Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/8H0xNKDMPAQpA5gVfKBVkucrz6s.cer
File: 8H0xNKDMPAQpA5gVfKBVkucrz6s.cer (raw, json)
Hash identifier: yI6KCArA/dz91uwehDCe0zwNDhSzMLqkyxeIuGZUSgw=
Subject key identifier: F0:7D:31:34:A0:CC:3C:04:29:03:98:15:7C:A0:55:92:E7:2B:CF:AB
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 304B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F367B3D1/C4C3AEB0C11F11EFA0B58AA4762E951A/8H0xNKDMPAQpA5gVfKBVkucrz6s.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F367B3D1/C4C3AEB0C11F11EFA0B58AA4762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:12:46 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37163
IP: 41.78.48.0/21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12363 (0x304b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:12:46 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F367B3D1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c2:24:9f:19:46:5e:f5:c5:37:af:78:da:15:
99:64:87:e9:66:b4:8f:14:37:2f:15:94:22:8f:c6:
6a:d3:6c:b4:2d:7c:96:f6:8e:df:21:91:56:c8:f5:
36:ea:07:23:19:d8:e3:37:58:99:b3:ff:b3:41:60:
9f:57:98:0c:58:01:d2:40:1c:d5:c1:c5:30:fd:6b:
fb:a4:14:10:bf:5f:6c:37:36:f6:eb:be:7b:ab:fd:
3c:ee:08:ad:d8:c6:45:4d:51:08:3a:f8:b8:07:81:
21:a3:70:07:b6:b4:b8:ae:5d:39:6f:a5:d9:aa:de:
31:84:3e:54:24:04:5e:39:4c:fd:bf:97:33:fd:52:
3d:fb:ec:9f:ad:36:17:c7:b2:79:35:e3:6c:e5:1a:
c0:0d:f6:a2:b9:52:7c:21:35:b0:4a:8b:19:71:f2:
cd:15:6a:97:76:61:b6:74:a4:07:23:9a:cd:cb:23:
b0:b1:27:7b:4c:14:77:a7:b3:b3:25:9f:9d:ff:c7:
51:09:19:e1:23:37:fa:8d:e7:a4:b6:cd:35:32:a7:
28:d2:1f:b6:0b:6b:29:ea:32:a6:80:60:9f:25:75:
39:74:66:eb:5a:da:21:d5:1d:77:f8:6f:54:54:dc:
e2:59:dd:6f:3e:9e:53:a5:05:4a:0c:4d:65:16:93:
1d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7D:31:34:A0:CC:3C:04:29:03:98:15:7C:A0:55:92:E7:2B:CF:AB
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B3D1/C4C3AEB0C11F11EFA0B58AA4762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B3D1/C4C3AEB0C11F11EFA0B58AA4762E951A/8H0xNKDMPAQpA5gVfKBVkucrz6s.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37163
sbgp-ipAddrBlock: critical
IPv4:
41.78.48.0/21
Signature Algorithm: sha256WithRSAEncryption
b2:c0:b0:dd:56:b6:88:cc:c7:73:2a:ad:a1:c2:1e:a4:7e:2a:
4b:4b:4b:30:c9:a9:33:6d:cf:93:14:e4:25:21:97:b3:91:be:
97:20:44:df:76:a1:9c:a1:62:3c:46:14:b8:06:a8:70:a9:d5:
33:c6:82:6e:99:d3:dc:06:c7:d9:15:14:c3:d5:ad:19:66:1f:
ff:3f:cd:e5:64:b0:4a:be:19:d6:77:a7:ee:9f:b5:fe:8c:11:
dc:6e:dd:81:ee:ce:4b:bd:01:04:5e:c7:57:4f:05:5c:58:46:
3e:c2:a1:9f:a3:6a:8c:f7:54:0f:14:e1:49:81:d8:e9:29:e3:
23:cd:3c:ce:69:02:b7:3d:20:65:6a:f4:68:9b:e2:4b:8c:35:
df:28:4a:00:40:8a:ea:ff:88:78:53:ae:92:41:6f:5f:c0:f4:
db:e2:77:05:39:00:98:96:98:14:19:43:77:b2:35:54:a1:da:
9c:c5:94:59:9c:36:01:f3:5a:b0:97:62:12:61:2f:be:f0:85:
0d:6c:c0:8c:29:f1:45:db:d0:93:4d:9f:52:7d:58:8a:18:a9:
65:ec:fd:65:ea:fa:79:5e:4c:6d:28:74:76:72:6f:f3:4f:4a:
ce:b4:89:95:e2:89:06:54:a7:08:7a:85:06:ee:50:f6:4a:11:
56:f8:d3:85
-----BEGIN CERTIFICATE-----
MIIGFjCCBP6gAwIBAgICMEswDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMzEyNDZaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjdCM0QxQUYxMTAvBgNVBAUTKEYwN0QzMTM0QTBDQzNDMDQyOTAzOTgx
NTdDQTA1NTkyRTcyQkNGQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQClwiSfGUZe9cU3r3jaFZlkh+lmtI8UNy8VlCKPxmrTbLQtfJb2jt8hkVbI9Tbq
ByMZ2OM3WJmz/7NBYJ9XmAxYAdJAHNXBxTD9a/ukFBC/X2w3Nvbrvnur/TzuCK3Y
xkVNUQg6+LgHgSGjcAe2tLiuXTlvpdmq3jGEPlQkBF45TP2/lzP9Uj377J+tNhfH
snk142zlGsAN9qK5UnwhNbBKixlx8s0Vapd2YbZ0pAcjms3LI7CxJ3tMFHens7Ml
n53/x1EJGeEjN/qN56S2zTUypyjSH7YLaynqMqaAYJ8ldTl0Zuta2iHVHXf4b1RU
3OJZ3W8+nlOlBUoMTWUWkx0VAgMBAAGjggMLMIIDBzAdBgNVHQ4EFgQU8H0xNKDM
PAQpA5gVfKBVkucrz6swHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY3QjNEMS9DNEMzQUVCMEMxMUYx
MUVGQTBCNThBQTQ3NjJFOTUxQS8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2N0IzRDEvQzRDM0FFQjBDMTFGMTFFRkEwQjU4QUE0NzYyRTk1MUEvOEgweE5L
RE1QQVFwQTVnVmZLQlZrdWNyejZzLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMAkSswHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMpTjAwDQYJKoZIhvcN
AQELBQADggEBALLAsN1WtojMx3MqraHCHqR+KktLSzDJqTNtz5MU5CUhl7ORvpcg
RN92oZyhYjxGFLgGqHCp1TPGgm6Z09wGx9kVFMPVrRlmH/8/zeVksEq+GdZ3p+6f
tf6MEdxu3YHuzku9AQRex1dPBVxYRj7CoZ+jaoz3VA8U4UmB2Okp4yPNPM5pArc9
IGVq9Gib4kuMNd8oSgBAiur/iHhTrpJBb1/A9NvidwU5AJiWmBQZQ3eyNVSh2pzF
lFmcNgHzWrCXYhJhL77whQ1swIwp8UXb0JNNn1J9WIoYqWXs/WXq+nleTG0odHZy
b/NPSs60iZXiiQZUpwh6hQbuUPZKEVb404U=
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:49 2025 by rpki-client