Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1fdy0HHFE8Hozluapn9oke71C-8.cer
File: 1fdy0HHFE8Hozluapn9oke71C-8.cer (raw, json)
Hash identifier: v5bj/w+iVFlBCyBPfheBN7HsXy4LLiAVF0OWWjffdhE=
Subject key identifier: D5:F7:72:D0:71:C5:13:C1:E8:CE:5B:9A:A6:7F:68:91:EE:F5:0B:EF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019E02295C34A8373B7E49FCD8F009AC57D9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8d/ca8ae6-0c13-4031-928a-0a5c649dd3c3/1/1fdy0HHFE8Hozluapn9oke71C-8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8d/ca8ae6-0c13-4031-928a-0a5c649dd3c3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 07 May 2026 11:18:45 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 49375
IP: 178.17.240.0 -- 178.17.246.255
IP: 178.17.248.0/21
IP: 188.94.40.0 -- 188.94.42.255
IP: 188.94.44.0 -- 188.94.46.255
IP: 2a02:1648::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:02:29:5c:34:a8:37:3b:7e:49:fc:d8:f0:09:ac:57:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 7 11:18:45 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=d5f772d071c513c1e8ce5b9aa67f6891eef50bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:82:cf:c1:c5:6e:0f:9b:b6:e9:84:b6:e8:f7:
81:3c:56:7d:d0:7b:56:16:53:55:20:c0:5c:39:f4:
48:43:62:26:f8:ad:10:03:6d:d1:65:08:08:8e:37:
e9:68:ff:8b:be:50:19:5f:96:94:89:95:d9:f6:4c:
23:7e:51:f2:65:97:c2:06:7c:b1:1c:16:40:4f:78:
e6:7b:63:44:76:c1:25:6f:1c:51:8b:f5:d0:8d:e0:
b4:51:e7:d9:8e:89:5f:ff:69:35:b4:93:1d:05:82:
de:49:7f:f6:66:15:c3:af:d3:b9:f2:61:a4:e3:94:
24:76:7e:1e:7d:1b:ff:c1:0c:8d:3f:77:8e:85:d5:
e8:53:95:76:c7:04:a4:a6:2a:90:89:6c:5d:7b:41:
cd:eb:17:bd:22:67:bb:d7:9a:16:25:dc:89:e8:62:
c2:a3:45:2e:59:07:08:a3:06:68:a3:a8:bc:45:01:
67:e0:02:27:8a:3b:7e:68:cf:98:b2:ce:da:58:64:
63:15:c8:87:05:a5:2b:ec:6a:1f:f4:d2:2c:22:3a:
9f:d1:d4:a3:66:c6:c8:1f:61:84:a1:39:a9:8a:55:
08:6b:e5:21:71:be:85:86:de:77:7a:1a:ba:09:b0:
94:b4:70:89:04:74:2b:0e:2e:9a:4d:1c:30:44:b4:
35:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F7:72:D0:71:C5:13:C1:E8:CE:5B:9A:A6:7F:68:91:EE:F5:0B:EF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/ca8ae6-0c13-4031-928a-0a5c649dd3c3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/ca8ae6-0c13-4031-928a-0a5c649dd3c3/1/1fdy0HHFE8Hozluapn9oke71C-8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.17.240.0-178.17.246.255
178.17.248.0/21
188.94.40.0-188.94.42.255
188.94.44.0-188.94.46.255
IPv6:
2a02:1648::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49375
Signature Algorithm: sha256WithRSAEncryption
ad:cb:76:11:ca:a4:da:49:2f:0a:14:30:4d:40:a4:d1:f3:b6:
40:80:ff:6d:89:11:bd:e8:9a:0b:32:19:0d:85:22:c5:d7:90:
bd:a6:8e:ed:2a:fe:83:69:31:6a:0b:43:c4:28:4c:9e:d1:ab:
7b:c4:31:1f:8e:d7:83:19:0e:a5:f9:55:84:8f:f6:57:52:74:
9b:12:12:21:15:ba:af:d2:a8:92:c5:d4:8e:8b:04:c8:4a:b0:
94:84:4d:f3:7a:63:b5:f3:2d:e4:76:ea:b8:aa:08:8d:fd:36:
e3:b7:a0:63:5a:f5:0d:ee:fd:c5:21:9e:c4:57:8a:a3:2b:69:
57:a9:56:d3:01:8f:9d:da:ae:46:4f:62:40:be:6d:91:2b:7b:
14:2f:5d:63:7c:22:36:01:1e:9a:78:ac:7e:e5:a6:66:01:10:
87:5a:4a:f4:88:f7:8e:75:08:01:1d:87:82:c2:6b:f7:d7:8c:
b4:83:e0:e1:d2:38:9a:57:19:15:54:b4:d5:75:57:a7:07:87:
9c:78:85:e1:67:d5:dc:58:9a:06:7b:1c:f9:1a:7e:a6:5f:fd:
3b:7c:c1:12:e5:de:c0:2d:95:96:03:e6:a3:70:a8:6a:bd:2d:
76:a0:c8:fd:d0:a7:8c:76:79:71:f3:c7:53:c6:60:ab:f4:67:
5a:42:fe:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:07:46 2026 by rpki-client