Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VK27z5JgQyq-4gEwM9TrlfO9q9Y.cer
File: VK27z5JgQyq-4gEwM9TrlfO9q9Y.cer (raw, json)
Hash identifier: QzdcjLxrCGHU1jPmdCAX3qcmx5uqLh8fbWAbA3zU6QI=
Subject key identifier: 54:AD:BB:CF:92:60:43:2A:BE:E2:01:30:33:D4:EB:95:F3:BD:AB:D6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019C9BEB24ED90E1AA4AE79A5FA6CAFBC6EB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/VK27z5JgQyq-4gEwM9TrlfO9q9Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 26 Feb 2026 21:46:44 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 158.178.128.0 -- 158.178.253.255
IP: 158.179.1.0 -- 158.179.63.255
IP: 158.179.128.0 -- 158.180.95.255
IP: 158.180.160.0/19
IP: 158.180.226.0 -- 158.180.255.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:9b:eb:24:ed:90:e1:aa:4a:e7:9a:5f:a6:ca:fb:c6:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 26 21:46:44 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=54adbbcf9260432abee2013033d4eb95f3bdabd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cb:ea:b3:fc:63:65:d6:5f:99:db:50:52:47:
d0:b6:55:ba:8b:2f:7b:4a:39:d1:86:da:f9:6f:41:
58:a1:ca:a0:ab:c4:a0:1d:16:ee:ca:67:85:9e:cd:
84:6c:fd:6f:79:82:98:d7:62:57:04:9d:a0:21:4c:
e7:60:84:41:9c:c7:9b:ee:5a:51:25:96:51:4b:55:
9f:2b:4d:9f:17:cb:03:3d:e8:b5:01:7f:47:79:14:
5f:85:4a:1c:a5:99:6e:b3:8d:c5:bf:47:48:24:f3:
ca:af:1a:b6:bd:f1:48:77:eb:db:00:bf:17:bd:c0:
d7:eb:b6:d9:06:22:45:21:0e:8d:83:e7:82:58:f2:
0a:e6:13:29:5b:04:50:42:16:86:cb:b6:63:a9:a4:
2d:96:05:d9:00:fc:1b:e1:47:a8:81:55:7d:3b:4a:
83:c5:fd:c0:1c:ef:61:f2:66:8b:21:2a:7a:82:76:
86:1e:c4:52:57:86:d3:b6:e8:2b:b1:1b:ab:77:54:
1e:c3:03:6e:22:fe:0c:f4:7b:ae:84:c0:f6:84:bd:
32:d0:84:23:6a:3e:0c:c5:14:d9:73:91:32:4c:f6:
f3:1c:ae:70:8e:fe:35:21:b5:78:3a:a4:81:3d:4b:
a8:a8:67:79:a3:11:11:e4:e6:68:47:c4:30:dc:65:
bc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:AD:BB:CF:92:60:43:2A:BE:E2:01:30:33:D4:EB:95:F3:BD:AB:D6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/VK27z5JgQyq-4gEwM9TrlfO9q9Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.178.128.0-158.178.253.255
158.179.1.0-158.179.63.255
158.179.128.0-158.180.95.255
158.180.160.0/19
158.180.226.0-158.180.255.255
Signature Algorithm: sha256WithRSAEncryption
33:09:6a:00:20:a0:26:e2:91:1e:d2:1e:f3:8b:67:cc:a3:9f:
