Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/5MLmv0RjyOw0LEVfP-AW5c5TiH8.cer
File: 5MLmv0RjyOw0LEVfP-AW5c5TiH8.cer (raw, json)
Hash identifier: PF0YG13LEVULS+1jT+VSm45uXJyLL7tENq8emECs/lY=
Subject key identifier: E4:C2:E6:BF:44:63:C8:EC:34:2C:45:5F:3F:E0:16:E5:CE:53:88:7F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 32EE
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/5MLmv0RjyOw0LEVfP-AW5c5TiH8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:35:58 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37599
IP: 102.220.102.0/23
IP: 196.10.98.0/23
IP: 2001:43f8:3e0::/44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13038 (0x32ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:35:58 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36D6E6DAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f4:bb:74:bc:46:5f:bf:f9:e2:a4:69:a6:dd:
55:3f:ba:6d:e0:b4:43:e6:e6:e8:3b:6e:b7:07:f8:
f9:6d:e1:55:04:11:29:35:8e:f0:8e:d7:33:82:bb:
b9:c1:d0:40:fa:af:b5:08:86:8f:1c:0e:74:1b:24:
1a:0f:92:e0:2c:1b:e9:82:8e:51:fb:87:d4:4a:2f:
83:56:f2:62:e9:17:de:2b:61:0c:6d:1d:31:75:07:
ef:ae:f7:9c:ac:80:77:a2:34:36:0c:d1:49:8e:af:
28:dc:7e:32:de:68:90:15:f7:b4:6c:85:05:81:03:
ac:1d:7c:7e:c3:b0:34:74:7b:ad:fe:98:34:09:9d:
9c:37:ed:fe:37:c8:b3:0a:80:66:1b:b4:e2:24:7b:
5c:8b:09:77:fc:66:68:30:1c:e6:c0:0f:0f:24:f4:
8b:8f:52:0c:77:60:2d:7d:1a:5b:a9:d5:e5:e4:a5:
48:f8:6f:86:a3:76:b2:44:7a:8e:24:e9:e9:a7:ff:
e6:be:c6:b6:83:85:9f:c9:44:88:cc:19:f0:ca:45:
59:6f:64:81:e7:6a:02:95:56:5f:b8:6a:2a:2d:7c:
87:d0:e1:8f:ad:d3:6e:05:db:77:81:f9:e3:2d:a5:
81:dc:f6:8a:1a:98:dd:57:55:04:01:08:29:ab:f1:
1a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C2:E6:BF:44:63:C8:EC:34:2C:45:5F:3F:E0:16:E5:CE:53:88:7F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/5MLmv0RjyOw0LEVfP-AW5c5TiH8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37599
sbgp-ipAddrBlock: critical
IPv4:
102.220.102.0/23
196.10.98.0/23
IPv6:
2001:43f8:3e0::/44
Signature Algorithm: sha256WithRSAEncryption
68:7c:2a:4d:07:4e:df:92:e8:64:ac:ed:a2:c2:1f:57:25:32:
21:54:44:f7:65:2f:78:ff:1c:ce:d7:a1:c1:5c:ce:d2:e0:0d:
75:6f:26:ab:38:8f:6d:b7:8d:bb:d5:d1:f0:cf:72:e8:99:c6:
78:59:7d:3b:73:dd:f8:b7:4d:e6:d3:51:b3:1c:62:a6:ae:67:
9a:1a:bf:66:4c:1b:59:1e:9c:31:8d:42:5f:99:d6:de:d0:9d:
a8:59:54:94:06:a6:94:98:d5:4a:cc:43:e9:31:3d:6d:75:68:
92:6e:5a:cc:79:69:85:d6:dc:fa:37:a1:5c:e4:87:76:05:81:
b5:5d:e5:13:b6:32:cc:b9:f3:8b:72:85:10:3f:03:c5:51:04:
81:17:3c:8d:f8:0d:f6:90:29:79:8d:a5:4e:9a:ca:25:65:d8:
8f:27:aa:ef:92:21:2b:ad:22:d2:44:0b:43:22:47:83:51:fd:
fd:06:78:e4:9d:5e:7f:76:bd:c0:c2:1e:54:89:a7:69:ae:88:
5e:b6:46:83:2e:94:76:c0:3c:4d:a3:c2:3b:ed:a6:35:87:03:
5e:fc:f0:d1:c3:98:2f:7e:0c:7b:1b:6a:46:ca:60:8a:3a:86:
51:99:52:dd:28:11:99:47:89:7f:54:2c:7e:d5:6b:40:1d:2a:
5b:d5:97:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:40:34 2025 by rpki-client