Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/U0phq7_QFizvAP9DEIp63y5Bf2M.cer
File: U0phq7_QFizvAP9DEIp63y5Bf2M.cer (raw, json)
Hash identifier: d95DYvrOqXkvt0z2jMzECTrwDij7es6tiOLcQwG+7co=
Subject key identifier: 53:4A:61:AB:BF:D0:16:2C:EF:00:FF:43:10:8A:7A:DF:2E:41:7F:63
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019DCDD9B8A6D072548E185E3AE155090818
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/50/a96c09-6123-4849-9ad7-b5cc4fd7a0d7/1/U0phq7_QFizvAP9DEIp63y5Bf2M.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/50/a96c09-6123-4849-9ad7-b5cc4fd7a0d7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 27 Apr 2026 07:31:31 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 25375
IP: 37.131.184.0/21
IP: 109.71.88.0/21
IP: 185.33.248.0/22
IP: 193.246.110.0/23
IP: 212.203.32.0/19
IP: 2a00:aac0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:d9:b8:a6:d0:72:54:8e:18:5e:3a:e1:55:09:08:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 27 07:31:31 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=534a61abbfd0162cef00ff43108a7adf2e417f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:49:14:cf:0b:4c:79:bd:f8:c3:9e:71:63:37:
60:cc:3b:de:e4:ec:0c:92:be:f6:d9:d5:5d:61:75:
94:aa:3b:02:54:fc:46:e5:21:f1:45:f8:13:be:aa:
1b:43:cf:25:87:5b:53:50:9f:3d:bf:b5:b7:e8:82:
1e:c7:84:b3:5a:4c:0b:8e:d8:a4:1f:29:18:41:a0:
bc:33:95:13:79:bd:8d:29:4d:53:6d:a2:05:cf:5f:
2f:03:29:14:87:c6:36:95:e7:58:8a:aa:b4:47:52:
2a:ab:17:28:72:a4:7d:76:a3:63:30:77:29:45:d6:
11:96:16:25:42:85:71:7a:96:9c:b4:e2:79:4b:40:
a9:1a:a6:35:cf:4b:6e:c1:56:bb:36:11:3a:bc:0c:
10:52:41:8e:cd:cc:16:b7:4b:08:25:16:9f:03:87:
59:b1:e2:5d:63:10:22:22:74:c5:e7:87:60:13:2c:
be:27:b3:c8:0d:ab:7f:a7:01:12:ad:19:63:26:d3:
c7:de:08:00:fc:24:90:6b:f5:e2:94:96:7a:7e:3b:
8c:01:5d:ba:91:09:9b:77:f2:09:44:46:65:77:1b:
82:00:42:1e:b3:23:d2:43:d6:3d:c1:43:1e:9e:72:
39:84:ec:b1:1b:af:e8:24:18:21:57:3d:23:0a:28:
07:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:4A:61:AB:BF:D0:16:2C:EF:00:FF:43:10:8A:7A:DF:2E:41:7F:63
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a96c09-6123-4849-9ad7-b5cc4fd7a0d7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a96c09-6123-4849-9ad7-b5cc4fd7a0d7/1/U0phq7_QFizvAP9DEIp63y5Bf2M.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.131.184.0/21
109.71.88.0/21
185.33.248.0/22
193.246.110.0/23
212.203.32.0/19
IPv6:
2a00:aac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25375
Signature Algorithm: sha256WithRSAEncryption
64:96:89:35:9e:01:91:c9:57:72:2d:f0:5e:61:a8:03:ae:13:
43:77:49:9b:74:a6:b1:cc:0b:82:50:1a:44:18:11:7f:c5:18:
aa:9e:bf:0a:10:bd:f3:cf:ae:d4:b6:43:bf:f9:a8:0a:40:c4:
f8:24:00:6f:0d:04:cf:26:e2:f7:a8:01:fd:39:c0:b5:38:ff:
7e:de:65:db:b1:5c:3a:c7:57:53:7c:43:4a:d7:8f:23:67:82:
f6:0d:e2:b9:6d:62:1e:04:ed:01:b3:3b:b7:4b:6c:e1:48:3b:
1c:74:21:47:86:9c:40:5e:0c:9d:50:fe:10:74:65:2c:00:8a:
44:06:51:ec:af:b7:f3:4f:0b:49:f2:d4:d3:c2:b8:ff:43:43:
e0:4c:dc:a3:54:04:5b:7b:b6:de:15:5d:9d:57:cd:e3:5b:fe:
27:02:45:3c:6a:d8:00:62:28:3b:ae:2b:dd:2f:c7:f6:5b:d9:
99:33:26:cd:de:c5:6e:7f:dd:1a:30:bd:78:14:29:44:25:3b:
87:91:77:2f:ec:66:f1:54:13:ef:e9:c9:42:1b:72:7e:c5:ec:
13:72:d2:57:29:57:4e:b1:37:76:a7:2e:17:24:31:a8:b8:69:
22:62:9b:2d:de:ec:f2:97:f0:9c:9e:4e:eb:7e:51:54:70:e8:
df:a2:fd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:38:46 2026 by rpki-client