Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Ex2mcDsWwqK0jDriza4e_9rh-zo.cer
File: Ex2mcDsWwqK0jDriza4e_9rh-zo.cer (raw, json)
Hash identifier: UjNpjnm3fUSqp3Sp81sTfP9RNOmkJ+GswhU6ataYWDk=
Subject key identifier: 13:1D:A6:70:3B:16:C2:A2:B4:8C:3A:E2:CD:AE:1E:FF:DA:E1:FB:3A
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2EBB
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F365052E/7BC482DE5E4B11EFBC78A1A3762E951A/Ex2mcDsWwqK0jDriza4e_9rh-zo.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F365052E/7BC482DE5E4B11EFBC78A1A3762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:52:09 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 36920
AS: 37433
IP: 41.78.172.0/22
IP: 41.215.244.0/22
IP: 41.223.64.0/22
IP: 102.67.0.0/19
IP: 102.216.200.0/22
IP: 102.219.152.0/22
IP: 197.157.216.0/22
IP: 2c0f:fba8::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11963 (0x2ebb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:52:09 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F365052EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cc:45:db:7e:f5:98:5e:e6:30:dc:59:ee:fb:
72:79:1c:ec:57:c9:f4:59:5c:3e:d2:2b:37:f7:15:
d2:76:5d:e7:10:6e:7f:55:86:16:a8:c8:79:89:d0:
00:c3:5e:27:15:7f:a4:26:1d:42:6f:cb:4f:a1:c7:
88:48:ff:27:fa:4c:4b:ee:13:6e:66:80:1f:13:c2:
d9:41:6f:14:9b:74:7b:d8:4a:68:f0:20:82:48:7e:
fa:cb:98:f8:db:2d:1d:4c:47:b7:cf:4f:58:0e:a0:
c2:ff:ce:a8:dd:f6:de:73:98:27:62:25:8b:04:95:
9a:e2:db:44:bb:08:cf:cb:9f:f2:a9:95:95:43:a2:
f2:6f:53:ec:a0:ce:21:b1:c4:af:c9:12:ba:98:62:
92:07:06:ff:29:c7:f2:dc:40:78:19:e2:1c:5f:95:
2a:99:55:1f:48:56:3a:a3:2a:01:e1:a7:e6:41:99:
92:a3:0e:54:8d:b7:1a:3b:78:c0:be:d3:4c:08:4f:
6b:73:91:5e:51:8a:5d:5d:e9:36:52:7c:85:86:28:
ef:95:56:a6:07:b3:65:19:88:72:59:d4:66:7f:17:
3b:90:6b:0e:52:dd:91:fb:ac:f2:58:8f:a8:e3:82:
44:6e:d7:57:9d:eb:0b:a1:e5:d4:2d:24:c8:dd:12:
60:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:1D:A6:70:3B:16:C2:A2:B4:8C:3A:E2:CD:AE:1E:FF:DA:E1:FB:3A
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F365052E/7BC482DE5E4B11EFBC78A1A3762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F365052E/7BC482DE5E4B11EFBC78A1A3762E951A/Ex2mcDsWwqK0jDriza4e_9rh-zo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
36920
37433
sbgp-ipAddrBlock: critical
IPv4:
41.78.172.0/22
41.215.244.0/22
41.223.64.0/22
102.67.0.0/19
102.216.200.0/22
102.219.152.0/22
197.157.216.0/22
IPv6:
2c0f:fba8::/32
