Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
File: I_gUu0fVw67dUQPzb124opvj1x0.cer (raw, json)
Hash identifier: 9fUeuERdQKb49eLFSA2MFpbT6KFE1D2BPJZ28QXZe08=
Subject key identifier: 23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3303
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:40:54 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 32653
AS: 37394
IP: 41.77.152.0/21
IP: 41.222.48.0/21
IP: 102.164.121.0/24
IP: 154.72.96.0/20
IP: 2001:43f8:1180::/48
IP: 2c0f:fbf0::/28
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13059 (0x3303)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:40:54 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36D9B5BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a2:25:82:8f:b8:ba:4b:12:9f:f4:87:a1:4b:
6a:6a:94:ad:2b:8a:7d:fb:a8:e1:6b:b8:ff:0e:17:
47:f5:de:59:a6:53:42:f0:a5:32:ee:18:dd:71:e1:
85:9f:ba:d8:2b:2f:44:bf:7d:3c:e5:ad:3d:3e:d5:
6c:54:cb:50:9a:d1:6e:b1:53:a1:46:a2:a2:f6:d8:
f0:54:9c:26:e0:c0:03:74:a1:06:06:07:94:f1:b7:
5c:87:ff:db:99:88:8b:a8:4a:eb:7d:a2:d5:0d:9a:
14:2d:1f:c1:36:97:fb:d2:fe:c4:d6:1c:91:c0:eb:
84:f3:fd:69:66:35:77:ea:2e:87:22:97:c5:64:83:
03:d0:2c:5d:33:b8:4b:4b:4f:95:e3:a2:de:cc:06:
18:f8:d6:bf:17:1a:76:e6:07:e0:1a:7d:ea:47:13:
47:22:31:18:ae:b4:ce:b3:74:c3:fe:b8:4e:69:2d:
c3:c2:52:16:4c:80:1a:da:61:40:68:21:86:0e:ac:
b0:4f:ca:65:33:fc:1a:1d:e6:4e:b7:88:f6:64:0e:
4a:e6:13:d0:7c:6d:99:4b:23:21:fa:43:d2:c2:6e:
7f:68:38:ba:25:02:83:e3:9f:a9:b3:cf:de:fd:52:
4f:58:59:4b:b1:1d:0f:2f:9c:43:b8:9d:85:c4:55:
d3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
32653
37394
sbgp-ipAddrBlock: critical
IPv4:
41.77.152.0/21
41.222.48.0/21
102.164.121.0/24
154.72.96.0/20
IPv6:
2001:43f8:1180::/48
2c0f:fbf0::/28
Signature Algorithm: sha256WithRSAEncryption
2c:aa:ae:67:3e:5d:18:30:e0:c7:4e:93:22:0f:3f:e3:eb:64:
f1:8f:73:5c:fd:91:83:e4:02:8b:3c:4f:a6:70:79:06:07:8c:
dd:6f:27:c2:a5:14:15:56:7a:a7:bd:86:40:d0:f8:a7:ea:24:
b5:09:1a:fd:58:22:57:51:61:3b:de:ac:1e:51:34:15:7a:18:
d7:68:b5:29:14:13:08:ac:0a:d6:76:0b:f6:58:a7:b8:83:58:
68:33:0d:a7:be:c5:a7:ba:42:d8:b2:13:d5:d0:23:51:b3:a4:
28:dd:db:81:45:48:10:80:50:77:30:9e:55:7c:9b:d8:99:af:
f6:6f:51:7d:47:0f:94:b3:c7:60:e6:4d:76:02:ce:30:83:60:
f4:6e:06:70:e9:16:5e:77:7f:29:0d:9c:85:55:e8:5e:43:7d:
59:1a:b7:e8:d9:92:28:ff:89:61:0c:7a:d3:e4:b5:cc:1f:af:
17:f1:90:8d:fc:09:9c:57:bb:dd:46:2f:93:6d:0d:b4:f2:5d:
45:79:8d:26:8c:35:d9:88:e3:11:41:d8:b9:2e:2d:cc:68:c1:
13:b9:f6:57:fe:cf:e9:b9:7e:c5:04:49:cf:31:08:88:4f:36:
0f:56:e0:df:bd:7c:aa:53:70:a4:d1:78:77:e2:cd:38:ba:5d:
a0:d5:f4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:48:04 2025 by rpki-client