Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mAScy5olSKAa-jAXQVFXSgx6QSw.cer
File: mAScy5olSKAa-jAXQVFXSgx6QSw.cer (raw, json)
Hash identifier: gmvn3YK5u0drY987IYI/U1uKsp9oN9p2hLAMI+rmaP4=
Subject key identifier: 98:04:9C:CB:9A:25:48:A0:1A:FA:30:17:41:51:57:4A:0C:7A:41:2C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019CFC24A695DB192D6D66A50E0E2881B523
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/30/d2eb2f-5159-4144-812d-92c7cfaa8b7d/1/mAScy5olSKAa-jAXQVFXSgx6QSw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/30/d2eb2f-5159-4144-812d-92c7cfaa8b7d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 17 Mar 2026 14:13:06 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 200079
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:fc:24:a6:95:db:19:2d:6d:66:a5:0e:0e:28:81:b5:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 17 14:13:06 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=98049ccb9a2548a01afa30174151574a0c7a412c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ac:0a:7c:fa:2c:1b:12:b5:17:d8:cb:b7:e0:
c2:73:ca:ee:ad:5e:e1:58:bb:0a:92:37:31:60:6e:
c5:fd:f2:ea:7d:a4:6b:bd:eb:16:f9:61:a2:c8:5e:
4e:4d:23:d9:3f:ac:04:eb:7d:4b:a5:da:84:ad:76:
e5:29:b9:37:78:23:53:30:b5:46:e0:2c:b5:18:67:
a3:fc:95:84:61:59:9b:6a:d8:8f:53:93:81:0c:6d:
41:2a:99:60:64:6a:a8:d9:78:8f:94:e9:bb:08:c8:
cd:19:d2:48:bd:c5:94:ce:fb:c7:eb:70:a1:8c:af:
bd:23:76:04:0a:4e:a9:44:6c:18:c0:95:1f:82:74:
79:ab:e1:5e:30:a0:b6:c8:ff:21:61:2d:64:d1:ef:
4e:78:22:46:05:05:d4:2b:fb:3d:a0:c4:3f:ab:1e:
c2:d1:c1:a3:bc:52:49:24:0c:4a:6b:8f:2f:fe:8f:
3d:06:88:93:03:70:df:39:19:77:9d:75:ac:81:92:
81:1f:8b:49:a4:ee:c2:5b:eb:6b:c7:48:d0:de:8d:
30:63:43:b7:0e:26:9e:b2:23:6f:22:01:6a:ed:d0:
d6:8d:52:b1:e9:09:5c:ad:ce:b7:d8:ae:04:e6:3f:
c7:fe:12:20:37:fa:07:a4:85:c9:b1:83:f7:32:64:
97:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:04:9C:CB:9A:25:48:A0:1A:FA:30:17:41:51:57:4A:0C:7A:41:2C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d2eb2f-5159-4144-812d-92c7cfaa8b7d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d2eb2f-5159-4144-812d-92c7cfaa8b7d/1/mAScy5olSKAa-jAXQVFXSgx6QSw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200079
Signature Algorithm: sha256WithRSAEncryption
44:92:38:55:18:c2:49:6a:1d:20:d0:78:49:c0:0b:78:40:9f:
29:6a:46:c9:6f:35:94:a2:80:fd:f7:02:6c:38:02:d3:3c:eb:
1b:e2:7c:67:3e:e3:18:bc:c8:9e:01:ed:38:c8:d0:de:60:cd:
b4:68:8b:7e:03:7a:1f:8f:ed:ff:78:a5:bc:69:76:e6:54:88:
2f:f2:50:dd:dc:31:04:ec:0c:53:2f:2c:65:50:69:88:b5:b4:
4a:2b:5b:56:08:3d:f3:45:6e:98:82:0d:29:24:42:48:18:8a:
02:5d:86:0b:84:33:11:95:a6:dc:b6:08:7e:38:0c:aa:5d:24:
28:7d:eb:06:7f:fa:c8:23:76:97:88:14:15:58:ce:b3:80:0a:
76:a1:37:27:93:56:c8:dd:28:af:eb:e1:f0:31:a0:f9:41:ad:
a3:69:f8:02:7a:93:44:50:57:6a:6a:9b:11:02:0b:d4:ee:22:
df:37:ac:f2:02:95:b2:96:3b:a1:da:8b:67:e2:2c:83:4a:16:
15:62:6e:a3:d3:dc:67:97:ef:cd:2b:25:ef:d9:7c:d5:2c:e5:
22:35:3c:73:74:90:5b:bf:d4:c7:67:1e:b8:f9:d0:d8:2e:20:
0e:b0:fb:6d:da:c0:4b:17:53:74:b0:07:05:92:d9:40:f2:ff:
f0:1d:9f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 22:35:36 2026 by rpki-client