Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer
File: IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer (raw, json)
Hash identifier: 9srjv3wWT+9VcbGl/1qFV+wavP8czETyFx4sHL24qmc=
Subject key identifier: 21:86:2A:80:4A:8E:52:51:D3:F4:D5:51:55:32:4C:AB:CB:1B:2C:D1
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 32A8
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:20:51 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37794
AS: 329158
IP: 196.49.92.0/24
IP: 196.60.106.0/24
IP: 2001:43f8:16a0::/47
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12968 (0x32a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:20:51 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C7A1BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bd:df:cb:47:9e:22:d7:df:a1:d0:31:f2:3c:
2a:b5:6d:9c:f2:3f:5d:3d:a2:f6:1c:da:bf:ea:69:
5d:19:cf:27:dc:3a:5f:88:c0:62:1a:5d:3a:83:fd:
16:a6:ee:65:6a:0f:d0:f3:6d:f9:63:71:92:1c:c8:
34:25:b8:10:f5:7c:22:15:e0:27:88:02:9d:8e:cf:
a3:ac:a1:59:cf:de:06:ff:80:09:f8:5a:bf:3f:1c:
47:45:9d:8e:64:7e:5b:75:10:57:6d:ac:41:b9:79:
16:f2:73:a2:5c:23:1b:0c:a5:64:7b:be:4f:55:c6:
c4:48:91:e3:cf:8d:e9:4f:48:10:11:06:c6:4c:93:
14:80:23:b7:47:48:26:6c:d3:ac:4c:ce:65:fb:8f:
4b:9b:69:29:ea:08:17:d6:f4:05:37:10:02:d2:9e:
a7:77:c6:05:f0:36:f3:a9:e4:76:52:af:7b:85:ea:
7e:a0:a8:79:aa:13:ef:4e:90:bf:99:c7:19:af:00:
16:d6:ca:d5:a2:bc:2e:8c:63:44:3a:c2:3f:f8:3a:
6b:e4:9c:36:c8:93:ba:86:4c:ce:e9:91:a7:4f:17:
63:4d:d5:7f:53:11:dd:90:a9:ab:62:b4:14:b0:06:
90:4b:58:16:c6:e0:ab:c8:9e:8f:3a:d2:50:66:01:
b8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:86:2A:80:4A:8E:52:51:D3:F4:D5:51:55:32:4C:AB:CB:1B:2C:D1
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37794
329158
sbgp-ipAddrBlock: critical
IPv4:
196.49.92.0/24
196.60.106.0/24
IPv6:
2001:43f8:16a0::/47
Signature Algorithm: sha256WithRSAEncryption
52:e8:ab:37:9c:39:ff:06:9e:61:b3:79:b3:a9:fa:f6:f1:43:
27:c9:75:eb:62:19:ae:3f:90:f5:f4:9e:96:3f:77:9b:d3:d4:
db:6e:0f:1c:24:44:f4:b1:be:91:b2:69:57:49:b7:67:2b:59:
c1:96:68:6c:76:bd:35:07:4a:b5:b5:4b:69:59:99:e1:e4:cf:
3b:23:d9:4d:84:65:a8:7b:52:53:31:d2:e4:53:ff:25:f7:d6:
02:a2:b3:e0:95:e9:1a:c2:01:57:4e:0b:28:db:42:bb:35:80:
e5:30:77:e5:11:38:d7:9c:8a:74:37:0e:ea:f7:7e:56:0e:36:
1b:75:c3:0d:74:41:bf:e8:fe:98:20:47:9c:c6:fe:a1:5c:16:
d5:ed:a7:43:c6:9a:ea:a1:9d:17:84:2d:93:3f:e4:0b:b5:77:
73:96:c3:64:3b:a6:0e:66:15:f9:77:a3:33:48:53:54:83:c5:
73:99:be:23:dc:de:39:60:cc:be:9d:26:36:33:c1:ac:80:26:
24:8a:90:3b:6f:c0:aa:19:65:6c:da:2d:61:ff:fc:7e:a4:2e:
49:b4:38:11:30:29:40:d6:79:96:95:38:db:50:11:b9:e6:1b:
69:3a:fc:b8:15:b6:7d:2f:57:43:a2:fa:53:95:40:79:cf:2a:
cc:c6:86:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:47:00 2025 by rpki-client