14:27:24:52:53:c9:ee:c6:2d:8c:56:6f:fc:37:45:9e:7d:d9:
a4:b1:a1:33:f1:47:ec:5c:31:93:1c:ec:5c:41:94:fb:1b:1d:
e1:bd:c5:b3:12:c4:cd:a0:8b:b7:26:2c:ae:85:4e:c9:d2:b7:
90:7b:0a:21:58:5c:62:3d:f3:42:36:76:46:fe:11:97:ec:89:
8d:40:8f:dc:a3:12:f6:fa:31:83:94:75:9f:8e:4f:c0:df:e5:
d5:e8:4c:06:b8:9e:4c:f4:18:e4:63:c9:20:8e:00:f3:11:69:
e2:1b:d2:3d:b7:e3:a0:67:42:76:b2:45:06:15:0d:4b:6a:2b:
15:e8:51:10:ff:e8:4e:c1:9c:98:13:71:d3:14:c3:9f:1d:c2:
fa:8a:82:c3:5a:45:68:30:33:dd:85:5b:82:78:25:69:c6:be:
31:30:1d:62:9e:c1:d6:01:1e:5b:15:97:b2:c6:f8:74:db:d2:
9e:36:ca:0c:97:26:f2:11:47:79:14:5c:64:9c:ea:51:b1:b0:
4e:65:e5:29:47:51:c4:d1:ca:3d:91:ff:ef:df:15:b8:5d:dd:
49:85:cf:79:55:52:83:79:9f:00:4f:24:8f:99:d7:aa:31:b9:
6d:0a:3a:d9
-----BEGIN CERTIFICATE-----
MIIFrzCCBJegAwIBAgISAZyb6yTtkOGqSueaX6bK+8brMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjYwMjI2MjE0NjQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NGFkYmJjZjkyNjA0MzJhYmVlMjAxMzAzM2Q0ZWI5NWYzYmRhYmQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0cvqs/xjZdZfmdtQUkfQtlW6iy97
SjnRhtr5b0FYocqgq8SgHRbuymeFns2EbP1veYKY12JXBJ2gIUznYIRBnMeb7lpR
JZZRS1WfK02fF8sDPei1AX9HeRRfhUocpZlus43Fv0dIJPPKrxq2vfFId+vbAL8X
vcDX67bZBiJFIQ6Ng+eCWPIK5hMpWwRQQhaGy7ZjqaQtlgXZAPwb4UeogVV9O0qD
xf3AHO9h8maLISp6gnaGHsRSV4bTtugrsRurd1QewwNuIv4M9HuuhMD2hL0y0IQj
aj4MxRTZc5EyTPbzHK5wjv41IbV4OqSBPUuoqGd5oxER5OZoR8Qw3GW8NwIDAQAB
o4ICuzCCArcwHQYDVR0OBBYEFFStu8+SYEMqvuIBMDPU65XzvavWMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFiLzM0MGU1
Ni02NDkyLTQ3ZTItOTlkYy0xNDI1MzdkZTk0OGUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIvMzQwZTU2
LTY0OTItNDdlMi05OWRjLTE0MjUzN2RlOTQ4ZS8xL1ZLMjd6NUpnUXlxLTRnRXdN
OVRybGZPOXE5WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFYGCCsGAQUF
BwEHAQH/BEcwRTBDBAIAATA9MAwDBAeesoADBAGesvwwDAMEAJ6zAQMEBp6zADAM
AwQHnrOAAwQFnrRAAwQFnrSgMAsDBAGetOIDAwCetDANBgkqhkiG9w0BAQsFAAOC
AQEAMwlqACCgJuKRHtIe84tnzKOfFCckUlPJ7sYtjFZv/DdFnn3ZpLGhM/FH7Fwx
kxzsXEGU+xsd4b3FsxLEzaCLtyYsroVOydK3kHsKIVhcYj3zQjZ2Rv4Rl+yJjUCP
3KMS9voxg5R1n45PwN/l1ehMBrieTPQY5GPJII4A8xFp4hvSPbfjoGdCdrJFBhUN
S2orFehREP/oTsGcmBNx0xTDnx3C+oqCw1pFaDAz3YVbgnglaca+MTAdYp7B1gEe
WxWXssb4dNvSnjbKDJcm8hFHeRRcZJzqUbGwTmXlKUdRxNHKPZH/798VuF3dSYXP
eVVSg3mfAE8kj5nXqjG5bQo62Q==
-----END CERTIFICATE-----
Generated at Thu Mar 26 01:41:29 2026 by rpki-client