Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/-YeB5n2eqWryWAashtEAb4IfqjY.cer
File: -YeB5n2eqWryWAashtEAb4IfqjY.cer (raw, json)
Hash identifier: Ty1ddTfSToYMrNt3aKrXUUMdZGpgl7lcu31QLqYGIpM=
Subject key identifier: F9:87:81:E6:7D:9E:A9:6A:F2:58:06:AC:86:D1:00:6F:82:1F:AA:36
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 310B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/-YeB5n2eqWryWAashtEAb4IfqjY.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:52:20 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329370
IP: 102.210.169.0/24
IP: 2c0f:6540::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12555 (0x310b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:52:20 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3692D98AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:25:97:0f:4e:43:1b:e7:32:f1:88:01:4d:87:
9c:a7:81:fd:c1:d0:0a:43:33:f0:01:72:bd:a2:ff:
3d:22:30:ce:0f:d1:d6:e6:ba:e3:d9:ae:68:42:34:
be:18:62:e8:d2:85:83:5e:aa:b0:ba:1c:bd:c7:51:
7c:1b:61:8b:24:3b:53:33:33:d9:c2:a6:d2:d7:04:
d5:09:a4:d3:8b:c5:51:88:6d:50:d2:b9:91:f5:b8:
ef:e2:52:60:5d:0a:54:0c:a0:e5:90:b2:6a:ff:38:
c4:ed:1f:cc:52:53:b6:21:20:d6:1c:3e:b9:96:43:
29:32:f9:a3:fc:dd:ce:f8:be:11:df:5d:46:06:4f:
c0:4c:91:cd:2a:28:80:56:31:55:5d:77:db:54:76:
1a:df:9a:a2:7e:f1:7f:b1:8c:de:8c:b9:bc:6b:ab:
fa:1b:e6:32:53:53:f5:60:f3:ba:f5:1c:71:0c:cb:
51:66:c6:15:61:7e:07:e3:e3:05:7f:38:00:69:64:
7a:1a:22:e0:d7:fb:3e:d1:f0:6d:51:58:35:30:55:
90:72:d5:5f:ed:34:d3:e8:cf:6f:00:1b:16:54:93:
4e:63:c9:d5:79:75:b2:3c:06:d6:de:1f:6e:41:5d:
a2:cd:67:61:c0:42:95:b8:bc:8f:6d:77:77:6c:83:
0b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:87:81:E6:7D:9E:A9:6A:F2:58:06:AC:86:D1:00:6F:82:1F:AA:36
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/-YeB5n2eqWryWAashtEAb4IfqjY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329370
sbgp-ipAddrBlock: critical
IPv4:
102.210.169.0/24
IPv6:
2c0f:6540::/32
Signature Algorithm: sha256WithRSAEncryption
62:c6:4a:36:73:4c:ae:92:66:e8:75:5f:ff:f8:a8:ba:10:66:
8f:98:9d:76:28:3a:a7:cd:3c:54:f4:3e:38:53:5c:93:37:86:
72:33:c1:d9:8c:a3:88:47:c9:2a:02:ea:e0:63:cc:dc:84:bb:
4b:0b:6c:47:4d:9a:dc:aa:f6:86:6f:85:62:d0:2a:95:6c:64:
df:9d:6a:6c:ea:74:88:2c:4e:97:bd:45:82:1e:4f:55:51:a9:
5f:a2:f1:00:b3:a4:d6:f2:e1:ca:6a:3d:a3:27:ea:2d:75:44:
33:68:41:f6:43:ae:df:38:bd:75:c7:40:db:2e:cc:44:e0:fe:
cc:3f:05:61:0f:23:59:5e:9c:f8:65:14:ec:35:9c:f0:3b:46:
08:5d:0d:ea:2f:d4:d9:e9:32:b3:f7:f3:00:1b:cc:95:60:90:
a5:27:2e:14:4a:a4:04:1d:c6:8e:ae:3a:9e:2f:bc:29:e4:50:
60:a3:5d:e4:9e:f1:53:17:26:48:dd:fe:e3:b4:24:88:7c:1e:
d1:94:f5:7f:c8:4a:e8:41:69:e5:7d:9a:69:66:fc:27:c4:a8:
78:f3:b8:e4:da:08:02:9c:5e:70:a7:e1:16:58:a2:f9:32:ed:
8d:b6:c2:86:93:62:48:16:c9:39:2d:81:97:f1:a0:3e:8a:47:
64:22:a1:ea
-----BEGIN CERTIFICATE-----
MIIGJTCCBQ2gAwIBAgICMQswDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMzUyMjBaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjkyRDk4QUYxMTAvBgNVBAUTKEY5ODc4MUU2N0Q5RUE5NkFGMjU4MDZB
Qzg2RDEwMDZGODIxRkFBMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCcJZcPTkMb5zLxiAFNh5yngf3B0ApDM/ABcr2i/z0iMM4P0dbmuuPZrmhCNL4Y
YujShYNeqrC6HL3HUXwbYYskO1MzM9nCptLXBNUJpNOLxVGIbVDSuZH1uO/iUmBd
ClQMoOWQsmr/OMTtH8xSU7YhINYcPrmWQyky+aP83c74vhHfXUYGT8BMkc0qKIBW
MVVdd9tUdhrfmqJ+8X+xjN6Mubxrq/ob5jJTU/Vg87r1HHEMy1FmxhVhfgfj4wV/
OABpZHoaIuDX+z7R8G1RWDUwVZBy1V/tNNPoz28AGxZUk05jydV5dbI8BtbeH25B
XaLNZ2HAQpW4vI9td3dsgwunAgMBAAGjggMaMIIDFjAdBgNVHQ4EFgQU+YeB5n2e
qWryWAashtEAb4IfqjYwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY5MkQ5OC9BRkU5NUY3NDk4RjAx
MUVFOEE0N0NBNTlEMjVCRTQ2NS8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OTJEOTgvQUZFOTVGNzQ5OEYwMTFFRThBNDdDQTU5RDI1QkU0NjUvLVllQjVu
MmVxV3J5V0Fhc2h0RUFiNElmcWpZLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFBpowLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBABm0qkwDQQCAAIwBwMF
ACwPZUAwDQYJKoZIhvcNAQELBQADggEBAGLGSjZzTK6SZuh1X//4qLoQZo+YnXYo
OqfNPFT0PjhTXJM3hnIzwdmMo4hHySoC6uBjzNyEu0sLbEdNmtyq9oZvhWLQKpVs
ZN+damzqdIgsTpe9RYIeT1VRqV+i8QCzpNby4cpqPaMn6i11RDNoQfZDrt84vXXH
QNsuzETg/sw/BWEPI1lenPhlFOw1nPA7RghdDeov1NnpMrP38wAbzJVgkKUnLhRK
pAQdxo6uOp4vvCnkUGCjXeSe8VMXJkjd/uO0JIh8HtGU9X/ISuhBaeV9mmlm/CfE
qHjzuOTaCAKcXnCn4RZYovky7Y22woaTYkgWyTktgZfxoD6KR2Qioeo=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:47:01 2025 by rpki-client