Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cIPC79QTNUG2RbZheEzd1JxInFs.cer
File: cIPC79QTNUG2RbZheEzd1JxInFs.cer (raw, json)
Hash identifier: DSAQI3oS8hp9seWcWcseaW1VJoA8ren6QBt2wYi/U8c=
Subject key identifier: 70:83:C2:EF:D4:13:35:41:B6:45:B6:61:78:4C:DD:D4:9C:48:9C:5B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019CBE43A6E7B9E524FE1C1AD1344D96B0CE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/d36409-8845-4fa3-9dbd-9834171eb7d6/1/cIPC79QTNUG2RbZheEzd1JxInFs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/d36409-8845-4fa3-9dbd-9834171eb7d6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 05 Mar 2026 13:50:30 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 35316
IP: 193.47.78.0/24
IP: 193.239.222.0/23
IP: 2001:678:11f4::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:be:43:a6:e7:b9:e5:24:fe:1c:1a:d1:34:4d:96:b0:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 5 13:50:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7083c2efd4133541b645b661784cddd49c489c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:b4:86:30:0b:77:ab:95:66:e6:a5:a4:25:
08:f2:b0:14:af:d8:01:5f:f7:ae:40:a1:3f:7a:a6:
6b:1b:5e:48:27:9e:90:31:ea:d9:5f:5f:a4:2d:b2:
06:48:18:3e:a0:8b:76:44:26:aa:4c:ba:2a:f1:bf:
3c:b3:41:5c:70:f8:fe:3e:5a:28:20:23:c5:ce:d6:
db:4c:83:8a:68:aa:64:6d:34:ea:2a:de:1f:17:1d:
e5:bd:eb:de:64:a1:80:53:6b:e9:c1:56:ed:4b:10:
cd:19:3a:3a:84:08:4f:74:82:fd:a4:7f:b6:8d:10:
61:47:20:f7:0c:51:ae:3b:22:c2:a2:fc:7d:b0:1f:
d3:d3:0d:e4:68:14:a4:76:64:56:91:56:d4:52:df:
80:0a:5f:f2:b2:05:d6:3e:95:04:ff:5e:10:56:26:
88:29:47:9c:5d:79:c0:a2:07:4f:57:4b:42:66:83:
ba:32:9b:e8:3b:9c:85:35:0b:eb:9a:38:b9:cb:b9:
1b:c2:d1:67:dd:5e:cb:7a:a3:b1:40:34:91:0f:71:
6b:a6:02:dc:d8:00:cb:85:fa:b1:6b:41:18:af:51:
6a:34:3d:e4:ae:4c:7f:7c:20:c8:b3:97:c4:37:c2:
ce:82:80:be:f5:4f:4b:8a:75:8b:18:65:a2:c9:c6:
7f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:83:C2:EF:D4:13:35:41:B6:45:B6:61:78:4C:DD:D4:9C:48:9C:5B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d36409-8845-4fa3-9dbd-9834171eb7d6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d36409-8845-4fa3-9dbd-9834171eb7d6/1/cIPC79QTNUG2RbZheEzd1JxInFs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.78.0/24
193.239.222.0/23
IPv6:
2001:678:11f4::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35316
Signature Algorithm: sha256WithRSAEncryption
06:25:ad:c9:79:5b:a3:bc:f8:ba:77:dd:c4:c4:2c:42:69:28:
2d:63:cf:52:05:8a:ec:6b:c3:d1:d4:20:f4:80:e5:91:b0:df:
da:ac:51:7b:40:8a:36:99:d7:68:6a:7b:77:f2:dd:55:de:1d:
56:98:b4:fe:1f:49:d0:3f:b3:cc:29:47:60:05:11:82:44:54:
99:53:d1:10:c4:c6:a7:01:24:eb:59:e2:09:11:b8:cc:26:2b:
01:39:a9:22:9c:95:9f:9a:f5:6e:15:4c:0d:0c:08:6e:f1:7d:
bf:f5:12:41:bf:e9:a6:c9:a6:84:6e:1f:b3:0d:d2:cd:63:aa:
86:31:de:00:5d:2a:95:61:b8:3f:09:3b:5d:45:fe:93:8a:0c:
11:34:5a:53:4f:ea:bc:9e:66:06:8f:41:c0:aa:67:d4:2f:dc:
31:20:22:09:6d:52:92:2b:9c:09:dd:18:84:89:cc:5c:62:f1:
48:bf:cd:eb:83:8e:91:99:91:48:78:91:84:14:23:85:ac:c7:
bd:32:bc:d6:bb:6b:21:d7:f7:2a:04:3f:e4:d5:df:3b:6e:6a:
83:fb:93:3f:b4:76:68:fd:d1:d0:9e:ec:2c:8f:dd:d2:a1:3d:
14:f6:bf:f8:d7:ad:f8:91:72:23:8b:85:15:ba:1c:7c:12:79:
c9:ee:72:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 22:56:25 2026 by rpki-client