Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nnld0BGVNBRxXMaHXf05xh5Rgcg.cer
File: nnld0BGVNBRxXMaHXf05xh5Rgcg.cer (raw, json)
Hash identifier: Qty8GAkhZQB0PK0ypOK/7iIojUEFecHeGl+j71OJNxg=
Subject key identifier: 9E:79:5D:D0:11:95:34:14:71:5C:C6:87:5D:FD:39:C6:1E:51:81:C8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019D61C34F56068F48F01257A12011CD2CC2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 06 Apr 2026 07:48:03 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 207243
IP: 185.161.228.0/22
IP: 193.168.232.0/22
IP: 2a09:6f80::/29
IP: 2a0b:c000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:61:c3:4f:56:06:8f:48:f0:12:57:a1:20:11:cd:2c:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 6 07:48:03 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9e795dd011953414715cc6875dfd39c61e5181c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:82:a0:db:5d:24:9b:34:88:59:56:77:72:84:
cc:e1:44:c7:f1:38:72:4b:37:99:c5:b7:30:72:38:
ed:a1:48:2f:3b:d1:94:b2:f9:9a:d8:c3:54:97:07:
aa:06:56:3a:e3:3b:42:d2:10:a6:aa:06:58:cf:48:
41:9f:ce:70:10:50:4c:d5:3f:ea:00:2e:e9:17:16:
f2:d4:c8:41:b0:ab:39:0a:d7:ea:95:7a:46:c9:7f:
d5:2c:ae:e4:83:d6:f6:3b:c3:cc:9b:58:06:ba:e3:
ce:ea:e9:8f:0f:ee:3c:18:9f:fc:3e:6c:a2:81:b1:
6f:ac:6b:f3:1a:2b:ec:42:95:4f:e3:a6:d1:bb:8c:
09:f7:32:d7:fd:61:0a:d2:b6:e8:1f:41:90:32:d4:
c6:46:43:0c:cb:dc:bf:15:e7:31:ff:8f:d2:f1:9c:
67:08:bf:63:45:23:35:23:5a:b1:8e:49:7b:17:ca:
c9:33:3a:9f:80:59:07:9e:5d:5f:48:6d:67:4a:74:
8c:17:56:00:d9:e4:c2:f6:3a:2d:ef:9c:f2:3c:d1:
25:70:7d:17:f6:b5:69:51:1e:52:a6:7a:70:ec:90:
1b:85:ad:00:7b:0a:f2:04:b6:b2:12:6d:0d:35:31:
a2:b5:04:0a:12:83:c6:06:b5:b2:19:85:10:cc:ac:
5b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:79:5D:D0:11:95:34:14:71:5C:C6:87:5D:FD:39:C6:1E:51:81:C8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.228.0/22
193.168.232.0/22
IPv6:
2a09:6f80::/29
2a0b:c000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207243
Signature Algorithm: sha256WithRSAEncryption
56:31:c3:ce:77:3f:8a:c0:aa:0b:ce:cc:75:30:02:18:3d:36:
44:46:8c:40:95:73:b0:1d:9e:cd:a1:d7:28:31:13:fe:8d:e4:
89:f5:36:f7:f9:26:e0:62:a1:9c:16:e6:7c:65:26:5c:c3:e2:
b0:2c:cf:72:0a:29:e7:1c:84:7c:3e:41:cb:18:c9:b8:a6:55:
f8:04:f6:bd:4f:77:91:7d:b4:6c:87:5f:f2:f0:23:c0:d7:42:
63:f0:dc:9a:78:8d:c3:b8:36:d2:e7:51:60:c7:b2:e5:2b:68:
45:7d:7a:c8:5e:c2:47:c7:37:1c:2e:b0:01:eb:b1:41:73:d8:
ce:49:1b:9b:9c:b4:78:ef:e3:23:e9:b4:6c:be:bc:d9:cd:bc:
f4:a4:1d:42:bb:05:30:3b:04:da:8e:99:18:c9:14:52:b9:49:
93:47:66:0b:29:fb:f8:35:36:2c:38:44:a6:a1:7b:16:fa:95:
6b:cb:0c:b1:f8:31:8e:83:22:58:d8:09:1e:9d:f2:33:b1:ae:
dc:e7:d2:78:d7:e7:12:70:5f:e7:37:76:0d:3c:91:60:20:65:
5e:a5:d6:35:36:05:77:36:71:db:0e:4c:94:b4:35:eb:eb:3c:
0c:01:24:a4:9b:7d:84:e1:53:a4:7a:54:9d:9a:c7:c5:e6:25:
08:20:e8:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:23:43 2026 by rpki-client