
Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
File: JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer (raw, json)
Hash identifier: 5UWuaU96Dh1/JJ+eHC5FoDDZBzrORNHVgNRSJUm/j4Q=
Subject key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 30E4
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:44:26 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 154.80.0.0/12
IP: 154.192.0.0/11
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12516 (0x30e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:44:26 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F368F2D0AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7f:5a:2d:17:c8:bf:77:04:d1:ab:83:4b:33:
50:a9:46:6a:f3:72:31:68:c1:46:34:7d:5c:be:a8:
29:56:09:69:a9:af:5a:df:26:fa:73:e3:cd:31:c7:
a1:a8:09:33:8a:27:b5:05:54:ed:b6:c9:f1:45:18:
ae:6a:51:c5:65:44:2a:e7:96:3f:7c:6a:30:9e:83:
dd:be:5f:d1:d8:55:df:75:67:a0:51:6d:e9:41:38:
e2:33:97:f0:23:59:92:29:b6:66:b3:30:78:f6:67:
42:a6:fe:23:37:28:bb:c0:be:64:f7:a7:15:d6:a9:
c6:80:cc:04:60:a8:35:8f:a5:04:08:c0:78:62:30:
7e:70:9a:e3:70:92:6e:92:16:f8:4a:a0:02:a0:4a:
25:7c:09:e3:9b:e5:89:13:ff:3a:21:91:7b:78:9c:
20:cb:d4:39:d8:80:c5:07:6e:a6:5e:d9:f7:4d:7a:
c0:a4:0e:8e:21:a8:5f:b9:91:34:d1:ec:0b:d3:cc:
c2:15:85:2d:5a:b3:2b:fd:2e:75:77:8f:b3:ba:f4:
e7:0c:9d:56:8b:e9:a2:be:31:2f:11:34:69:5b:d6:
2e:6d:65:d3:79:e9:9a:f4:19:7f:21:12:87:9e:10:
fc:da:cd:3b:e1:7f:08:93:ed:85:90:ff:d4:af:34:
8f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
sbgp-ipAddrBlock: critical
IPv4:
154.80.0.0/12
154.192.0.0/11
Signature Algorithm: sha256WithRSAEncryption
00:d5:d4:18:41:53:bc:c1:2d:53:da:4b:31:dc:9d:c1:67:5a:
19:25:ba:f0:92:13:0a:ca:39:fe:9f:d3:11:93:84:1e:25:fd:
05:24:3f:06:8e:a5:8e:b5:2f:6a:fa:98:24:22:d8:09:2d:60:
0e:3d:e4:08:74:f1:1c:63:8f:5d:24:c7:bc:ef:24:ee:51:83:
3f:c0:e4:76:e9:98:df:92:40:0d:e0:56:03:da:e9:e9:2f:bc:
81:5e:78:c1:b3:82:a8:d7:7e:2a:db:ec:d1:72:c2:a8:db:fb:
84:57:6b:df:d8:b2:ce:59:9c:60:5f:c7:b9:a7:8b:2e:d5:96:
79:c6:9a:d2:65:a0:89:c0:f7:16:7e:a6:6d:58:ac:38:3a:c3:
d9:12:7a:98:0c:ce:d6:ff:cf:61:7c:57:d4:c6:fd:7d:04:26:
ca:7f:be:53:33:c2:f7:9a:7a:f4:e4:bc:38:d0:94:2f:a4:de:
b3:cc:54:b7:19:9e:d9:00:41:8e:4a:73:d6:63:a6:a3:96:a9:
58:82:02:89:9c:c0:29:37:69:cc:07:dd:66:43:bc:9a:80:57:
51:8d:f2:1b:45:36:b3:52:f8:6e:f0:4f:bc:bb:9d:81:d4:46:
e1:2b:96:ed:d8:81:e7:47:5e:49:ce:93:fd:2a:17:d3:24:ac:
1d:8c:ff:50
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgICMOQwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMzQ0MjZaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRD
MUQ2RDM0MTE2REUxNUIzREMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDYf1otF8i/dwTRq4NLM1CpRmrzcjFowUY0fVy+qClWCWmpr1rfJvpz480xx6Go
CTOKJ7UFVO22yfFFGK5qUcVlRCrnlj98ajCeg92+X9HYVd91Z6BRbelBOOIzl/Aj
WZIptmazMHj2Z0Km/iM3KLvAvmT3pxXWqcaAzARgqDWPpQQIwHhiMH5wmuNwkm6S
FvhKoAKgSiV8CeOb5YkT/zohkXt4nCDL1DnYgMUHbqZe2fdNesCkDo4hqF+5kTTR
7AvTzMIVhS1asyv9LnV3j7O69OcMnVaL6aK+MS8RNGlb1i5tZdN56Zr0GX8hEoee
EPzazTvhfwiT7YWQ/9SvNI8jAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQUJdY+COq+
fPpnhdTB1tNBFt4Vs9wwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUx
MUU4OUMwRDZFNEJGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OEYyRDAvN0Y0QTk4RUE2RTA1MTFFODlDMEQ2RTRCRjhBRUEyMjgvSmRZLUNP
cS1mUHBuaGRUQjF0TkJGdDRWczl3Lm1mdDAjBggrBgEFBQcBBwEB/wQUMBIwEAQC
AAEwCgMDBJpQAwMFmsAwDQYJKoZIhvcNAQELBQADggEBAADV1BhBU7zBLVPaSzHc
ncFnWhkluvCSEwrKOf6f0xGThB4l/QUkPwaOpY61L2r6mCQi2AktYA495Ah08Rxj
j10kx7zvJO5Rgz/A5HbpmN+SQA3gVgPa6ekvvIFeeMGzgqjXfirb7NFywqjb+4RX
a9/Yss5ZnGBfx7mniy7VlnnGmtJloInA9xZ+pm1YrDg6w9kSepgMztb/z2F8V9TG
/X0EJsp/vlMzwveaevTkvDjQlC+k3rPMVLcZntkAQY5Kc9ZjpqOWqViCAomcwCk3
acwH3WZDvJqAV1GN8htFNrNS+G7wT7y7nYHURuErlu3YgedHXknOk/0qF9MkrB2M
/1A=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:57:27 2025 by rpki-client