Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/F9XbYUvL122qn_GpMVkVxH-Je_M.cer
File: F9XbYUvL122qn_GpMVkVxH-Je_M.cer (raw, json)
Hash identifier: 4bl1pI8S8xpLC82qXY6ap7EenGw5BoiLFLtXQWH84Zc=
Subject key identifier: 17:D5:DB:61:4B:CB:D7:6D:AA:9F:F1:A9:31:59:15:C4:7F:89:7B:F3
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2CC7
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/F9XbYUvL122qn_GpMVkVxH-Je_M.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:03:02 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328857
IP: 102.220.244.0/22
IP: 2c0f:7600::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11463 (0x2cc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:03:02 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F361153AAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:5a:b3:c7:23:17:f8:e0:e9:25:3a:6b:72:c9:
26:30:bd:33:30:7d:43:fc:7e:1d:6b:34:43:fc:5e:
44:bc:92:3e:40:09:c2:85:30:61:e3:56:25:60:3f:
a4:ae:40:bc:d3:be:de:c7:4a:df:42:f9:76:ea:73:
7c:95:77:f7:f8:64:dc:9c:98:06:31:4d:0e:6b:ae:
fe:4b:63:d0:76:83:b0:93:db:e8:89:49:03:81:aa:
73:0c:e5:5d:4a:81:c8:63:da:83:90:26:a7:aa:54:
ed:2c:91:6d:4c:25:88:e7:b3:8c:4c:50:f5:dd:24:
2e:9e:32:49:7b:b4:5b:38:ad:4c:32:ac:af:49:01:
29:d8:7c:f3:bb:26:d1:36:c7:7f:2a:9a:5d:4a:b5:
04:23:ec:e2:91:7f:a7:d3:f4:eb:e1:ca:0a:a1:74:
bf:ec:93:dd:f9:56:2b:c6:6b:5e:70:29:87:e5:e1:
d3:eb:40:fb:6b:6c:b0:97:41:0a:28:af:af:84:70:
4a:7b:60:ca:25:29:3e:3e:1e:3a:b3:58:de:1b:69:
ad:7a:51:8b:16:e6:04:bd:27:2c:83:ac:43:53:e7:
5c:3d:43:a3:ee:15:de:27:2f:ba:c4:22:99:10:d0:
63:06:7b:64:55:b9:0b:16:13:34:24:ee:44:ec:c0:
19:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D5:DB:61:4B:CB:D7:6D:AA:9F:F1:A9:31:59:15:C4:7F:89:7B:F3
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/F9XbYUvL122qn_GpMVkVxH-Je_M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328857
sbgp-ipAddrBlock: critical
IPv4:
102.220.244.0/22
IPv6:
2c0f:7600::/32
Signature Algorithm: sha256WithRSAEncryption
12:bc:2f:51:5f:e5:27:0d:39:5d:94:c1:cd:62:cb:ed:b9:06:
57:12:8e:72:cb:6d:aa:fc:b5:87:ca:c8:99:54:ae:ed:ec:42:
e3:cc:b5:b2:ad:10:4e:08:37:61:c5:33:c4:a8:35:4c:00:21:
e2:1a:b2:cb:5d:93:38:da:0e:62:ae:b3:dd:12:97:27:ae:12:
23:45:1d:2f:d0:0f:25:79:14:18:51:e3:c6:97:74:f3:c1:f0:
a1:ee:d9:d6:99:99:4e:3d:91:09:87:80:49:c2:f8:2c:1a:c8:
16:f9:d6:73:76:25:e5:49:c9:7b:73:c7:20:2d:b4:23:e7:16:
b2:f6:9a:20:4f:e3:31:3e:f2:cd:7c:00:f6:b9:f3:28:0b:1b:
44:9b:08:d6:2a:b4:45:99:ff:61:ac:55:b9:d9:72:ed:a4:4d:
1d:6b:bf:e2:73:1c:5c:d4:f1:0c:d7:c7:56:c9:dd:56:96:14:
25:44:cc:da:89:53:73:92:ed:2f:5e:6f:64:1c:ad:8f:0a:bb:
c2:af:2b:17:f4:35:98:91:3e:7d:b1:34:78:cc:29:e3:25:3c:
e8:e0:4f:e0:ee:f1:04:1f:b7:44:21:29:13:4e:fd:02:63:3a:
f4:5c:da:a4:5f:6f:8a:ad:b2:47:a5:bb:8b:e8:00:bc:6d:2e:
07:c5:8c:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:19 2025 by rpki-client