Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MPjiwMh-k3meIyhPNrhhXbeHg6s.cer
File: MPjiwMh-k3meIyhPNrhhXbeHg6s.cer (raw, json)
Hash identifier: lMAegakv39ruQFkLT7ZiL7piS8utNrbzYY2x0rpIMww=
Subject key identifier: 30:F8:E2:C0:C8:7E:93:79:9E:23:28:4F:36:B8:61:5D:B7:87:83:AB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B7C125183072C8D11AD90D66E19AE3137
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9b/99be4d-f8ec-4430-a9cd-7e12b87d06c2/1/MPjiwMh-k3meIyhPNrhhXbeHg6s.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9b/99be4d-f8ec-4430-a9cd-7e12b87d06c2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 02 Jan 2026 00:18:53 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 206420
IP: 185.186.248.0/22
IP: 185.212.12.0/22
IP: 2a0b:70c0::/32
IP: 2a0b:8c80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7c:12:51:83:07:2c:8d:11:ad:90:d6:6e:19:ae:31:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:18:53 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=30f8e2c0c87e93799e23284f36b8615db78783ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c3:c1:f7:47:25:d7:03:ec:62:b8:24:f4:de:
bd:b1:59:80:d1:d1:3c:a1:0c:09:b0:48:1a:fe:89:
14:a6:47:ab:48:fb:8a:7a:dc:fa:19:f8:85:e0:c3:
f2:75:f2:21:c3:8e:ad:0e:17:63:fd:15:71:62:f7:
45:e7:47:3a:80:dc:ad:10:ff:1a:34:fa:81:bb:1a:
59:b6:d6:c1:11:19:a2:9c:2f:16:e1:c1:78:d5:44:
05:3c:08:ed:69:59:08:1f:db:b6:f4:da:4c:09:f4:
f6:05:51:42:8e:5e:4b:4c:86:f8:48:72:b8:f6:7e:
53:43:45:51:23:e9:a7:35:bc:f0:dd:a0:09:5b:15:
b5:44:83:ec:cf:71:7b:30:2e:a9:f2:99:6b:37:18:
20:a0:e1:d8:cc:7f:79:5c:6d:7b:95:1f:83:0f:23:
a8:45:ff:82:57:74:79:c4:5a:9d:23:a3:46:f4:be:
86:5a:f1:26:17:c5:b3:6a:64:01:ff:05:94:9d:c0:
61:a1:7d:c2:e4:3c:2e:6b:e7:3a:cd:c5:66:0b:f0:
01:b7:f2:e5:37:4e:e1:b5:37:66:9e:78:9c:6e:d9:
64:f6:7d:b9:1b:89:df:8f:04:c4:2e:52:ec:51:27:
0f:6e:d1:99:f0:37:4b:57:c5:45:78:81:14:00:2f:
22:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F8:E2:C0:C8:7E:93:79:9E:23:28:4F:36:B8:61:5D:B7:87:83:AB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/99be4d-f8ec-4430-a9cd-7e12b87d06c2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/99be4d-f8ec-4430-a9cd-7e12b87d06c2/1/MPjiwMh-k3meIyhPNrhhXbeHg6s.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.248.0/22
185.212.12.0/22
IPv6:
2a0b:70c0::/32
2a0b:8c80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206420
Signature Algorithm: sha256WithRSAEncryption
06:bf:d0:58:3c:15:b1:8e:75:e5:24:fb:50:ba:e9:86:4b:40:
c5:72:02:53:84:4c:e0:27:dc:bf:e4:87:a5:9d:b8:a5:2c:5b:
fa:9d:11:66:f8:b6:8d:84:0e:db:5e:72:cf:47:8b:9f:a0:19:
78:b5:fb:a8:c4:b1:f9:a5:e3:a3:7b:d4:9e:68:6a:e0:04:d9:
2a:29:e1:02:cc:33:24:df:17:0f:8d:28:3a:6b:87:91:b5:4b:
4a:71:ec:df:a1:0e:df:2e:60:04:9c:31:f8:6d:0e:2d:c2:61:
bc:4b:db:fa:e1:dd:d0:0e:ea:f1:da:3e:58:0b:6d:8c:ae:38:
be:e2:cb:9e:39:67:2c:6d:00:c8:87:1d:db:72:0a:01:ff:77:
07:69:e6:a9:3e:71:9e:b2:56:6a:c1:d4:d8:64:31:1c:be:ba:
7c:48:25:9d:46:e2:82:fa:dc:55:e9:68:7e:3b:71:31:ca:05:
16:e7:ac:02:e1:72:89:a3:0c:23:8c:03:e8:db:f5:73:cc:35:
bb:44:76:c1:4d:3d:74:bd:9a:77:d0:67:14:55:85:f9:b7:d8:
47:b5:0f:64:f7:48:ea:a4:18:07:8a:d1:1c:6c:c3:4f:38:cf:
0c:af:62:82:e2:c1:23:ad:b4:3b:8f:d5:51:ea:0d:24:b6:d1:
89:50:15:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:31:48 2026 by rpki-client