Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer
File: 83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer (raw, json)
Hash identifier: MrfghjBK8PyCOGS7IdUnpWO2ufoNiTGeJdEUzmmyPpM=
Subject key identifier: F3:77:D4:D4:28:F9:46:5B:15:44:9C:6A:FD:45:32:C4:22:44:69:64
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3584
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Tue 08 Jul 2025 00:05:36 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328611
IP: 102.23.220.0/22
IP: 102.205.132.0/22
IP: 102.207.52.0 -- 102.207.59.255
IP: 102.207.132.0/22
IP: 102.208.56.0/22
IP: 102.211.4.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 01 Aug 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13700 (0x3584)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jul 8 00:05:36 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36EF186AF, serialNumber=F377D4D428F9465B15449C6AFD4532C422446964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:43:c0:06:12:dd:76:8a:e4:bd:e0:a6:29:cf:
2c:99:6e:dc:69:cd:5e:5f:6a:a0:d7:07:f4:e7:07:
5f:ad:64:72:3c:b9:da:de:76:06:6c:cd:aa:8e:1f:
4d:da:25:68:96:bc:6b:fc:e3:cd:0c:a6:c1:13:f6:
f9:2f:cc:b9:c0:75:b8:99:c0:e8:a0:1c:2c:72:a2:
89:3d:dc:6e:12:d8:5a:25:25:bd:19:b5:2b:b4:44:
ad:a3:58:19:dc:6c:5b:2a:5a:67:ed:7f:40:c0:c9:
23:e0:50:69:92:84:9c:b6:d5:56:4a:6f:9e:2f:19:
3e:d6:4e:00:c5:f3:5f:08:ea:6d:ad:a9:76:10:7e:
20:7a:7f:cc:0a:63:fd:55:0e:7c:eb:d9:60:92:59:
38:6d:e6:c1:0a:03:d8:74:2b:06:98:bc:f3:83:18:
a6:d3:f4:74:63:6a:c0:c0:77:78:5b:bc:dc:ac:04:
6e:78:64:5a:b7:cc:29:6d:56:11:a6:35:45:a2:f1:
91:e8:83:01:54:5b:ec:06:c9:7b:0b:77:6d:71:07:
4a:19:94:fe:1b:da:43:63:66:9b:80:0f:91:3b:79:
8c:82:77:86:7f:f1:1b:f1:f1:59:67:0c:02:20:76:
09:9f:9c:0a:17:35:1f:c2:8a:9f:59:33:39:88:e7:
d7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:77:D4:D4:28:F9:46:5B:15:44:9C:6A:FD:45:32:C4:22:44:69:64
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328611
sbgp-ipAddrBlock: critical
IPv4:
102.23.220.0/22
102.205.132.0/22
102.207.52.0-102.207.59.255
102.207.132.0/22
102.208.56.0/22
102.211.4.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:dc:27:76:21:41:d9:9a:35:6e:57:4d:de:69:60:2c:7f:a4:
47:40:dc:52:be:aa:0a:66:cc:75:92:ff:75:36:f3:dd:98:85:
a8:2c:19:be:3c:74:6f:7c:1c:55:19:77:46:6e:8d:56:a9:49:
c1:a5:db:a6:98:56:68:38:78:19:b5:cc:05:d5:11:55:c3:3f:
ab:6e:d9:3e:2e:34:a9:59:f2:85:6f:89:00:77:c8:d8:0c:6a:
22:04:95:6d:4b:95:5b:6c:ae:d0:9c:9a:fb:9a:7f:a1:84:cd:
45:be:8a:34:4b:32:9b:c9:f6:cb:ec:3d:8b:a2:4c:25:1b:f3:
51:ae:2b:e6:60:f7:c0:65:3e:b2:0a:b9:20:d1:6d:72:50:5a:
34:d2:e7:53:50:3f:e6:0d:a3:6e:b7:9a:b4:67:c2:6d:da:16:
d4:2b:ca:5b:cd:25:df:8d:ac:16:9c:30:3e:cd:b9:0d:72:1f:
b9:7b:67:6e:9c:18:59:14:85:0b:da:4a:19:99:2f:85:e5:ea:
1e:0a:1d:b6:07:28:0b:c8:85:b3:0d:9f:d8:f0:30:8c:00:4e:
58:c5:f9:fe:1b:80:d2:e9:f3:40:a0:bb:11:e8:00:53:88:d7:
ad:72:f2:4e:51:46:14:27:8c:75:86:85:6f:b4:a7:6b:4e:73:
62:50:85:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 30 15:38:47 2025 by rpki-client