Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/D1lQgYEt8Vl-hOwRRk5kwYfuOAg.cer
File: D1lQgYEt8Vl-hOwRRk5kwYfuOAg.cer (raw, json)
Hash identifier: 06yvFEEDgz1n+kV208cIL14ZP1gPZ/0Awbi+xTe/sHk=
Subject key identifier: 0F:59:50:81:81:2D:F1:59:7E:84:EC:11:46:4E:64:C1:87:EE:38:08
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2D5D
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/F51239688BD811EBAEE28A37F8AEA228/D1lQgYEt8Vl-hOwRRk5kwYfuOAg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/F51239688BD811EBAEE28A37F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:38:45 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328227
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11613 (0x2d5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:38:45 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3626CB6AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c6:5a:84:85:90:80:f2:44:7b:0e:68:20:39:
0a:bc:95:d5:e3:8a:c7:ce:7b:db:9d:e2:31:be:16:
9a:8a:f4:21:b9:01:b1:ee:cd:5a:70:73:bc:49:cc:
9b:3e:c2:33:a2:d7:55:1d:15:87:59:13:38:87:c1:
a3:27:73:d4:7b:4e:4c:c3:fd:0d:e5:56:6c:6d:d7:
29:a2:5a:fb:12:79:1c:83:de:03:70:5f:60:1e:0e:
fa:81:90:21:33:e7:47:3e:76:50:2f:eb:28:20:c5:
2e:32:52:d3:ef:9f:cf:89:10:71:9a:ad:7e:ca:7c:
ee:c3:33:2e:d8:66:59:a2:a8:e6:6e:d0:5d:a3:24:
e1:01:d9:c7:c8:2c:e2:8e:1c:f1:c9:ed:85:57:92:
5c:4f:3b:bf:d8:1b:8b:5d:26:3c:bb:ce:d4:0b:8f:
1b:dc:fa:b3:5d:11:9e:c0:0c:82:97:91:b4:95:f3:
0f:f2:e4:af:0b:f8:b5:fe:77:b5:98:4b:b2:30:e5:
c4:3b:83:21:49:00:f7:bb:90:df:e4:f3:1e:29:3f:
ee:f5:12:57:9e:d0:f3:66:5c:0b:2b:6b:07:1c:38:
ed:c0:78:05:52:97:88:36:2f:07:7b:0f:f5:b0:ae:
06:f2:9c:cd:3e:ee:29:a7:3b:de:04:eb:93:e0:07:
70:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:59:50:81:81:2D:F1:59:7E:84:EC:11:46:4E:64:C1:87:EE:38:08
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/F51239688BD811EBAEE28A37F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/F51239688BD811EBAEE28A37F8AEA228/D1lQgYEt8Vl-hOwRRk5kwYfuOAg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328227
Signature Algorithm: sha256WithRSAEncryption
4f:57:79:40:dd:53:25:d7:22:cf:b3:aa:c5:8a:7b:35:06:49:
2b:f9:ad:55:f2:5b:22:90:00:66:b0:ab:d8:4e:c1:df:08:e2:
b6:f2:59:3f:86:3f:0a:62:0b:23:f0:3d:88:3b:e7:ac:21:10:
f8:ab:56:d6:39:47:25:e8:c3:da:47:7b:c7:60:4a:f6:03:9a:
67:5a:58:e1:5d:68:57:7b:25:69:91:54:3b:8e:fd:40:3c:32:
63:15:be:b2:44:68:d8:41:65:19:ed:42:09:a7:3d:b8:ec:01:
e4:74:76:7c:80:e8:d4:45:4f:42:00:30:f4:6c:e2:47:0a:24:
e1:77:fa:44:37:33:cd:d7:85:f0:03:2c:a8:ea:5c:90:ac:9e:
c4:7d:91:af:d5:62:14:45:bc:c7:ab:51:e1:9c:09:9b:e6:0c:
36:bc:5d:d2:58:61:1d:13:5e:1e:25:d7:e5:06:30:4c:d4:95:
49:60:a0:42:54:2d:0a:e5:ba:69:af:11:ee:e0:5b:2b:aa:fb:
84:85:2a:d9:e0:08:67:8e:7d:58:6c:7e:21:93:db:7f:d0:57:
4c:65:cf:42:e1:a0:58:3f:1b:26:30:17:a3:7e:8e:eb:57:a0:
03:80:9a:38:93:cf:09:a5:7f:3d:6f:2e:da:68:01:ce:af:5e:
64:02:af:fa
-----BEGIN CERTIFICATE-----
MIIF9TCCBN2gAwIBAgICLV0wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMDM4NDVaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjI2Q0I2QUYxMTAvBgNVBAUTKDBGNTk1MDgxODEyREYxNTk3RTg0RUMx
MTQ2NEU2NEMxODdFRTM4MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC1xlqEhZCA8kR7DmggOQq8ldXjisfOe9ud4jG+FpqK9CG5AbHuzVpwc7xJzJs+
wjOi11UdFYdZEziHwaMnc9R7TkzD/Q3lVmxt1ymiWvsSeRyD3gNwX2AeDvqBkCEz
50c+dlAv6yggxS4yUtPvn8+JEHGarX7KfO7DMy7YZlmiqOZu0F2jJOEB2cfILOKO
HPHJ7YVXklxPO7/YG4tdJjy7ztQLjxvc+rNdEZ7ADIKXkbSV8w/y5K8L+LX+d7WY
S7Iw5cQ7gyFJAPe7kN/k8x4pP+71Elee0PNmXAsrawccOO3AeAVSl4g2Lwd7D/Ww
rgbynM0+7imnO94E65PgB3DvAgMBAAGjggLqMIIC5jAdBgNVHQ4EFgQUD1lQgYEt
8Vl+hOwRRk5kwYfuOAgwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzYyNkNCNi9GNTEyMzk2ODhCRDgx
MUVCQUVFMjhBMzdGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MjZDQjYvRjUxMjM5Njg4QkQ4MTFFQkFFRTI4QTM3RjhBRUEyMjgvRDFsUWdZ
RXQ4VmwtaE93UlJrNWt3WWZ1T0FnLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFAiMwDQYJKoZIhvcNAQELBQADggEBAE9XeUDdUyXXIs+zqsWKezUGSSv5rVXy
WyKQAGawq9hOwd8I4rbyWT+GPwpiCyPwPYg756whEPirVtY5RyXow9pHe8dgSvYD
mmdaWOFdaFd7JWmRVDuO/UA8MmMVvrJEaNhBZRntQgmnPbjsAeR0dnyA6NRFT0IA
MPRs4kcKJOF3+kQ3M83XhfADLKjqXJCsnsR9ka/VYhRFvMerUeGcCZvmDDa8XdJY
YR0TXh4l1+UGMEzUlUlgoEJULQrlummvEe7gWyuq+4SFKtngCGeOfVhsfiGT23/Q
V0xlz0LhoFg/GyYwF6N+jutXoAOAmjiTzwmlfz1vLtpoAc6vXmQCr/o=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:54:19 2025 by rpki-client