Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/-4Xgjl27Bclbe9Dafl_m_OOYJv8.cer
File: -4Xgjl27Bclbe9Dafl_m_OOYJv8.cer (raw, json)
Hash identifier: RarX+lcFc+a5jv/saRF2pSPXloXS9wiSo3GNZ2rb4Ko=
Subject key identifier: FB:85:E0:8E:5D:BB:05:C9:5B:7B:D0:DA:7E:5F:E6:FC:E3:98:26:FF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 327B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:11:02 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37517
AS: 328941
IP: 41.74.128.0/20
IP: 41.215.208.0/20
IP: 41.221.192.0/20
IP: 102.207.152.0/22
IP: 102.209.52.0/22
IP: 102.209.160.0/22
IP: 102.211.8.0/22
IP: 102.213.204.0/22
IP: 102.219.86.0/23
IP: 102.220.164.0/22
IP: 197.255.128.0/20
IP: 2c0f:f438::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12923 (0x327b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:11:02 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C2BF2AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c3:53:94:6a:51:e2:b5:0d:9f:25:1c:78:fb:
b1:62:e1:4e:20:c7:a6:47:de:7c:44:e9:ad:5b:7b:
b6:98:c8:38:a5:24:03:68:1b:65:a2:e2:87:50:51:
90:16:12:ef:a0:88:56:c3:e3:cb:18:3c:fc:20:85:
23:66:94:11:c2:7f:39:89:95:44:8e:f6:60:6d:5a:
b8:a2:4f:86:dc:03:29:13:9e:7f:50:01:5a:8d:93:
b4:bc:18:b1:67:97:0b:be:b3:03:c6:1f:63:25:08:
96:05:70:11:0e:69:af:b6:68:76:cc:b9:ed:6f:96:
4a:db:88:40:cc:cb:67:53:64:06:08:48:89:14:12:
d2:cc:29:dc:f9:c3:b0:7d:99:48:16:51:c7:cf:cd:
1d:b6:b5:4a:98:ce:38:f9:b3:0a:89:87:fd:03:eb:
9f:66:d0:44:f0:11:70:d4:00:23:6e:6b:9f:76:59:
5d:df:7d:66:85:13:db:d6:42:d8:ef:3f:8d:67:7a:
8f:34:5a:b0:6c:de:b5:66:ef:9d:59:35:8a:e4:e4:
0a:14:d6:5d:79:a0:7a:6b:69:3c:d9:c6:b6:19:8a:
34:24:b7:f6:80:6c:b2:25:79:d6:98:10:71:02:ac:
10:ca:d8:88:1e:dd:e3:46:2c:d7:d6:fb:e1:fa:1c:
42:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:85:E0:8E:5D:BB:05:C9:5B:7B:D0:DA:7E:5F:E6:FC:E3:98:26:FF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37517
328941
sbgp-ipAddrBlock: critical
IPv4:
41.74.128.0/20
41.215.208.0/20
41.221.192.0/20
102.207.152.0/22
102.209.52.0/22
102.209.160.0/22
102.211.8.0/22
102.213.204.0/22
102.219.86.0/23
102.220.164.0/22
197.255.128.0/20
IPv6:
2c0f:f438::/32
Signature Algorithm: sha256WithRSAEncryption
72:66:6c:4c:8d:ec:c5:ec:d4:14:a2:8d:24:81:e5:40:19:50:
90:78:73:3f:56:41:49:a1:ca:29:02:14:dc:4a:8a:a3:a2:b5:
58:4b:4c:c2:d0:8f:fe:30:8f:59:df:69:cc:fa:c4:b3:12:a8:
34:44:86:39:42:a7:68:29:62:29:f1:83:51:ec:ea:69:ba:cb:
26:6b:92:9e:5b:e2:26:c5:3d:3f:31:6a:41:36:1a:b7:f2:0d:
2c:66:c9:9f:ec:41:24:a1:f6:48:69:a5:7d:1b:49:79:47:19:
8d:eb:35:b1:18:99:ed:ed:21:91:ce:53:a0:0d:7d:f5:e3:2b:
d8:dd:56:c1:04:ec:e0:24:89:13:09:70:c5:cd:db:82:6c:4d:
f4:db:d5:0e:9b:f3:be:2d:c7:ad:a8:c9:07:d1:96:3b:71:00:
da:1c:a9:b4:90:23:58:96:d8:a8:71:8e:52:20:da:9c:5a:1d:
cf:95:56:d2:e9:e0:54:2c:9d:85:fe:65:a0:b2:fe:5f:4c:e8:
33:89:dc:4e:11:82:fb:13:7e:bd:27:b8:5c:1e:d8:71:22:ee:
20:7b:5a:2c:48:0b:da:73:b3:cf:8b:75:25:6d:11:95:3b:89:
01:74:d1:4a:b4:24:8c:7d:fc:e8:9c:f6:32:9a:ae:b0:0b:d2:
f7:f6:c4:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:35:30 2025 by rpki-client