Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25nzML4xR7TakNEUo89CBfpFEQM.cer
File: 25nzML4xR7TakNEUo89CBfpFEQM.cer (raw, json)
Hash identifier: bgasF+DqB0jCHGkTU5BCsNKCvyeqklxbgHgIJ+Fv+AQ=
Subject key identifier: DB:99:F3:30:BE:31:47:B4:DA:90:D1:14:A3:CF:42:05:FA:45:11:03
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019C71240A79AA9D02675FCB33D06E02D13D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/25nzML4xR7TakNEUo89CBfpFEQM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 18 Feb 2026 14:25:13 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 20738
AS: 214073
IP: 79.170.40.0/21
IP: 213.155.0.0/21
IP: 2a01:e840::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:71:24:0a:79:aa:9d:02:67:5f:cb:33:d0:6e:02:d1:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 18 14:25:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=db99f330be3147b4da90d114a3cf4205fa451103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d5:d8:f5:88:14:bb:d6:2d:20:71:09:4a:6c:
dc:70:4a:1b:95:21:50:49:6a:2d:1c:97:e7:3b:da:
74:d1:ba:a4:cc:b3:ef:e7:d2:da:5c:56:e0:68:7d:
73:df:97:2f:b0:ce:ea:c6:29:14:79:b9:a9:e3:93:
26:7a:3c:99:59:69:b1:16:27:e3:e6:71:72:84:a0:
e5:17:ad:54:1f:57:a4:72:02:a0:f2:cd:46:6b:6c:
36:86:e2:fc:fb:92:6c:64:1b:36:41:df:06:44:26:
51:59:d7:fe:c6:88:9b:40:05:fb:e3:d5:19:c6:01:
c3:9b:f6:e9:b5:ea:1e:ed:94:7f:6e:53:da:5f:23:
cd:5f:19:a5:42:f5:65:2f:35:09:84:87:70:76:35:
6a:3b:54:ca:2f:99:00:5a:30:53:f6:2e:ba:ee:de:
fc:3f:3c:7b:c9:df:80:79:48:af:f1:6c:19:e4:4f:
5f:5a:f2:70:d6:1b:49:db:f8:0d:c8:b6:6c:b9:91:
f5:5b:92:29:1b:97:e5:ca:33:17:77:a4:d8:7b:96:
fc:39:b5:e0:50:04:11:08:ca:18:85:15:72:68:55:
1d:ea:8f:65:07:5d:20:8f:15:aa:7d:0c:ae:f2:e6:
33:fd:1a:41:7c:63:97:41:8c:02:b2:e0:af:c4:71:
33:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:99:F3:30:BE:31:47:B4:DA:90:D1:14:A3:CF:42:05:FA:45:11:03
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/25nzML4xR7TakNEUo89CBfpFEQM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.170.40.0/21
213.155.0.0/21
IPv6:
2a01:e840::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
20738
214073
Signature Algorithm: sha256WithRSAEncryption
27:cd:79:15:83:38:f8:fe:e0:cd:17:28:e4:bd:4e:93:f0:de:
90:67:c3:90:22:93:f6:17:f9:5c:8b:61:a5:1b:90:de:f6:5b:
dc:70:c5:c5:1d:70:44:9b:f1:95:de:25:33:ea:ab:3c:45:c2:
16:f2:f9:60:7d:c1:01:de:ec:84:b7:7e:78:23:fd:54:1e:d7:
7b:66:50:df:1b:68:1e:d3:97:a7:c5:d6:fd:bf:0c:ab:05:90:
4b:6f:4a:49:04:6b:3d:f7:00:97:e8:8f:8e:9b:49:bb:d8:fe:
ac:e2:1f:16:fa:d7:51:96:02:f5:db:db:ed:19:47:d2:24:84:
25:da:62:eb:f1:44:2b:87:a7:a4:e5:f9:53:6b:48:fa:34:6b:
e2:80:e1:17:26:ab:b9:9d:53:94:62:0c:fe:08:14:44:be:40:
c6:e9:ce:5a:bb:53:f5:5c:2d:e4:bd:a7:e6:00:cf:8f:99:ca:
a2:b8:78:7e:53:27:ac:e5:8b:32:d5:8b:7d:6d:e1:e8:f4:7a:
d2:b7:cc:a0:a0:47:ce:cb:86:78:ff:da:6a:2a:bd:6c:d0:93:
2c:14:86:05:3c:88:a0:08:fb:35:bb:89:cb:48:6b:40:e9:f3:
fd:5f:98:33:d2:92:77:f9:6b:41:8c:68:86:61:41:c8:ad:85:
4d:e9:3d:5c
-----BEGIN CERTIFICATE-----
MIIFrTCCBJWgAwIBAgISAZxxJAp5qp0CZ1/LM9BuAtE9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjYwMjE4MTQyNTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjk5ZjMzMGJlMzE0N2I0ZGE5MGQxMTRhM2NmNDIwNWZhNDUxMTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdXY9YgUu9YtIHEJSmzccEoblSFQ
SWotHJfnO9p00bqkzLPv59LaXFbgaH1z35cvsM7qxikUebmp45MmejyZWWmxFifj
5nFyhKDlF61UH1ekcgKg8s1Ga2w2huL8+5JsZBs2Qd8GRCZRWdf+xoibQAX749UZ
xgHDm/bpteoe7ZR/blPaXyPNXxmlQvVlLzUJhIdwdjVqO1TKL5kAWjBT9i667t78
Pzx7yd+AeUiv8WwZ5E9fWvJw1htJ2/gNyLZsuZH1W5IpG5flyjMXd6TYe5b8ObXg
UAQRCMoYhRVyaFUd6o9lB10gjxWqfQyu8uYz/RpBfGOXQYwCsuCvxHEzPwIDAQAB
o4ICuTCCArUwHQYDVR0OBBYEFNuZ8zC+MUe02pDRFKPPQgX6RREDMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkzLzMwOGMw
OS0wMDM0LTQ0ODYtODI3NC1kNGRiZDVlMjA0ZjcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMvMzA4YzA5
LTAwMzQtNDQ4Ni04Mjc0LWQ0ZGJkNWUyMDRmNy8xLzI1bnpNTDR4UjdUYWtORVVv
ODlDQmZwRkVRTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQDT6ooAwQD1ZsAMA0EAgACMAcDBQAqAehAMB4G
CCsGAQUFBwEIAQH/BA8wDaALMAkCAlECAgMDRDkwDQYJKoZIhvcNAQELBQADggEB
ACfNeRWDOPj+4M0XKOS9TpPw3pBnw5Aik/YX+VyLYaUbkN72W9xwxcUdcESb8ZXe
JTPqqzxFwhby+WB9wQHe7IS3fngj/VQe13tmUN8baB7Tl6fF1v2/DKsFkEtvSkkE
az33AJfoj46bSbvY/qziHxb611GWAvXb2+0ZR9IkhCXaYuvxRCuHp6Tl+VNrSPo0
a+KA4Rcmq7mdU5RiDP4IFES+QMbpzlq7U/VcLeS9p+YAz4+ZyqK4eH5TJ6zlizLV
i31t4ej0etK3zKCgR87Lhnj/2moqvWzQkywUhgU8iKAI+zW7ictIa0Dp8/1fmDPS
knf5a0GMaIZhQcithU3pPVw=
-----END CERTIFICATE-----
Generated at Sun Mar 1 14:43:55 2026 by rpki-client