Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iwjmq-L-QyImUc6Z780Sr2DmT1s.cer
File: iwjmq-L-QyImUc6Z780Sr2DmT1s.cer (raw, json)
Hash identifier: inGsY9Bc8VxDaEAIYpr9O+/OqRiUWfpoDB0y/lX4R2Q=
Subject key identifier: 8B:08:E6:AB:E2:FE:43:22:26:51:CE:99:EF:CD:12:AF:60:E6:4F:5B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B7C118D973B0223811C7E99ED074F5C56
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/39/6756a4-40de-42d5-b474-cb6b80c9e3f8/1/iwjmq-L-QyImUc6Z780Sr2DmT1s.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/39/6756a4-40de-42d5-b474-cb6b80c9e3f8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 02 Jan 2026 00:18:03 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 198989
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7c:11:8d:97:3b:02:23:81:1c:7e:99:ed:07:4f:5c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:18:03 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8b08e6abe2fe43222651ce99efcd12af60e64f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fe:f8:4b:34:56:d9:0c:06:80:6d:46:06:9d:
a8:5e:29:f1:4f:ec:bb:ba:99:d2:cc:12:bd:36:33:
fc:b6:d2:bb:6f:a7:fd:04:e1:18:6e:cb:c1:78:28:
21:94:7f:ae:2b:0a:64:d9:22:a2:83:53:2f:f3:cb:
d9:80:e3:48:79:05:16:73:4c:03:39:64:33:e8:f6:
44:a9:4a:48:24:70:98:37:64:9b:a9:92:25:c8:dd:
94:f1:77:96:47:d1:a5:75:28:7f:66:59:49:06:05:
eb:0e:11:b9:94:e5:70:4b:be:ff:1b:41:05:e9:2b:
3d:be:22:e8:2b:2a:e9:35:ab:b6:df:00:94:00:36:
b0:92:4e:44:9b:77:e4:f6:e2:07:33:b6:14:80:cb:
56:04:e0:9c:a9:ab:6c:46:c6:3b:60:c7:5d:c2:46:
9b:1f:33:04:aa:8c:7d:96:e8:4d:b5:a7:f1:12:5a:
72:45:06:27:5e:97:0c:24:ea:9f:27:84:51:b9:c3:
e8:2d:34:b9:5d:98:bd:a0:86:73:5a:e8:6e:b4:79:
e7:6c:43:df:c4:f8:41:63:5a:32:a2:91:ae:32:8c:
75:84:83:5b:ce:8c:5b:43:9b:40:7b:3f:a1:f8:b0:
a0:0c:a5:05:ed:4e:96:12:1c:9f:ee:e3:36:6b:68:
f8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:08:E6:AB:E2:FE:43:22:26:51:CE:99:EF:CD:12:AF:60:E6:4F:5B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/6756a4-40de-42d5-b474-cb6b80c9e3f8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/6756a4-40de-42d5-b474-cb6b80c9e3f8/1/iwjmq-L-QyImUc6Z780Sr2DmT1s.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198989
Signature Algorithm: sha256WithRSAEncryption
6b:d6:df:24:d8:3f:ad:74:24:96:05:d0:5d:55:41:bb:58:83:
00:6d:42:f7:c8:0b:c7:d6:61:e4:74:4e:0a:af:5d:fc:e2:71:
6b:ec:44:77:b5:1e:7a:6d:c8:2c:ac:26:d7:72:35:5a:b3:56:
58:51:6c:32:64:02:1c:5d:0e:7e:34:17:c1:e5:ea:ce:ea:4e:
4a:35:43:9d:0f:2e:79:b6:d6:c7:2a:3e:af:3b:cb:af:ca:4b:
10:6c:ec:36:20:31:16:41:93:8c:3c:21:18:72:69:74:40:21:
7f:89:e7:4a:20:14:16:93:6f:46:2d:be:33:9e:3f:e0:1c:d7:
5a:a0:6d:71:40:50:65:f1:84:8e:20:dc:1d:58:83:e0:f2:b5:
34:02:9c:9c:eb:1d:03:bf:02:be:3b:6f:d9:90:92:dc:a5:8b:
38:d7:92:36:83:88:b8:af:7c:b9:ce:3f:c6:b5:fc:ed:00:06:
8f:85:50:4b:87:3c:33:58:57:00:bc:f6:e4:46:26:89:d1:45:
de:e7:7b:06:ba:5a:7a:0e:6a:05:cc:36:19:7a:69:e6:25:ab:
33:32:97:78:8f:53:55:8d:2a:6f:d2:3d:8a:c0:bb:18:27:a1:
c2:1e:65:5a:bd:52:e3:e6:cb:29:34:e8:d3:86:d7:72:19:15:
8b:f3:b2:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:43:13 2026 by rpki-client