Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/HzhXx5DQI1940ThbDraTCwjzqOc.cer
File: HzhXx5DQI1940ThbDraTCwjzqOc.cer (raw, json)
Hash identifier: 0z1zQR0EPCgE5gw/OHYKIygrbA33m8Y1PFdTqs4encc=
Subject key identifier: 1F:38:57:C7:90:D0:23:5F:78:D1:38:5B:0E:B6:93:0B:08:F3:A8:E7
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 4034
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F365D714/52A01FC0222211F18D133DCBDAE4EC9C/HzhXx5DQI1940ThbDraTCwjzqOc.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F365D714/52A01FC0222211F18D133DCBDAE4EC9C/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Tue 17 Mar 2026 16:57:12 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 329475
IP: 102.208.44.0/22
IP: 2c0f:4c0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 25 Mar 2026 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16436 (0x4034)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Mar 17 16:57:12 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=F365D714AF, serialNumber=1F3857C790D0235F78D1385B0EB6930B08F3A8E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:15:d8:1c:20:5e:6b:cb:0e:a8:19:84:ec:46:
29:8f:4e:66:6a:e5:fd:09:7f:20:2d:b4:10:b7:e8:
34:4d:1c:33:33:5c:0d:5b:90:53:a2:ca:81:8c:ce:
98:c9:ca:d2:4f:dd:c2:44:91:78:d9:40:ca:d2:fb:
36:53:6d:45:83:fb:26:32:8c:68:ec:4c:70:15:a2:
20:32:0b:24:68:4c:03:79:9a:52:65:68:46:62:dd:
13:4f:eb:13:4a:f2:a2:ea:57:6b:d3:93:d7:30:39:
98:b9:2c:4a:95:d1:2c:2d:5a:70:d2:fb:a6:e2:b0:
f2:c6:f8:fd:6a:30:23:54:14:f0:c1:26:53:e8:23:
61:65:6a:f8:fd:67:1c:86:e1:4f:a7:99:05:bb:30:
2d:00:25:78:c4:16:8e:d1:87:77:3e:40:22:24:c2:
47:72:29:d3:71:52:c5:17:2c:b1:f8:05:59:09:4a:
38:13:3e:9a:26:6a:98:82:65:25:be:a0:93:56:aa:
d6:8c:df:f2:98:7e:1d:2e:e9:77:97:97:3b:f2:85:
3f:22:01:54:db:bb:51:35:80:aa:aa:3a:0c:6a:f4:
ad:f9:67:e8:5a:07:e8:e2:56:d2:d7:5d:32:16:87:
45:0d:dc:77:81:fb:64:ec:fe:9f:e3:11:80:51:7f:
2f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:38:57:C7:90:D0:23:5F:78:D1:38:5B:0E:B6:93:0B:08:F3:A8:E7
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F365D714/52A01FC0222211F18D133DCBDAE4EC9C/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F365D714/52A01FC0222211F18D133DCBDAE4EC9C/HzhXx5DQI1940ThbDraTCwjzqOc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329475
sbgp-ipAddrBlock: critical
IPv4:
102.208.44.0/22
IPv6:
2c0f:4c0::/32
Signature Algorithm: sha256WithRSAEncryption
8d:da:fd:59:c1:69:ae:75:f3:5d:f1:cf:6f:bc:61:7d:f0:15:
fb:b6:f4:09:c1:de:c0:a6:a1:13:34:0b:dc:03:f8:2f:f7:e4:
e9:03:c1:c9:92:5b:2f:03:a8:6b:4d:17:c4:5e:a7:2c:d9:2a:
61:28:64:47:09:74:8e:a3:8a:c2:01:15:62:3c:91:25:79:5b:
0b:14:cf:e6:3c:b0:7b:2e:1f:d2:ad:56:fd:cf:fd:4e:84:6a:
25:34:48:c8:3c:6a:22:67:77:68:a2:1e:19:92:2c:b9:18:90:
02:8c:f3:51:42:dd:fe:7f:55:22:35:b1:66:76:58:77:57:a2:
e8:d0:e0:70:50:ca:cc:e4:4d:65:cf:21:da:ae:cc:ad:35:79:
67:36:74:98:ca:75:00:21:02:0b:5b:5a:31:a2:b5:97:9c:b6:
99:9c:a9:22:b6:1c:64:3c:5d:12:94:28:cc:c1:1d:21:14:f6:
0a:72:18:3e:a6:21:f4:33:3a:14:fe:ff:e0:40:b9:ed:98:47:
11:24:58:de:5b:c8:76:96:6b:2d:79:60:f0:79:bf:56:b1:b7:
7d:96:ce:3e:f7:89:0e:c8:06:63:f5:33:2f:60:47:53:71:2a:
65:3b:78:9d:c9:ea:a1:b6:7a:9a:5d:1d:7a:9c:2b:e0:5d:4a:
13:81:7d:97
-----BEGIN CERTIFICATE-----
MIIGJTCCBQ2gAwIBAgICQDQwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNjAzMTcxNjU3MTJaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjVENzE0QUYxMTAvBgNVBAUTKDFGMzg1N0M3OTBEMDIzNUY3OEQxMzg1
QjBFQjY5MzBCMDhGM0E4RTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDbFdgcIF5ryw6oGYTsRimPTmZq5f0JfyAttBC36DRNHDMzXA1bkFOiyoGMzpjJ
ytJP3cJEkXjZQMrS+zZTbUWD+yYyjGjsTHAVoiAyCyRoTAN5mlJlaEZi3RNP6xNK
8qLqV2vTk9cwOZi5LEqV0SwtWnDS+6bisPLG+P1qMCNUFPDBJlPoI2Flavj9ZxyG
4U+nmQW7MC0AJXjEFo7Rh3c+QCIkwkdyKdNxUsUXLLH4BVkJSjgTPpomapiCZSW+
oJNWqtaM3/KYfh0u6XeXlzvyhT8iAVTbu1E1gKqqOgxq9K35Z+haB+jiVtLXXTIW
h0UN3HeB+2Ts/p/jEYBRfy9xAgMBAAGjggMaMIIDFjAdBgNVHQ4EFgQUHzhXx5DQ
I1940ThbDraTCwjzqOcwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY1RDcxNC81MkEwMUZDMDIyMjIx
MUYxOEQxMzNEQ0JEQUU0RUM5Qy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NUQ3MTQvNTJBMDFGQzAyMjIyMTFGMThEMTMzRENCREFFNEVDOUMvSHpoWHg1
RFFJMTk0MFRoYkRyYVRDd2p6cU9jLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFBwMwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJm0CwwDQQCAAIwBwMF
ACwPBMAwDQYJKoZIhvcNAQELBQADggEBAI3a/VnBaa51813xz2+8YX3wFfu29AnB
3sCmoRM0C9wD+C/35OkDwcmSWy8DqGtNF8RepyzZKmEoZEcJdI6jisIBFWI8kSV5
WwsUz+Y8sHsuH9KtVv3P/U6EaiU0SMg8aiJnd2iiHhmSLLkYkAKM81FC3f5/VSI1
sWZ2WHdXoujQ4HBQyszkTWXPIdquzK01eWc2dJjKdQAhAgtbWjGitZectpmcqSK2
HGQ8XRKUKMzBHSEU9gpyGD6mIfQzOhT+/+BAue2YRxEkWN5byHaWay15YPB5v1ax
t32Wzj73iQ7IBmP1My9gR1NxKmU7eJ3J6qG2eppdHXqcK+BdShOBfZc=
-----END CERTIFICATE-----
Generated at Mon Mar 23 08:53:32 2026 by rpki-client