Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/7PbzU5pP4IyibRf5jcsVmgR8v-g.cer
File: 7PbzU5pP4IyibRf5jcsVmgR8v-g.cer (raw, json)
Hash identifier: q06HhRiwfkbZgwwfAew0cHY3rng+D/YcP0XQ2Haj7n8=
Subject key identifier: EC:F6:F3:53:9A:4F:E0:8C:A2:6D:17:F9:8D:CB:15:9A:04:7C:BF:E8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F7A
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/7PbzU5pP4IyibRf5jcsVmgR8v-g.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:30:36 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328501
IP: 102.64.112.0/23
IP: 102.216.36.0/23
IP: 2001:43f8:13b0::/47
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12154 (0x2f7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:30:36 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3662F58AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:98:41:fc:e6:6c:48:22:f3:36:d1:b1:8f:d4:
c7:30:f6:40:f3:d4:2e:d4:87:11:1b:d5:fa:c5:87:
12:c9:ca:8d:54:07:a7:66:08:a9:6e:10:d1:3b:61:
25:0b:4e:60:c1:32:dc:0f:34:1a:ae:c8:cf:1d:08:
33:56:42:50:1d:ae:40:2b:12:29:6e:e0:f0:30:04:
36:69:66:30:65:b4:a4:83:c6:68:86:4b:8f:c4:6a:
dc:0f:de:02:97:8f:85:6a:87:ab:f0:a8:27:73:bc:
18:cc:0c:d7:c3:68:43:24:b2:d4:84:d0:1f:68:26:
e3:f0:96:65:5e:30:ba:90:f5:fb:71:13:46:4c:d9:
d6:c4:68:92:61:cb:3d:d2:32:69:d7:53:98:68:68:
85:9c:6f:51:21:29:97:2a:6b:3a:4a:ea:ed:74:95:
11:3b:a6:47:7c:c2:ec:75:cf:70:08:2f:7d:b2:78:
80:71:c6:d2:f0:77:37:f8:9e:e4:a0:2c:41:dc:64:
27:aa:a9:1c:9b:37:ae:f6:29:a1:ec:e7:64:7c:19:
62:84:8e:0a:45:8f:37:4d:09:96:26:62:13:30:48:
c1:2b:cf:7d:ad:5c:4c:5a:dc:19:32:db:17:22:79:
ad:d7:b2:54:fb:d7:d2:47:5d:c1:63:b3:6e:11:81:
b2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F6:F3:53:9A:4F:E0:8C:A2:6D:17:F9:8D:CB:15:9A:04:7C:BF:E8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/7PbzU5pP4IyibRf5jcsVmgR8v-g.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328501
sbgp-ipAddrBlock: critical
IPv4:
102.64.112.0/23
102.216.36.0/23
IPv6:
2001:43f8:13b0::/47
Signature Algorithm: sha256WithRSAEncryption
96:8d:48:f1:1c:ea:b9:53:c3:c9:8a:9e:07:fd:31:10:81:1f:
67:42:a7:9a:02:69:1b:69:6e:65:f7:bd:11:29:d4:b3:6c:6c:
a7:21:98:f9:f1:59:10:34:fb:52:42:3f:01:46:9f:26:15:b8:
ce:db:26:9a:90:49:95:eb:17:3a:0b:9f:85:b6:14:7c:35:b0:
5d:e6:95:eb:17:e8:cb:03:3d:cf:1f:8b:b3:ea:e1:3b:72:0b:
07:6b:d5:f5:b9:74:4a:32:4f:ce:ab:0f:53:45:21:f3:2a:0a:
ce:8f:9c:27:aa:be:85:5e:96:79:28:85:81:9a:65:41:ae:43:
1a:a4:98:d2:a3:ff:29:3f:b5:c4:37:26:cb:f2:97:e4:05:25:
07:6a:d3:38:6f:8f:21:0c:9f:35:be:06:65:be:2a:66:98:4f:
42:d9:29:28:b0:85:a3:e8:95:e7:f6:ba:58:f5:6a:e6:f0:1e:
6a:b9:6a:5b:b9:71:63:43:6f:7c:8b:9d:89:b4:ff:f9:cb:3e:
6d:a4:06:b9:8b:d5:37:06:77:44:85:9d:a8:37:09:74:41:d0:
26:12:8a:3f:62:ef:bd:84:e9:3d:94:df:d6:5b:83:1a:49:3c:
e4:9b:36:a3:68:d8:10:3c:bd:6f:d3:c0:51:fa:4b:84:53:90:
c0:85:a2:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:31:52 2025 by rpki-client