Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.cer (raw, json)
Hash identifier: FyyBY1w+F/YhtMud/c/lCbWfrk7YyKTd230lEj8Ps6s=
Subject key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01985FAECBBC8F38D1A39B061D0297ADD8AD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 31 Jul 2025 08:52:27 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 197893
IP: 176.28.72.0/21
IP: 185.58.12.0/22
IP: 2a02:5ee0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:5f:ae:cb:bc:8f:38:d1:a3:9b:06:1d:02:97:ad:d8:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 31 08:52:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=34832317d2544434b659e5692071d8e4c4938b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c3:af:80:fe:30:45:ca:4b:5e:63:94:26:46:
90:12:fa:4c:d9:d2:0a:1d:0f:03:f4:24:be:77:df:
bd:8b:7a:7f:2d:81:3c:ac:be:b9:83:d2:cb:0b:69:
48:d0:0f:b4:b5:b2:c9:8c:17:04:5f:fc:f6:17:47:
ba:a3:01:1e:16:82:b5:c5:d1:98:4e:45:1d:c2:23:
74:8e:ed:3f:bb:89:d8:44:86:44:e5:d1:95:40:ae:
12:4c:aa:c7:79:2c:e5:f3:59:1d:db:e1:93:05:31:
d3:f1:b4:44:13:28:ca:a8:2d:34:52:c2:e7:d7:2e:
e1:6b:94:24:6b:ad:bc:cc:a4:fb:a9:58:13:05:a5:
20:02:01:12:70:8c:e6:35:97:2f:a4:02:65:e0:60:
1e:b0:c4:f6:eb:6c:f4:59:23:33:d5:7f:a3:1b:43:
b4:c0:c7:70:13:11:df:59:d5:31:0e:be:e8:32:76:
36:65:65:0b:d4:c2:dc:ad:b3:ab:ef:78:fe:82:3d:
4a:b0:53:cd:f2:cc:94:f4:d5:fd:b2:d8:9a:29:05:
71:fc:de:00:0d:69:af:a8:9f:89:96:0b:1f:32:cc:
0c:89:67:d4:7c:43:81:8b:ef:a5:90:02:1a:0c:d6:
6f:5a:8d:bf:30:a7:27:0d:70:7f:d7:cf:b4:53:79:
c3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.28.72.0/21
185.58.12.0/22
IPv6:
2a02:5ee0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197893
Signature Algorithm: sha256WithRSAEncryption
57:6c:ec:c0:ad:ba:02:5b:a9:ec:22:f8:26:1a:b4:e7:91:f5:
97:b2:59:7c:7c:a7:af:a7:a7:6c:04:55:d6:28:a3:6b:d0:2d:
e0:8e:a5:94:7d:49:0d:71:12:a0:f4:a0:08:12:b2:b5:85:7f:
e4:36:94:ae:7d:bf:fa:09:30:15:90:3f:3f:34:ff:f8:b1:21:
73:24:8f:74:44:10:67:a4:42:10:2d:7f:7c:f5:6e:8b:a2:01:
75:0f:7e:68:03:da:11:cc:13:1a:44:af:9b:d0:04:2c:4e:bb:
a4:c1:22:fc:e7:73:2f:83:75:c8:d3:95:e0:41:ba:28:c7:37:
3a:f4:43:53:f9:c9:98:bc:8e:40:a0:4d:e8:b9:38:dc:20:6b:
e8:d7:43:ba:66:a8:db:02:98:50:c3:5b:25:67:88:3e:96:b3:
6f:b4:01:fb:3d:f6:3c:20:08:9b:0e:4a:44:fa:03:d0:e4:b8:
a0:01:85:cc:c2:f7:f4:47:f4:e1:6a:97:d6:2e:f1:8c:c7:f9:
7b:35:3a:58:0d:47:55:ed:60:84:e3:35:a4:3b:88:3e:4c:42:
da:7d:f5:b4:98:a8:20:32:64:8d:1a:41:7e:6d:70:06:9d:41:
48:d3:31:ce:9f:1d:c5:2e:2b:97:d2:11:e4:e6:07:5c:4e:e6:
d4:a1:38:be
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAZhfrsu8jzjRo5sGHQKXrditMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwNzMxMDg1MjI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDgzMjMxN2QyNTQ0NDM0YjY1OWU1NjkyMDcxZDhlNGM0OTM4YjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3sOvgP4wRcpLXmOUJkaQEvpM2dIK
HQ8D9CS+d9+9i3p/LYE8rL65g9LLC2lI0A+0tbLJjBcEX/z2F0e6owEeFoK1xdGY
TkUdwiN0ju0/u4nYRIZE5dGVQK4STKrHeSzl81kd2+GTBTHT8bREEyjKqC00UsLn
1y7ha5Qka628zKT7qVgTBaUgAgEScIzmNZcvpAJl4GAesMT262z0WSMz1X+jG0O0
wMdwExHfWdUxDr7oMnY2ZWUL1MLcrbOr73j+gj1KsFPN8syU9NX9stiaKQVx/N4A
DWmvqJ+JlgsfMswMiWfUfEOBi++lkAIaDNZvWo2/MKcnDXB/18+0U3nDiQIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFDSDIxfSVEQ0tlnlaSBx2OTEk4sGMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzExLzVhMmVk
OS04ZjhlLTRjMWQtYWFmMy0zMGM2NWFkODMyOTEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEvNWEyZWQ5
LThmOGUtNGMxZC1hYWYzLTMwYzY1YWQ4MzI5MS8xL05JTWpGOUpVUkRTMldlVnBJ
SEhZNU1TVGl3WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQDsBxIAwQCuToMMA0EAgACMAcDBQAqAl7gMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMFBTANBgkqhkiG9w0BAQsFAAOCAQEAV2zs
wK26Alup7CL4Jhq055H1l7JZfHynr6enbARV1iija9At4I6llH1JDXESoPSgCBKy
tYV/5DaUrn2/+gkwFZA/PzT/+LEhcySPdEQQZ6RCEC1/fPVui6IBdQ9+aAPaEcwT
GkSvm9AELE67pMEi/OdzL4N1yNOV4EG6KMc3OvRDU/nJmLyOQKBN6Lk43CBr6NdD
umao2wKYUMNbJWeIPpazb7QB+z32PCAImw5KRPoD0OS4oAGFzML39Ef04WqX1i7x
jMf5ezU6WA1HVe1ghOM1pDuIPkxC2n31tJioIDJkjRpBfm1wBp1BSNMxzp8dxS4r
l9IR5OYHXE7m1KE4vg==
-----END CERTIFICATE-----
Generated at Fri Aug 8 20:56:51 2025 by rpki-client