Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hmVxtAaXbJ-viHcwKBnPVQ554p0.cer
File: hmVxtAaXbJ-viHcwKBnPVQ554p0.cer (raw, json)
Hash identifier: 9EOOeFVI5xelPZE5aiJJDLYqMxE8wBNbmgioR+WKsgg=
Subject key identifier: 86:65:71:B4:06:97:6C:9F:AF:88:77:30:28:19:CF:55:0E:79:E2:9D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019DF82AC2F5D1B36DF03CF3672EAF725F82
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/63/fdc741-5f66-446d-a944-5bc9a63ceaf6/1/hmVxtAaXbJ-viHcwKBnPVQ554p0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/63/fdc741-5f66-446d-a944-5bc9a63ceaf6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 05 May 2026 12:44:05 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 214070
IP: 157.159.0.0/16
IP: 2001:67c:9cc::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f8:2a:c2:f5:d1:b3:6d:f0:3c:f3:67:2e:af:72:5f:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 5 12:44:05 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=866571b406976c9faf8877302819cf550e79e29d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e3:dd:7f:60:e0:bd:cf:3d:4d:06:c2:b0:51:
65:5e:15:e0:62:48:23:98:4d:a9:1a:6f:e5:bb:2a:
ad:93:e6:b3:58:99:95:cc:74:61:16:71:0e:25:fd:
fc:d0:ab:79:81:1e:a3:6f:b9:19:7d:ad:99:0b:c1:
f0:45:04:88:64:3b:a8:05:e9:9e:5c:67:e1:e9:f5:
41:5c:c5:78:02:ba:ae:cf:06:3c:22:e1:8d:d2:d8:
dd:0e:78:03:25:c0:3e:50:8a:9e:ec:de:5d:c5:be:
6c:0d:0c:0d:db:8f:3e:b3:87:01:b5:66:9e:db:34:
1e:fb:8c:55:69:7f:ef:e8:39:6d:fd:c9:c7:98:9f:
fb:e9:05:ac:cf:b2:6a:b0:e7:35:0d:70:73:b3:c2:
cf:8f:a5:c7:bd:1e:e1:2d:9d:a6:79:70:ea:19:01:
64:17:c4:b6:80:69:f1:0f:79:3e:c8:40:66:7a:46:
39:90:61:08:4d:d8:ec:8e:ad:0e:0c:32:f9:6f:18:
0d:a8:5b:b6:cd:6c:2f:04:9c:87:29:69:ab:cc:d5:
38:c0:ef:2f:ce:3a:bb:6b:52:ce:11:93:ad:5e:7c:
47:08:dc:8c:fa:2a:48:1b:9c:fb:03:f9:f4:b3:d6:
be:1c:e0:ce:4a:74:82:ef:7f:32:53:5e:5d:e2:83:
46:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:65:71:B4:06:97:6C:9F:AF:88:77:30:28:19:CF:55:0E:79:E2:9D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/fdc741-5f66-446d-a944-5bc9a63ceaf6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/fdc741-5f66-446d-a944-5bc9a63ceaf6/1/hmVxtAaXbJ-viHcwKBnPVQ554p0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.159.0.0/16
IPv6:
2001:67c:9cc::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214070
Signature Algorithm: sha256WithRSAEncryption
95:61:d0:44:b3:af:e9:b8:32:49:6b:e3:f4:06:aa:ef:1c:9e:
da:44:0c:0e:f8:d5:b5:57:e4:86:f5:ca:c8:ac:d2:59:4a:75:
c3:bf:e1:4c:e4:30:47:d9:e8:39:a5:b7:bc:a8:72:46:06:2f:
43:45:c6:83:8f:a4:c0:1c:1e:a8:c3:b1:d1:13:27:e0:58:2a:
9a:79:f3:a7:1f:ba:90:64:db:01:f4:ff:e8:0a:1c:c7:13:05:
16:31:5a:4a:f3:d2:41:e3:6e:dd:ec:70:0f:34:df:78:4c:25:
0d:69:d6:db:58:0a:ce:0b:1b:de:07:e2:45:6b:01:13:8c:a2:
5a:ba:90:b1:25:39:29:28:d9:82:23:b8:91:a5:e7:ca:58:63:
97:38:36:01:88:d9:1d:d0:8b:0c:3d:be:cc:12:fa:23:aa:8b:
2f:c6:af:2e:c0:c4:66:49:eb:d5:03:2c:42:0d:3e:e6:44:16:
b1:10:f7:bc:79:75:8c:81:46:84:94:a6:94:cb:67:23:4a:af:
fd:85:67:0f:2c:51:cb:fa:50:f6:4f:be:7c:b0:d7:02:bd:da:
a6:6b:f0:9d:2f:d5:3e:87:e0:12:86:f2:48:69:22:49:a1:41:
44:40:23:29:60:a7:80:e0:de:29:26:7d:98:f1:e2:cf:8a:f4:
d9:70:31:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:31:45 2026 by rpki-client