:b6:e7:26:c9:88:69:9d:
39:b7:eb:d7:35:34:45:13:ac:c2:10:06:c9:d4:da:32:89:ce:
a8:32:8c:0a:87:d4:7b:1b:a6:9d:b4:87:63:8f:e6:67:89:79:
98:f8:32:9b:49:7a:88:8f:6a:d9:a2:f5:8e:ff:db:47:ca:29:
b0:5d:e8:99:c0:56:c9:d4:14:d5:54:a8:d2:30:dc:0e:20:b2:
aa:e3:04:73:b9:fc:6c:5b:64:1d:31:1b:1d:b5:c7:59:6c:0c:
72:ca:5a:df:a2:09:5e:bc:e3:82:3f:f1:ff:e9:c1:70:56:70:
b7:67:84:41:50:df:7c:64:6d:ff:f2:1c:a2:8a:96:15:9c:a8:
e1:3f:7f:93:8e:16:0c:0b:dc:37:bd:ce:c9:07:3f:df:b5:73:
13:ae:ad:8d:cc:06:fc:60:b0:71:bc:a3:5d:a2:d3:6d:f6:b4:
aa:c6:f5:0d:27:30:68:c4:31:7d:0e:a4:f0:9f:34:69:c9:75:
5b:d7:cd:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 02:33:28 2026 by rpki-client