Signature Algorithm: sha256WithRSAEncryption
a2:60:b4:06:09:bc:75:dd:05:f1:fa:b6:9b:dc:01:97:51:7a:
b5:b7:26:b1:cb:45:0e:0e:7f:92:02:f1:4b:f0:18:ab:5f:da:
f1:ec:70:78:94:84:95:95:5f:32:ef:ee:e6:44:ca:57:7f:3a:
7e:da:06:f8:24:45:8e:21:f9:5d:1d:5e:d6:57:ff:26:ab:91:
1a:f5:9a:65:64:2a:8e:55:2a:ef:c2:74:6b:15:b1:1e:a0:9e:
ae:d6:32:a6:60:5f:01:0f:54:13:5d:ae:c7:95:51:8c:ed:43:
92:1e:e3:88:51:09:06:40:f5:50:14:45:f1:5d:9a:24:55:d5:
ce:e6:6d:23:87:d7:31:39:03:34:5e:2e:60:0e:cf:59:c4:96:
a2:95:72:9e:c7:3b:db:4b:0b:f1:88:ff:97:06:05:ca:41:05:
63:04:db:49:5f:5c:cc:87:7d:a8:bc:71:6f:82:bf:98:2e:7e:
dd:0d:81:36:cb:bd:45:85:a6:17:19:f9:a6:82:29:fa:fd:79:
d9:37:2e:cd:6e:f4:c2:0c:fa:d9:16:3f:14:c5:d5:0f:2b:48:
6d:49:77:3c:35:95:78:31:89:f3:cf:3f:4b:e8:5c:9d:dc:79:
3d:2a:9a:68:80:a4:13:77:f2:62:2d:60:bf:77:7a:24:97:c7:
98:6d:6a:51
-----BEGIN CERTIFICATE-----
MIIGTjCCBTagAwIBAgICLrswDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMTUyMDlaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjUwNTJFQUYxMTAvBgNVBAUTKDEzMURBNjcwM0IxNkMyQTJCNDhDM0FF
MkNEQUUxRUZGREFFMUZCM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCtzEXbfvWYXuYw3Fnu+3J5HOxXyfRZXD7SKzf3FdJ2XecQbn9VhhaoyHmJ0ADD
XicVf6QmHUJvy0+hx4hI/yf6TEvuE25mgB8TwtlBbxSbdHvYSmjwIIJIfvrLmPjb
LR1MR7fPT1gOoML/zqjd9t5zmCdiJYsElZri20S7CM/Ln/KplZVDovJvU+ygziGx
xK/JErqYYpIHBv8px/LcQHgZ4hxflSqZVR9IVjqjKgHhp+ZBmZKjDlSNtxo7eMC+
00wIT2tzkV5Ril1d6TZSfIWGKO+VVqYHs2UZiHJZ1GZ/FzuQaw5S3ZH7rPJYj6jj
gkRu11ed6wuh5dQtJMjdEmClAgMBAAGjggNDMIIDPzAdBgNVHQ4EFgQUEx2mcDsW
wqK0jDriza4e/9rh+zowHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY1MDUyRS83QkM0ODJERTVFNEIx
MUVGQkM3OEExQTM3NjJFOTUxQS8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NTA1MkUvN0JDNDgyREU1RTRCMTFFRkJDNzhBMUEzNzYyRTk1MUEvRXgybWNE
c1d3cUswakRyaXphNGVfOXJoLXpvLm1mdDAfBggrBgEFBQcBCAEB/wQQMA6gDDAK
AgMAkDgCAwCSOTBSBggrBgEFBQcBBwEB/wRDMEEwMAQCAAEwKgMEAilOrAMEAinX
9AMEAinfQAMEBWZDAAMEAmbYyAMEAmbbmAMEAsWd2DANBAIAAjAHAwUALA/7qDAN
BgkqhkiG9w0BAQsFAAOCAQEAomC0Bgm8dd0F8fq2m9wBl1F6tbcmsctFDg5/kgLx
S/AYq1/a8exweJSElZVfMu/u5kTKV386ftoG+CRFjiH5XR1e1lf/JquRGvWaZWQq
jlUq78J0axWxHqCertYypmBfAQ9UE12ux5VRjO1Dkh7jiFEJBkD1UBRF8V2aJFXV
zuZtI4fXMTkDNF4uYA7PWcSWopVynsc720sL8Yj/lwYFykEFYwTbSV9czId9qLxx
b4K/mC5+3Q2BNsu9RYWmFxn5poIp+v152TcuzW70wgz62RY/FMXVDytIbUl3PDWV
eDGJ888/S+hcndx5PSqaaICkE3fyYi1gv3d6JJfHmG1qUQ==
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:44:56 2025 by rpki-client