Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/HcMxuzT85bGxnG1RA4RwUkV1CPE.cer
File: HcMxuzT85bGxnG1RA4RwUkV1CPE.cer (raw, json)
Hash identifier: ZY6YEpUkD+JoHDz/tsYo6bhfdNcjtaISw/y+xVOGCCI=
Subject key identifier: 1D:C3:31:BB:34:FC:E5:B1:B1:9C:6D:51:03:84:70:52:45:75:08:F1
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E78
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3647C6B/2E6CE99C553611EDBEDEB1B5F1222468/HcMxuzT85bGxnG1RA4RwUkV1CPE.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3647C6B/2E6CE99C553611EDBEDEB1B5F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:38:27 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329053
IP: 102.216.28.0/22
IP: 2c0f:5080::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11896 (0x2e78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:38:27 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3647C6BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:da:1c:38:2f:9b:4d:3c:a3:f8:a2:60:a3:f5:
86:0e:14:fd:d3:98:c7:96:c2:1e:7a:de:c6:be:97:
c1:f2:b3:dc:b4:69:1a:44:df:3b:c5:f7:37:57:38:
21:13:54:80:ef:30:f5:2c:0f:a3:6d:16:7a:53:2e:
32:17:c2:1a:11:c4:92:66:5a:11:f9:9a:78:df:3d:
87:7e:ad:14:84:6c:0a:35:1b:55:cb:68:30:e6:c2:
6a:9d:87:64:33:2a:84:d0:3f:1f:84:1e:c1:17:a9:
2a:99:5f:04:e1:6c:81:0d:81:b4:ff:49:2e:e5:ac:
fa:5d:22:a6:6b:44:c9:51:f7:4e:e5:44:a5:aa:67:
d8:2d:04:d2:17:57:2c:2f:ea:c5:e4:48:47:74:3a:
ba:e1:64:e9:70:b4:cb:04:4b:40:0a:f9:67:6c:e4:
96:87:2a:35:71:3c:7f:83:e1:43:d2:57:90:02:60:
fd:67:da:1d:19:83:71:cf:dd:ef:0b:25:1c:75:e1:
14:76:44:9f:26:03:3b:0d:84:b5:a6:7b:58:df:1e:
b5:cb:21:f6:b7:8f:73:59:69:31:e2:73:1b:ee:65:
25:8e:ee:f3:13:d1:9f:de:9f:a9:54:5a:ef:51:6a:
b6:f2:65:c0:b2:aa:0a:04:5a:67:81:67:46:0c:4f:
e0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C3:31:BB:34:FC:E5:B1:B1:9C:6D:51:03:84:70:52:45:75:08:F1
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3647C6B/2E6CE99C553611EDBEDEB1B5F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3647C6B/2E6CE99C553611EDBEDEB1B5F1222468/HcMxuzT85bGxnG1RA4RwUkV1CPE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329053
sbgp-ipAddrBlock: critical
IPv4:
102.216.28.0/22
IPv6:
2c0f:5080::/32
Signature Algorithm: sha256WithRSAEncryption
43:65:1c:c6:77:c0:93:03:8c:f5:89:80:9c:99:7d:a0:96:e9:
89:f1:7d:3b:91:0d:21:bd:18:01:9c:09:22:c3:01:b7:d0:50:
aa:2d:e5:82:94:68:09:f9:0e:61:fc:27:92:04:3d:af:09:7d:
c2:f9:c3:82:99:91:80:30:fb:e7:73:ad:4a:f5:e0:fa:c8:d2:
09:3d:d3:8e:6a:3f:15:1d:05:fb:45:8d:d9:dc:19:a5:55:4a:
e4:d1:64:cd:34:54:7a:65:18:d1:9a:27:6f:b9:b4:41:d1:28:
ba:9b:2c:63:52:e1:a4:b6:7a:b0:34:5a:84:c8:c6:87:42:d0:
c9:90:0c:c3:51:72:9a:f9:86:c6:59:47:82:de:f1:19:b4:9a:
c1:c5:5d:79:f9:a2:2e:67:0b:6d:0f:74:17:e1:55:43:d3:22:
c5:2e:d4:2a:db:28:a3:48:be:44:1d:31:ff:61:18:bc:5f:67:
97:b8:09:48:57:44:79:c6:5e:e5:03:9f:e9:21:af:89:60:2e:
fa:91:eb:e1:fe:51:15:bb:64:d5:79:ae:1c:dc:96:5b:84:ab:
f2:f3:d8:6d:02:99:2b:9d:a9:b0:00:3d:5a:a1:fc:ff:a6:2d:
17:bc:cd:4e:49:7e:18:d7:fa:42:91:dd:0b:4c:be:c5:b1:aa:
9f:4c:bc:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:18 2025 by rpki-client