Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UuvM2QyKD8Eempj4VmboGDte-mw.cer
File: UuvM2QyKD8Eempj4VmboGDte-mw.cer (raw, json)
Hash identifier: 5zuL+cxWhNSWcrnv+yC/1c7uU9+2VnhO7UsawOSKnYA=
Subject key identifier: 52:EB:CC:D9:0C:8A:0F:C1:1E:9A:98:F8:56:66:E8:18:3B:5E:FA:6C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B7CED136864EDF4C6F24E9F79967EDE5D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7a/1cc85a-af77-45ed-b6cb-d97c8b56ae25/1/UuvM2QyKD8Eempj4VmboGDte-mw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7a/1cc85a-af77-45ed-b6cb-d97c8b56ae25/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 02 Jan 2026 04:17:50 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 196777
IP: 37.143.132.0/22
IP: 91.214.84.0/22
IP: 176.126.60.0/22
IP: 178.213.184.0/21
IP: 194.60.254.0/23
IP: 195.191.12.0/23
IP: 2a10:a380::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7c:ed:13:68:64:ed:f4:c6:f2:4e:9f:79:96:7e:de:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:17:50 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=52ebccd90c8a0fc11e9a98f85666e8183b5efa6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:41:8b:59:08:57:b1:23:a2:86:d2:e4:21:4b:
d8:0a:af:b3:fa:a2:c5:6c:c1:c7:ee:8e:f5:6d:e1:
5e:73:6a:82:c8:4d:0b:b2:d4:28:fa:4b:09:37:e6:
dd:9d:b1:c4:4b:a1:42:a9:7d:61:bc:b6:1f:91:94:
18:1e:48:e5:b0:6f:90:c8:e3:87:fd:d8:2e:b4:6e:
76:b4:f3:82:89:9b:1e:17:4d:5a:40:b7:52:c4:22:
0e:2a:05:ad:9a:99:79:11:75:10:89:30:4d:e7:99:
fe:40:f3:55:44:de:07:f5:c4:54:ea:5c:e7:4a:d9:
d0:fe:6a:a5:17:d4:08:a4:62:07:b1:20:dc:e7:11:
0b:99:9b:0e:a1:46:13:d8:00:6b:27:c3:fa:f9:7a:
62:10:5e:5f:3b:47:4a:cc:5c:e4:0d:5b:d7:60:09:
5c:bd:c4:66:e9:21:9c:f3:09:40:e5:3a:8c:2f:ad:
9d:2b:4a:e0:e1:c4:55:95:b6:17:7d:91:94:6f:fc:
f5:c8:e7:89:1d:76:3f:e9:ee:4b:b5:d7:6a:c1:fc:
e5:81:5a:a3:f2:be:28:80:97:d3:63:5f:9d:aa:fc:
fc:fe:0c:17:8a:9e:a9:2f:8f:4c:d1:1d:21:61:7b:
b9:ea:38:a7:7c:9f:e4:06:c4:c3:e8:36:52:d4:39:
42:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EB:CC:D9:0C:8A:0F:C1:1E:9A:98:F8:56:66:E8:18:3B:5E:FA:6C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1cc85a-af77-45ed-b6cb-d97c8b56ae25/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1cc85a-af77-45ed-b6cb-d97c8b56ae25/1/UuvM2QyKD8Eempj4VmboGDte-mw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.132.0/22
91.214.84.0/22
176.126.60.0/22
178.213.184.0/21
194.60.254.0/23
195.191.12.0/23
IPv6:
2a10:a380::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
196777
Signature Algorithm: sha256WithRSAEncryption
6b:38:bd:b3:a2:42:4a:0a:63:f9:4d:77:88:b8:71:5a:59:35:
0e:67:ca:8d:63:52:d2:bd:f9:32:f4:18:dc:61:10:25:95:58:
4d:4d:10:8c:4b:bc:01:2a:8b:23:3d:db:a0:48:52:cb:5a:61:
9a:4d:c6:06:73:35:6c:c4:24:a7:cf:c0:c8:b2:b3:36:88:d8:
3e:21:ed:37:25:40:e1:8f:f5:de:d7:85:06:97:9d:cb:51:61:
77:02:c8:36:a2:18:fb:d6:ad:1b:97:2b:7c:a1:47:e8:dd:75:
5f:3a:80:2a:0d:31:a5:84:c7:7e:6e:ad:1e:72:8a:15:b8:7c:
44:2a:53:7d:1b:d7:6a:3f:97:91:4a:82:8c:bd:b7:d9:93:6c:
64:67:c8:ac:75:30:4c:83:a2:c4:2f:9c:fb:df:10:6b:61:45:
37:34:95:e3:28:95:7a:46:2c:4a:97:41:71:5b:7c:1d:25:99:
79:3d:8a:87:4e:ad:49:79:d4:ce:8c:81:11:38:17:87:03:34:
01:4d:d1:9a:a6:87:b8:42:e0:6b:c9:35:80:4c:0c:56:e4:44:
d0:3e:0d:00:b4:18:02:85:10:ba:f4:f8:e5:23:51:1a:9b:28:
f5:69:84:c4:07:c0:cf:9f:b5:bb:de:8f:2a:9c:f1:d7:26:f1:
67:17:b5:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:53:46 2026 by rpki-client