Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/3YlMw4XaLW71JrsLssqqX8pm8MM.cer
File: 3YlMw4XaLW71JrsLssqqX8pm8MM.cer (raw, json)
Hash identifier: AYPqPNk/kM341dRg7w+M7SZgtLw1G14lEgRkgz3AeDc=
Subject key identifier: DD:89:4C:C3:85:DA:2D:6E:F5:26:BB:0B:B2:CA:AA:5F:CA:66:F0:C3
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 31B2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36A39CE/792DDDBE0B5311EEA6555E5D4AD9E6FC/3YlMw4XaLW71JrsLssqqX8pm8MM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36A39CE/792DDDBE0B5311EEA6555E5D4AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:28:10 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327786
IP: 2c0f:6740::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12722 (0x31b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:28:10 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36A39CEAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2e:bc:18:9b:94:e9:07:9a:fa:8c:dc:02:f6:
e0:83:91:de:03:6a:0c:27:b5:4e:4f:9d:51:38:c0:
4e:92:5b:f3:94:dc:5a:68:02:85:f2:22:e2:31:a6:
c1:1e:13:7f:e0:7e:f5:a7:a9:8b:40:bc:39:21:2f:
aa:dd:e1:4e:e6:c6:8d:20:87:a5:4e:17:70:3f:22:
06:47:22:e0:32:df:c7:0e:08:94:39:45:c1:76:43:
3d:ae:47:5a:af:80:69:46:7d:27:f9:24:07:d4:a4:
88:bb:6a:15:b5:70:b8:2c:e2:84:68:57:63:20:39:
d1:c1:3a:da:7e:e1:95:54:a6:c5:bd:63:74:4a:47:
a1:4c:71:4b:4b:40:be:da:a6:3f:ee:64:19:85:4e:
a2:38:87:4c:19:fa:15:68:ba:40:13:48:7e:d7:48:
ea:10:ac:b4:14:49:60:c0:db:2b:c6:7a:29:42:e4:
71:99:92:1d:89:fb:c0:06:58:08:4b:0e:77:c6:17:
6b:46:e6:26:81:0b:ca:bd:4f:b6:c4:6c:58:c3:a1:
44:06:64:5b:66:26:47:ac:3e:f4:f9:8c:a2:c2:d4:
cd:54:80:eb:cf:2e:a1:78:cc:b8:fa:44:35:ef:46:
d8:f1:71:b8:ff:be:05:ae:6f:41:ab:14:1a:5e:e1:
10:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:89:4C:C3:85:DA:2D:6E:F5:26:BB:0B:B2:CA:AA:5F:CA:66:F0:C3
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A39CE/792DDDBE0B5311EEA6555E5D4AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A39CE/792DDDBE0B5311EEA6555E5D4AD9E6FC/3YlMw4XaLW71JrsLssqqX8pm8MM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327786
sbgp-ipAddrBlock: critical
IPv6:
2c0f:6740::/32
Signature Algorithm: sha256WithRSAEncryption
8b:0f:dd:0b:d9:53:2d:9d:4a:cd:76:46:28:e6:e6:97:29:b9:
b8:6c:d9:3e:80:0e:d8:4c:a9:c8:5a:c1:a5:9a:53:22:20:f1:
a3:07:2a:60:0d:5a:2a:09:d2:b2:47:f5:51:61:f2:0b:9d:f6:
5e:70:74:7b:43:95:b2:57:ba:c1:13:f2:05:7c:ab:94:db:30:
6d:9b:07:87:93:98:6f:f9:78:26:b9:18:c1:db:5d:55:26:c6:
61:73:ff:46:58:50:9b:72:57:81:c0:8f:0f:e2:9a:a9:6a:d2:
8c:d5:21:15:bc:f7:f7:4b:55:5d:13:bd:58:d3:be:cd:08:9e:
c5:0a:9f:6f:4b:7e:40:77:98:80:3c:41:28:0b:67:fa:93:12:
3e:13:2b:cc:d3:a1:b9:72:3e:70:0d:13:92:99:e6:e2:96:ab:
6f:57:24:19:53:54:8b:9d:9d:0b:08:b4:a9:69:7c:2d:83:08:
31:4d:1e:25:e9:31:ce:f2:66:c6:5e:0b:53:b0:10:e3:a4:b4:
6e:44:66:b0:34:b1:2e:9b:8b:47:22:85:7c:ac:f6:24:d8:83:
68:28:95:cf:b7:4f:6f:bc:80:4b:eb:ff:96:a9:f3:5e:1d:ae:
65:04:8f:c7:2c:85:11:97:83:9e:2b:6b:be:38:c5:fe:cf:1e:
af:e1:87:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:51:18 2025 by rpki-client