Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer
File: 8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer (raw, json)
Hash identifier: 5K1O57oQDDdf38IV+Cgsgy69x/vz7kK1vTeaAZC1s4k=
Subject key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 4342CFBEE3D46D445116AC940DF780B93F90BC7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 11 Jun 2026 10:03:43 +0000
Certificate not after: Thu 10 Jun 2027 10:08:43 +0000
Subordinate resources: IP: 2a14:7581:4000::/36
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 14:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:42:cf:be:e3:d4:6d:44:51:16:ac:94:0d:f7:80:b9:3f:90:bc:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jun 11 10:03:43 2026 GMT
Not After : Jun 10 10:08:43 2027 GMT
Subject: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2b:8c:a6:0b:53:f3:e3:6f:5b:4d:7f:83:43:
31:17:81:1b:08:9c:7f:cf:5c:5b:00:98:8d:ab:37:
c1:ae:b0:56:29:c2:87:53:4a:27:83:00:d3:fa:62:
9d:4a:b8:21:67:49:b3:4d:8a:dd:4f:86:49:5c:63:
b3:ff:d7:a3:27:53:63:97:37:b2:27:9f:1b:9d:71:
5d:98:42:e8:e7:83:a0:28:95:92:76:99:29:be:45:
c1:32:e6:60:e9:7e:1a:3a:06:e5:0d:34:be:bd:24:
c9:3d:bf:0d:d8:dc:bb:06:d7:91:f0:ec:88:72:8a:
78:46:e4:8d:6c:b5:68:1f:f0:b1:95:dd:93:1e:78:
a3:b9:ef:0e:0b:b1:d5:9c:25:a3:4c:ad:e6:6d:21:
d1:e1:83:41:48:a4:af:dc:d3:cf:04:fc:71:7d:d1:
13:0c:bd:24:65:7b:08:2d:65:5d:2d:ab:fb:90:96:
78:65:9f:79:3c:42:6d:d7:5c:ff:08:0a:b1:b7:33:
74:b2:4f:4b:09:e7:be:7b:d8:73:61:c4:28:26:3b:
ff:e6:51:16:cc:52:e2:f8:86:e3:de:f2:ba:c1:35:
e5:42:60:4e:d6:76:5e:63:64:4b:26:5c:54:5a:3b:
52:d4:62:c3:c5:71:ca:3c:a3:eb:71:6c:c3:82:47:
5c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:4000::/36
Signature Algorithm: sha256WithRSAEncryption
21:28:d7:ec:eb:3a:bd:ea:ce:d7:09:81:af:be:14:26:ba:22:
eb:d5:a3:88:dd:38:d1:26:e9:65:c2:b6:32:58:31:65:a6:c6:
bd:67:b8:55:8b:b2:b0:90:6e:6e:53:c6:d5:71:f6:d1:85:1d:
fe:65:84:61:b0:f5:e2:07:8c:8b:a3:78:df:5f:90:84:92:d2:
8d:3c:2b:44:3c:23:64:4c:cc:e1:57:77:33:12:eb:8d:75:0c:
ff:26:f3:25:2e:b9:04:ad:85:07:b4:ef:c5:90:46:5e:0e:39:
d6:11:03:d4:2b:c2:17:6e:4b:cc:3b:35:44:f1:9c:d6:4d:f8:
99:9e:5d:3a:55:19:35:cd:42:ce:3c:4a:59:59:0e:82:75:06:
83:81:e5:b6:7d:9b:40:17:5c:2b:ef:e8:79:09:8b:5b:d3:c0:
97:fd:a4:6c:7c:8e:9b:a0:9f:73:db:a4:c4:94:21:77:b2:27:
0c:27:64:a0:16:03:34:b4:e2:22:85:25:5f:41:40:ed:4c:ca:
85:bc:fc:64:7b:91:cb:9c:07:11:84:b4:36:13:3d:a0:03:89:
94:c6:ba:cf:49:92:b2:af:3a:ab:1c:dc:67:7f:23:07:83:28:
04:a6:c4:8e:43:45:68:f1:64:36:6a:33:1e:19:1a:c5:6e:7c:
e1:04:9d:8b
-----BEGIN CERTIFICATE-----
MIIF2TCCBMGgAwIBAgIUQ0LPvuPUbURRFqyUDfeAuT+QvH4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNjA2MTExMDAzNDNaFw0yNzA2MTAxMDA4NDNaMDMxMTAvBgNV
BAMTKDhFMDdEMzFDNjQ1MkY3QTZCMjRFNjNDRERDNDkwRTEyRTBBRkIzOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5K4ymC1Pz429bTX+DQzEXgRsI
nH/PXFsAmI2rN8GusFYpwodTSieDANP6Yp1KuCFnSbNNit1PhklcY7P/16MnU2OX
N7InnxudcV2YQujng6AolZJ2mSm+RcEy5mDpfho6BuUNNL69JMk9vw3Y3LsG15Hw
7IhyinhG5I1stWgf8LGV3ZMeeKO57w4LsdWcJaNMreZtIdHhg0FIpK/c088E/HF9
0RMMvSRlewgtZV0tq/uQlnhln3k8Qm3XXP8ICrG3M3SyT0sJ57572HNhxCgmO//m
URbMUuL4huPe8rrBNeVCYE7Wdl5jZEsmXFRaO1LUYsPFcco8o+txbMOCR1w7AgMB
AAGjggLjMIIC3zAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSOB9McZFL3prJO
Y83cSQ4S4K+zjDAfBgNVHSMEGDAWgBSoPUhlLzst909r+bqoqcF0zP03cjAOBgNV
HQ8BAf8EBAMCAQYwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BODNENDg2NTJGM0IyREY3NEY2QkY5QkFB
OEE5QzE3NENDRkQzNzcyLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKG
SHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvcUQxSVpT
ODdMZmRQYV9tNnFLbkJkTXo5TjNJLmNlcjCCAT8GCCsGAQUFBwELBIIBMTCCAS0w
XwYIKwYBBQUHMAWGU3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3Jl
cG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4NzU1LzQv
MIGLBggrBgEFBQcwCoZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQv
cmVwb3NpdG9yeS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUv
NC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0REQzQ5MEUxMkUwQUZCMzhDLm1mdDA8
BggrBgEFBQcwDYYwaHR0cHM6Ly9ycmRwLnBhYXMucnBraS5yaXBlLm5ldC9ub3Rp
ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH
AQcBAf8EEjAQMA4EAgACMAgDBgQqFHWBQDANBgkqhkiG9w0BAQsFAAOCAQEAISjX
7Os6verO1wmBr74UJroi69WjiN040SbpZcK2MlgxZabGvWe4VYuysJBublPG1XH2
0YUd/mWEYbD14geMi6N431+QhJLSjTwrRDwjZEzM4Vd3MxLrjXUM/ybzJS65BK2F
B7TvxZBGXg451hED1CvCF25LzDs1RPGc1k34mZ5dOlUZNc1CzjxKWVkOgnUGg4Hl
tn2bQBdcK+/oeQmLW9PAl/2kbHyOm6Cfc9ukxJQhd7InDCdkoBYDNLTiIoUlX0FA
7UzKhbz8ZHuRy5wHEYS0NhM9oAOJlMa6z0mSsq86qxzcZ38jB4MoBKbEjkNFaPFk
NmozHhkaxW584QSdiw==
-----END CERTIFICATE-----
Generated at Fri Jun 12 03:40:00 2026 by rpki-client