Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kebTJCJXspZbYnj_jBfhb_PwiyE.cer
File: kebTJCJXspZbYnj_jBfhb_PwiyE.cer (raw, json)
Hash identifier: EhPwnb1JWReLDqOeP/HHbVkQlLE8bDUs1ceZG0P7GbU=
Subject key identifier: 91:E6:D3:24:22:57:B2:96:5B:62:78:FF:8C:17:E1:6F:F3:F0:8B:21
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019D4D431375EFED98CB5A6F7BA1B9B41A1C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/0c0f61-b69c-4657-9867-7e74a6a98ecd/1/kebTJCJXspZbYnj_jBfhb_PwiyE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/0c0f61-b69c-4657-9867-7e74a6a98ecd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Apr 2026 08:15:34 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 201821
AS: 204732
IP: 185.63.72.0/22
IP: 185.242.68.0/22
IP: 2a0c:c280::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:4d:43:13:75:ef:ed:98:cb:5a:6f:7b:a1:b9:b4:1a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 2 08:15:34 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=91e6d3242257b2965b6278ff8c17e16ff3f08b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ae:9a:9e:17:64:40:28:5c:0c:45:2f:38:eb:
f4:9a:55:59:5f:0a:ad:f5:79:88:13:b7:09:5b:ea:
46:f8:71:be:9b:a6:3f:ec:a9:19:b5:32:b1:20:4a:
9e:b9:23:41:e0:f3:6a:ec:64:c3:e3:6c:8c:5f:87:
64:b4:a3:d0:b3:62:77:26:17:6b:f4:ee:01:87:10:
d2:7a:d5:40:85:1c:b1:ca:93:c1:3c:a7:49:62:a6:
94:a7:a2:1a:fb:c6:ae:1d:28:fa:4f:38:a2:47:d0:
8f:9c:41:cc:a8:9c:77:aa:ef:dc:d5:40:42:a5:f2:
bf:dd:a4:41:60:3d:be:a0:e0:d2:87:69:c7:a6:fa:
b7:f7:b1:a1:20:8a:30:52:2f:69:39:de:2c:cf:da:
d4:ab:28:c9:df:63:77:9b:d5:8e:e3:29:2f:d9:f6:
ed:33:23:0b:b8:6a:02:88:a1:bb:01:5c:e1:8e:1b:
3a:34:ee:cd:f6:d6:59:c2:df:3a:69:a4:a9:bf:9b:
3f:c0:50:39:e0:b9:8e:47:8b:46:24:2d:d8:2d:01:
fb:93:e7:3e:37:f2:99:2d:be:33:b0:ed:fe:97:4c:
6a:7c:61:bd:e9:68:8a:aa:f5:4a:20:e1:64:ef:54:
e4:a7:fe:09:25:27:5b:e0:9f:74:71:51:a8:24:13:
4f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E6:D3:24:22:57:B2:96:5B:62:78:FF:8C:17:E1:6F:F3:F0:8B:21
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/0c0f61-b69c-4657-9867-7e74a6a98ecd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/0c0f61-b69c-4657-9867-7e74a6a98ecd/1/kebTJCJXspZbYnj_jBfhb_PwiyE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.72.0/22
185.242.68.0/22
IPv6:
2a0c:c280::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201821
204732
Signature Algorithm: sha256WithRSAEncryption
87:0b:a8:10:36:40:bb:e5:0c:5d:01:9b:8c:fd:f5:2e:dc:2b:
05:a3:f8:c2:60:a2:b1:ba:13:05:49:d1:db:3a:c6:d8:a6:8d:
86:c4:60:e8:b5:1d:79:92:51:fb:c3:c0:43:1f:6c:5c:cc:a6:
7b:a3:ad:24:f4:03:a2:46:48:42:1b:46:5b:42:4e:dc:d0:a0:
4b:44:f8:17:aa:8d:07:0e:e4:b3:39:73:72:0c:67:78:aa:1f:
40:c5:6d:37:36:7f:a3:86:f8:a3:ab:84:9e:65:ad:9e:15:24:
9f:4f:38:d1:89:47:fd:4d:28:f8:71:fa:53:b0:40:45:cd:3a:
c4:23:fd:de:72:48:2d:70:d7:1c:a2:d9:5f:de:0a:69:14:66:
af:c7:a4:77:bb:ed:5b:c5:dc:91:93:1a:14:ee:e8:4d:67:4d:
2e:db:10:81:37:d2:cf:70:78:33:b6:14:3c:6e:0d:b5:df:97:
86:5c:3d:44:31:fa:63:b4:2a:af:55:9a:26:40:d1:5e:9b:a5:
94:e3:a2:20:77:46:4e:ff:e6:f7:16:91:fa:ba:3c:cb:02:90:
72:01:96:2e:61:b3:87:bf:7f:0e:b8:c8:ac:e1:1d:83:16:eb:
3a:9d:cf:f3:69:93:9f:ea:4d:6b:cc:9e:18:32:02:fc:10:64:
39:e1:62:8e
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAZ1NQxN17+2Yy1pve6G5tBocMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjYwNDAyMDgxNTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MWU2ZDMyNDIyNTdiMjk2NWI2Mjc4ZmY4YzE3ZTE2ZmYzZjA4YjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAta6anhdkQChcDEUvOOv0mlVZXwqt
9XmIE7cJW+pG+HG+m6Y/7KkZtTKxIEqeuSNB4PNq7GTD42yMX4dktKPQs2J3Jhdr
9O4BhxDSetVAhRyxypPBPKdJYqaUp6Ia+8auHSj6TziiR9CPnEHMqJx3qu/c1UBC
pfK/3aRBYD2+oODSh2nHpvq397GhIIowUi9pOd4sz9rUqyjJ32N3m9WO4ykv2fbt
MyMLuGoCiKG7AVzhjhs6NO7N9tZZwt86aaSpv5s/wFA54LmOR4tGJC3YLQH7k+c+
N/KZLb4zsO3+l0xqfGG96WiKqvVKIOFk71Tkp/4JJSdb4J90cVGoJBNPYQIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFJHm0yQiV7KWW2J4/4wX4W/z8IshMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M5LzBjMGY2
MS1iNjljLTQ2NTctOTg2Ny03ZTc0YTZhOThlY2QvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzkvMGMwZjYx
LWI2OWMtNDY1Ny05ODY3LTdlNzRhNmE5OGVjZC8xL2tlYlRKQ0pYc3BaYllual9q
QmZoYl9Qd2l5RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCuT9IAwQCufJEMA0EAgACMAcDBQMqDMKAMB8G
CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwMUXQIDAx+8MA0GCSqGSIb3DQEBCwUAA4IB
AQCHC6gQNkC75QxdAZuM/fUu3CsFo/jCYKKxuhMFSdHbOsbYpo2GxGDotR15klH7
w8BDH2xczKZ7o60k9AOiRkhCG0ZbQk7c0KBLRPgXqo0HDuSzOXNyDGd4qh9AxW03
Nn+jhvijq4SeZa2eFSSfTzjRiUf9TSj4cfpTsEBFzTrEI/3eckgtcNccotlf3gpp
FGavx6R3u+1bxdyRkxoU7uhNZ00u2xCBN9LPcHgzthQ8bg2135eGXD1EMfpjtCqv
VZomQNFem6WU46Igd0ZO/+b3FpH6ujzLApByAZYuYbOHv38OuMis4R2DFus6nc/z
aZOf6k1rzJ4YMgL8EGQ54WKO
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:39:18 2026 by rpki-client