Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/1_pzTirYg6eruOt2mcdBlN3zfqM.cer
File: 1_pzTirYg6eruOt2mcdBlN3zfqM.cer (raw, json)
Hash identifier: SaFnmhyEeduZxetVEzi8jIeofRxjTsVCb0ILWntkDTw=
Subject key identifier: D7:FA:73:4E:2A:D8:83:A7:AB:B8:EB:76:99:C7:41:94:DD:F3:7E:A3
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 332E
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E1EE5/C3A862D6934111ED944CED8CF1222468/1_pzTirYg6eruOt2mcdBlN3zfqM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E1EE5/C3A862D6934111ED944CED8CF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:50:54 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327982
IP: 2c0f:f2d0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13102 (0x332e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:50:54 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E1EE5AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2d:96:b3:00:34:40:e0:f2:b3:a1:7b:c8:87:
81:e3:47:cc:aa:a5:74:c5:76:03:50:ce:68:14:6d:
88:90:81:1d:82:14:df:9c:b8:42:fd:93:0f:02:17:
bf:63:f5:cd:f9:41:8f:ae:89:26:6d:ba:2c:48:0a:
6e:61:5d:66:c2:69:96:04:70:f3:a9:9c:b3:f0:d9:
1f:6d:94:83:92:cf:a8:a5:20:83:6b:7e:b1:51:47:
8b:9e:2e:b9:d2:43:b2:58:60:81:8e:7b:f1:c5:6c:
29:67:09:64:3d:d9:1e:2e:4e:c5:de:a7:bb:eb:19:
e7:c3:2a:69:7f:d6:f2:7f:45:e4:46:ca:ce:17:7a:
c8:c1:55:4a:e7:50:b4:28:36:5b:0e:3e:d1:02:12:
f1:87:0b:dd:b5:ac:ac:3a:76:43:a8:dd:43:85:2e:
1d:ae:fe:08:bf:ea:7e:6a:86:67:59:91:93:bc:a8:
58:27:65:94:bc:9d:4e:77:41:4b:23:51:b4:79:3c:
08:ab:b0:81:9a:25:84:d2:dd:15:02:6e:db:c8:0b:
65:19:85:25:25:78:00:3f:cf:67:cf:e9:99:f5:88:
8f:7a:93:b8:47:df:87:97:6f:9f:92:40:d5:95:fb:
6c:79:f3:dc:a7:87:aa:81:28:8c:39:d7:16:a1:ae:
1b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:FA:73:4E:2A:D8:83:A7:AB:B8:EB:76:99:C7:41:94:DD:F3:7E:A3
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1EE5/C3A862D6934111ED944CED8CF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1EE5/C3A862D6934111ED944CED8CF1222468/1_pzTirYg6eruOt2mcdBlN3zfqM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327982
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f2d0::/32
Signature Algorithm: sha256WithRSAEncryption
9f:0b:d5:6d:6e:67:95:48:c6:ae:37:0d:6e:27:36:87:43:f1:
94:59:44:f7:a6:15:98:71:b4:85:95:c0:d5:f9:72:7a:5f:6e:
de:0a:ea:57:03:2c:7a:b0:63:5f:49:d8:23:b7:99:86:fe:b1:
b8:33:09:c0:99:db:66:9e:f8:7d:c2:00:b4:88:78:13:d8:fb:
21:16:24:20:c9:fc:73:8f:d3:74:db:da:d3:7e:38:42:40:de:
47:c3:cb:74:6e:11:3e:d5:f0:38:bc:81:e3:2f:78:8f:f4:07:
74:1c:53:64:59:5c:17:f4:55:9f:5e:49:2f:ae:a5:2c:dc:a6:
47:c7:68:ca:7f:dc:7d:36:e1:6e:4b:ba:47:11:8d:29:01:a6:
4b:83:92:ec:32:36:af:50:57:1a:c9:aa:c0:bb:c5:e2:13:f2:
f8:21:16:78:92:a7:8a:f0:a0:50:7e:63:99:ad:d8:a8:e8:52:
01:70:f0:7e:d1:5c:53:49:84:8d:9a:18:a4:f6:5f:fa:99:4e:
78:7a:f0:51:da:47:a7:ed:47:a1:d4:b0:75:3a:ec:c0:83:b5:
06:40:cf:79:7d:6e:69:80:27:0b:1e:bf:c8:b9:6d:4c:22:98:
04:d5:53:b3:bf:b8:ac:8d:cc:a1:ab:4b:b1:3b:00:cf:ec:15:
76:53:d8:a6
-----BEGIN CERTIFICATE-----
MIIGFzCCBP+gAwIBAgICMy4wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwNTUwNTRaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkUxRUU1QUYxMTAvBgNVBAUTKEQ3RkE3MzRFMkFEODgzQTdBQkI4RUI3
Njk5Qzc0MTk0RERGMzdFQTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC5LZazADRA4PKzoXvIh4HjR8yqpXTFdgNQzmgUbYiQgR2CFN+cuEL9kw8CF79j
9c35QY+uiSZtuixICm5hXWbCaZYEcPOpnLPw2R9tlIOSz6ilIINrfrFRR4ueLrnS
Q7JYYIGOe/HFbClnCWQ92R4uTsXep7vrGefDKml/1vJ/ReRGys4XesjBVUrnULQo
NlsOPtECEvGHC921rKw6dkOo3UOFLh2u/gi/6n5qhmdZkZO8qFgnZZS8nU53QUsj
UbR5PAirsIGaJYTS3RUCbtvIC2UZhSUleAA/z2fP6Zn1iI96k7hH34eXb5+SQNWV
+2x589ynh6qBKIw51xahrhslAgMBAAGjggMMMIIDCDAdBgNVHQ4EFgQU1/pzTirY
g6eruOt2mcdBlN3zfqMwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZFMUVFNS9DM0E4NjJENjkzNDEx
MUVEOTQ0Q0VEOENGMTIyMjQ2OC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RTFFRTUvQzNBODYyRDY5MzQxMTFFRDk0NENFRDhDRjEyMjI0NjgvMV9welRp
cllnNmVydU90Mm1jZEJsTjN6ZnFNLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFAS4wIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAsD/LQMA0GCSqGSIb3
DQEBCwUAA4IBAQCfC9VtbmeVSMauNw1uJzaHQ/GUWUT3phWYcbSFlcDV+XJ6X27e
CupXAyx6sGNfSdgjt5mG/rG4MwnAmdtmnvh9wgC0iHgT2PshFiQgyfxzj9N029rT
fjhCQN5Hw8t0bhE+1fA4vIHjL3iP9Ad0HFNkWVwX9FWfXkkvrqUs3KZHx2jKf9x9
NuFuS7pHEY0pAaZLg5LsMjavUFcayarAu8XiE/L4IRZ4kqeK8KBQfmOZrdio6FIB
cPB+0VxTSYSNmhik9l/6mU54evBR2ken7Ueh1LB1OuzAg7UGQM95fW5pgCcLHr/I
uW1MIpgE1VOzv7isjcyhq0uxOwDP7BV2U9im
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:45:49 2025 by rpki-client