Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/DfSP5wXc0B45e4-chO8Xkcls-9g.cer
File: DfSP5wXc0B45e4-chO8Xkcls-9g.cer (raw, json)
Hash identifier: umFTvlGSBsXR6TLJ2FNvUW2CoiCjObyzo+rShuGbzoQ=
Subject key identifier: 0D:F4:8F:E7:05:DC:D0:1E:39:7B:8F:9C:84:EF:17:91:C9:6C:FB:D8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3073
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C4AD7/63F7E9BC566011EBAB78C709F8AEA228/DfSP5wXc0B45e4-chO8Xkcls-9g.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C4AD7/63F7E9BC566011EBAB78C709F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:20:48 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328346
IP: 102.134.24.0/22
IP: 2c0f:ef60::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12403 (0x3073)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:20:48 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C4AD7AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:97:14:60:3a:6d:66:27:75:c7:2e:b6:bd:c8:
a7:88:00:df:11:42:99:00:f3:cf:49:ce:d3:4d:05:
02:2d:34:2e:9e:0e:f2:c7:14:be:19:4c:f9:ae:6b:
f2:53:b8:4f:9f:79:a2:7a:d7:0a:86:f0:68:48:a0:
ba:53:2b:1f:cb:7a:c0:af:0c:77:d6:f4:8d:f8:0d:
44:ac:1b:fc:ba:3b:f7:24:4e:b1:b7:40:06:16:09:
13:7a:3e:77:00:ab:dc:c4:ec:62:10:49:97:7a:fa:
57:d8:84:ca:87:e0:17:7b:d7:cd:52:26:8c:16:89:
07:9b:f1:44:86:19:b1:ca:a6:4a:2f:1d:0b:bb:75:
50:85:d6:7e:9b:86:b1:a9:d9:f8:db:91:cb:5d:2e:
87:10:64:fb:11:9d:2d:4a:3d:3b:bf:68:ba:70:b1:
75:52:7b:c3:8f:3a:87:91:a5:e0:27:87:14:f2:45:
79:3a:e4:50:70:e0:97:eb:98:98:4d:d1:86:78:68:
d6:89:7d:54:05:c8:37:42:ce:8e:c4:2b:13:9c:cd:
1e:5e:8f:14:11:84:e8:a8:7e:5a:42:58:3b:66:37:
ba:1d:1e:2d:0b:2c:fe:6d:0d:d2:de:f5:98:5e:05:
10:48:f5:24:80:13:c0:17:17:b2:f5:ac:c2:59:b0:
22:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F4:8F:E7:05:DC:D0:1E:39:7B:8F:9C:84:EF:17:91:C9:6C:FB:D8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C4AD7/63F7E9BC566011EBAB78C709F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C4AD7/63F7E9BC566011EBAB78C709F8AEA228/DfSP5wXc0B45e4-chO8Xkcls-9g.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328346
sbgp-ipAddrBlock: critical
IPv4:
102.134.24.0/22
IPv6:
2c0f:ef60::/32
Signature Algorithm: sha256WithRSAEncryption
63:7b:6f:c0:38:6c:d8:64:4b:22:79:aa:50:ca:89:aa:5e:1f:
0a:8a:6f:2f:ba:6e:8f:2b:a4:40:5c:0b:ce:40:ca:87:b7:6d:
15:e6:4c:87:c4:60:92:0f:d2:91:9d:46:2f:16:90:29:b6:3a:
26:ac:0d:f4:49:72:b9:93:89:6e:ef:87:14:f3:3b:f3:68:7b:
fe:b1:39:66:65:bf:39:7c:c7:8e:78:0b:59:dd:9d:2f:05:f1:
c4:c2:11:03:84:14:0b:be:83:8b:b3:bc:f1:d2:23:33:de:32:
f8:42:34:73:48:38:b2:23:38:24:c3:66:35:2b:d4:0b:75:d9:
dd:01:21:62:39:36:6a:2a:16:b7:39:e1:e9:8a:55:cf:87:d7:
95:ec:6d:81:0f:86:6a:ed:c0:07:c0:5e:8e:41:5b:c6:97:e6:
5c:ac:c7:1e:e3:6c:c9:01:dd:2e:5d:a1:7e:72:e1:71:b4:3b:
f0:e0:c4:94:bb:7c:fc:57:92:9b:b9:4a:46:07:a2:56:9a:64:
b1:d1:04:67:28:17:9e:d2:61:3e:3d:92:58:65:83:b5:f5:79:
49:6a:a5:e8:b1:50:fd:e9:52:48:8f:c4:9e:4c:7b:8e:fc:66:
a4:05:61:6a:45:ee:9b:59:b0:c7:ba:24:f2:71:c9:fa:d3:bb:
fe:79:4f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:10:36 2025 by rpki-client