Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/CB4MVEJb8YCbbNnKkDNVtvYDcMw.cer
File: CB4MVEJb8YCbbNnKkDNVtvYDcMw.cer (raw, json)
Hash identifier: 8lH5CLv+kUkNfVPA8VmEreYIGnE/Vy01cZ/bfybfOVo=
Subject key identifier: 08:1E:0C:54:42:5B:F1:80:9B:6C:D9:CA:90:33:55:B6:F6:03:70:CC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019E910025DF664CE6F53E577FA8145BA229
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/50/f9c36d-e526-428c-9ed7-3a17754c8bc0/1/CB4MVEJb8YCbbNnKkDNVtvYDcMw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/50/f9c36d-e526-428c-9ed7-3a17754c8bc0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 04 Jun 2026 04:59:26 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 185.143.188.0/22
IP: 193.108.201.0/24
IP: 2a07:37c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:91:00:25:df:66:4c:e6:f5:3e:57:7f:a8:14:5b:a2:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 4 04:59:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=081e0c54425bf1809b6cd9ca903355b6f60370cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7c:d3:6c:3b:53:d2:d4:46:b0:19:93:2a:d1:
6f:76:8e:85:ae:ce:81:d0:a0:52:b6:66:af:cb:81:
02:3b:04:10:73:9e:f2:01:ed:80:81:1b:e0:19:72:
6e:57:5f:5b:0b:99:a5:01:dd:c1:90:9a:77:83:20:
1a:27:05:d6:3c:29:bd:2a:74:2d:db:45:42:d9:97:
5f:0d:5e:76:db:c7:7f:d5:80:cc:f2:69:4c:ca:13:
4c:8d:84:77:8e:6a:cd:7a:5e:d8:49:1e:46:06:d5:
85:b7:67:6c:d1:98:70:6b:57:cb:88:f9:0f:c7:6f:
89:92:9b:36:99:a3:6d:d3:d9:80:fb:ba:99:6e:92:
5b:eb:00:a4:63:1f:c7:ad:ec:d5:77:0e:a6:ce:2e:
f8:43:8f:db:9c:48:3e:c4:d6:f8:54:11:0a:df:88:
8e:bf:45:b8:8d:24:4b:5e:fc:67:10:a0:a7:a4:a2:
45:f4:e8:bc:89:49:0d:d6:b0:ae:59:03:17:92:2d:
7d:3e:34:1d:24:d9:75:f0:aa:6c:6e:9c:86:75:21:
8d:03:93:35:bc:0d:b6:fd:0d:ba:0d:df:3c:51:7e:
0d:5d:cd:43:36:db:c6:75:b9:00:07:7f:dd:89:81:
ce:55:f0:78:c0:b6:38:fb:1e:0d:22:da:fa:a6:f9:
7d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1E:0C:54:42:5B:F1:80:9B:6C:D9:CA:90:33:55:B6:F6:03:70:CC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f9c36d-e526-428c-9ed7-3a17754c8bc0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f9c36d-e526-428c-9ed7-3a17754c8bc0/1/CB4MVEJb8YCbbNnKkDNVtvYDcMw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.188.0/22
193.108.201.0/24
IPv6:
2a07:37c0::/29
Signature Algorithm: sha256WithRSAEncryption
0e:04:a9:8f:5a:cd:d4:c6:da:65:0f:95:46:ba:f6:46:0f:e3:
f3:ad:92:88:15:e2:56:7c:3f:83:60:94:cc:fd:ed:54:e6:73:
93:a0:a5:10:8b:af:3a:7c:cc:85:e5:5c:0d:e0:14:b8:dc:71:
e5:e2:0b:1e:80:37:02:a0:ad:0b:89:b4:4b:f8:63:3b:2f:71:
e2:f7:ef:a7:44:07:84:ac:d2:18:57:d1:b0:d6:28:95:22:2d:
26:1d:d8:77:bd:af:b4:6a:02:a1:cb:8a:c3:1e:17:90:d7:60:
68:bc:22:44:8b:6a:ff:2b:7e:cf:f9:04:02:40:f5:74:7a:f3:
e0:f3:48:a4:d9:93:52:f5:13:25:27:f5:5e:d8:55:71:af:91:
d7:1b:21:9f:aa:d9:d3:96:e9:2f:d4:f2:02:33:e0:bb:20:f8:
47:c7:5e:53:ba:d2:49:50:4d:89:6f:39:42:fb:60:42:bf:95:
1a:4b:99:d3:5c:4c:24:10:99:af:1b:dd:27:a7:4d:b7:bc:19:
6a:b6:33:52:fa:82:99:d6:2e:83:ad:b4:17:c7:d1:15:71:47:
93:ec:05:a5:15:04:d1:ce:3c:ed:3f:b1:80:d4:99:4f:5c:84:
9f:85:ba:00:db:b0:1b:5a:f9:bd:11:91:40:c0:06:53:30:ab:
96:ee:68:e9
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgISAZ6RACXfZkzm9T5Xf6gUW6IpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjYwNjA0MDQ1OTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODFlMGM1NDQyNWJmMTgwOWI2Y2Q5Y2E5MDMzNTViNmY2MDM3MGNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXzTbDtT0tRGsBmTKtFvdo6Frs6B
0KBStmavy4ECOwQQc57yAe2AgRvgGXJuV19bC5mlAd3BkJp3gyAaJwXWPCm9KnQt
20VC2ZdfDV5228d/1YDM8mlMyhNMjYR3jmrNel7YSR5GBtWFt2ds0Zhwa1fLiPkP
x2+Jkps2maNt09mA+7qZbpJb6wCkYx/HrezVdw6mzi74Q4/bnEg+xNb4VBEK34iO
v0W4jSRLXvxnEKCnpKJF9Oi8iUkN1rCuWQMXki19PjQdJNl18KpsbpyGdSGNA5M1
vA22/Q26Dd88UX4NXc1DNtvGdbkAB3/diYHOVfB4wLY4+x4NItr6pvl9VQIDAQAB
o4ICmTCCApUwHQYDVR0OBBYEFAgeDFRCW/GAm2zZypAzVbb2A3DMMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUwL2Y5YzM2
ZC1lNTI2LTQyOGMtOWVkNy0zYTE3NzU0YzhiYzAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTAvZjljMzZk
LWU1MjYtNDI4Yy05ZWQ3LTNhMTc3NTRjOGJjMC8xL0NCNE1WRUpiOFlDYmJObktr
RE5WdHZZRGNNdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCuY+8AwQAwWzJMA0EAgACMAcDBQMqBzfAMA0G
CSqGSIb3DQEBCwUAA4IBAQAOBKmPWs3UxtplD5VGuvZGD+PzrZKIFeJWfD+DYJTM
/e1U5nOToKUQi686fMyF5VwN4BS43HHl4gsegDcCoK0LibRL+GM7L3Hi9++nRAeE
rNIYV9Gw1iiVIi0mHdh3va+0agKhy4rDHheQ12BovCJEi2r/K37P+QQCQPV0evPg
80ik2ZNS9RMlJ/Ve2FVxr5HXGyGfqtnTlukv1PICM+C7IPhHx15TutJJUE2JbzlC
+2BCv5UaS5nTXEwkEJmvG90np023vBlqtjNS+oKZ1i6DrbQXx9EVcUeT7AWlFQTR
zjztP7GA1JlPXISfhboA27AbWvm9EZFAwAZTMKuW7mjp
-----END CERTIFICATE-----
Generated at Sun Jun 14 00:59:09 2026 by rpki-client