Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/GDUHKiLvnZx8uLWjbGnnw5gTPGE.cer
File: GDUHKiLvnZx8uLWjbGnnw5gTPGE.cer (raw, json)
Hash identifier: vrX+X1wJjHCiPpaS/qrsG9mOUAJRLo1BUQikPIRpP9s=
Subject key identifier: 18:35:07:2A:22:EF:9D:9C:7C:B8:B5:A3:6C:69:E7:C3:98:13:3C:61
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 30A7
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/GDUHKiLvnZx8uLWjbGnnw5gTPGE.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:31:40 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.211.187.0/24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12455 (0x30a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:31:40 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3683B5BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d2:23:61:ac:f7:c8:d4:3d:44:57:08:10:cf:
74:0b:89:e8:96:af:cd:57:de:35:db:6e:c7:8d:0a:
f2:39:00:bc:82:a7:ea:5f:5c:83:ac:9a:2f:0d:b9:
21:97:59:36:12:3a:4a:1a:21:8c:ae:09:7a:eb:eb:
57:90:dd:66:30:72:44:e4:50:de:b4:c8:70:db:d8:
5b:76:17:2d:21:74:85:3d:94:89:dc:f9:72:25:36:
80:51:31:5c:d4:2d:42:44:3c:f0:74:91:56:e2:47:
7e:24:63:d3:9a:7b:52:82:b8:86:f7:f0:db:9f:6c:
f3:5b:8d:15:29:88:1f:dd:9b:d9:93:cd:e0:98:ea:
4f:bf:1b:9a:92:b3:08:11:51:c4:8a:90:e1:d4:6c:
17:93:10:7f:0c:98:04:2e:36:29:a2:96:11:f7:af:
75:44:f9:2f:d6:6e:0a:40:5b:c9:42:75:78:40:d5:
46:ce:04:e6:73:20:74:8b:87:f7:fd:ec:dd:4a:09:
08:e0:3d:0b:9d:a6:f0:c8:65:13:d9:21:d6:2e:e8:
a0:9b:b3:a4:1e:ce:dc:cb:62:22:26:d4:41:dc:6c:
22:6e:75:98:b8:b1:d4:4c:ce:68:78:59:ae:75:2d:
40:8f:e8:d2:79:75:32:d9:34:9b:fd:b5:1b:e7:b3:
7c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:35:07:2A:22:EF:9D:9C:7C:B8:B5:A3:6C:69:E7:C3:98:13:3C:61
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/GDUHKiLvnZx8uLWjbGnnw5gTPGE.mft
sbgp-ipAddrBlock: critical
IPv4:
102.211.187.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:89:e7:a7:5a:ed:18:49:10:f9:eb:33:ea:12:52:67:bc:7c:
1c:c6:c7:f1:55:a9:54:bc:95:4b:fe:12:2a:37:7c:22:e9:84:
bc:df:e3:c7:de:eb:32:d3:25:20:c8:f9:c3:cf:80:ef:d6:d8:
2c:e7:2f:8e:a9:35:2b:88:fa:6a:e4:36:26:d2:21:66:e4:fc:
d7:3a:44:2c:19:65:5c:14:3e:45:13:ca:b0:5b:87:3b:70:e1:
d0:64:e5:da:cf:44:93:e7:5f:58:e0:f3:b6:5c:6d:14:c4:d4:
88:d0:f4:55:92:23:02:57:c4:b7:e9:c1:3a:4a:c8:50:10:44:
3a:0d:a4:2c:2a:c8:7f:4b:03:d8:34:32:8d:d6:79:aa:36:f3:
5f:2a:6a:d0:f6:b5:ca:4a:f8:50:c5:e5:21:92:09:ff:18:49:
eb:85:e7:94:7d:b3:63:f2:66:61:1e:ab:35:6b:4a:f6:f8:11:
da:e5:1b:26:39:f5:d5:2e:6c:90:5b:7a:4b:b4:49:d8:e1:7e:
0e:21:87:af:24:76:c1:dc:e8:46:4e:31:e9:ff:0c:cd:44:b3:
20:94:50:72:4e:51:7e:70:c6:84:6b:e0:c7:0d:78:e6:3b:9e:
8d:f8:8a:e6:40:ee:1d:c1:53:83:41:18:8d:c4:1b:dd:dd:6f:
22:64:e4:12
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:57:26 2025 by rpki-client