Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
File: 4CGdWkzYWCxPN-LQ3dcGt369n2w.cer (raw, json)
Hash identifier: oiyrQJqSvsmgXYZw+yoR8LCRLZNJ7pMF8umkF71oJio=
Subject key identifier: E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F9F
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:37:57 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 18922
AS: 27576
IP: 196.43.96.0/19
IP: 2001:42b0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12191 (0x2f9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:37:57 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36663C2AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:38:9d:34:e6:38:a1:26:f7:4e:dc:f3:2d:94:
0c:e7:a4:cd:58:64:59:17:7b:88:3a:67:9b:88:36:
50:ff:b5:8f:e2:fb:ab:7a:2a:a7:a2:1f:9d:63:c5:
46:0f:74:2f:a3:6f:b9:0a:5f:15:f6:93:3b:ae:9e:
fe:cf:d3:2d:8c:61:17:d0:fa:4a:9f:a7:69:1d:c4:
65:d8:df:cf:1b:97:bf:0b:84:21:f0:6f:a7:9e:55:
8e:26:95:70:32:06:ae:a6:d8:9e:3f:27:bb:52:de:
18:c2:07:5b:69:24:8f:73:d2:80:0f:2d:bf:d5:d1:
37:e0:79:11:f6:b7:36:6d:d1:04:24:e6:c7:20:1d:
b8:a6:07:83:3e:4b:10:ae:b0:ef:98:40:9a:23:c7:
c6:bd:55:99:b0:a8:99:eb:05:24:a2:4d:b4:70:42:
45:e2:e6:ea:6f:26:fc:03:99:cb:c6:ee:8d:af:a2:
81:e3:3e:6f:6e:4b:20:e3:bf:b2:0b:42:21:19:fe:
fe:b0:2a:10:4e:d6:81:67:50:d2:8e:a1:e3:2a:ee:
f0:a1:42:37:41:b2:82:69:2c:d6:6f:e2:fe:dd:c6:
7d:d1:6e:b5:3e:c9:d8:bf:fa:e4:0e:7b:a2:93:dc:
d6:f4:9f:f1:98:8e:e7:9b:02:a4:27:0f:84:f1:f8:
df:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18922
27576
sbgp-ipAddrBlock: critical
IPv4:
196.43.96.0/19
IPv6:
2001:42b0::/32
Signature Algorithm: sha256WithRSAEncryption
7b:f1:b9:eb:19:52:66:84:f5:6a:fd:fe:d6:43:a1:61:df:47:
69:f8:3a:15:fd:fe:53:15:84:13:f7:92:89:63:0a:5f:de:3a:
07:8e:86:6c:20:9d:6d:87:40:84:cf:75:aa:99:60:20:43:1f:
e4:92:8f:c6:ff:34:e7:b0:01:c6:a0:cc:36:15:07:96:16:b2:
f3:67:1a:4a:26:5f:62:fd:fc:52:46:1c:83:c0:ef:b0:e2:d2:
b0:69:1c:ac:84:13:e4:84:b7:5b:5a:dc:0a:c4:a1:fd:ca:0a:
80:ea:7d:85:54:61:85:93:95:98:5e:ff:ec:8f:3b:b1:2f:ca:
a1:69:7e:ae:3b:26:da:c9:b9:16:91:e3:75:93:1e:36:5c:4f:
d1:c9:01:58:9f:8e:da:1c:de:46:18:bc:cc:21:89:c8:84:43:
a4:29:41:d6:c1:10:47:42:77:da:69:1b:38:ea:e3:f6:02:05:
be:55:c4:35:6c:c0:65:c2:ab:d7:3c:01:2f:8b:cd:3b:22:76:
3e:c0:16:e0:50:cc:f2:43:bd:50:06:c0:bb:dc:5d:0c:6e:ef:
a7:3a:64:82:1a:f1:e7:7b:22:4b:ba:ff:f6:77:e5:72:41:92:
ce:c1:f9:4a:2d:29:69:84:9d:cf:54:c1:23:d7:ed:c0:e7:4c:
0c:c3:f9:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:57:25 2025 by rpki-client