Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/KF9hqPUjMGRTeGWSdEagBQLhHr8.cer
File: KF9hqPUjMGRTeGWSdEagBQLhHr8.cer (raw, json)
Hash identifier: SXAg0nU8o5CnK0HLO6bywThMVYQElK7pL5hG4/yg6R8=
Subject key identifier: 28:5F:61:A8:F5:23:30:64:53:78:65:92:74:46:A0:05:02:E1:1E:BF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2A87
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3689F69/B6B5A48C2FC411EFA04CDA8D762E951A/KF9hqPUjMGRTeGWSdEagBQLhHr8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3689F69/B6B5A48C2FC411EFA04CDA8D762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Fri 21 Jun 2024 11:52:27 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 37125
IP: 41.217.204.0/22
IP: 102.164.32.0/21
IP: 2c0f:fff0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10887 (0x2a87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jun 21 11:52:27 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F3689F69AF/serialNumber=285F61A8F5233064537865927446A00502E11EBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:41:41:39:b0:73:0b:ab:ea:b5:df:4c:d4:4a:
06:e0:49:8a:9a:26:76:63:15:28:17:0b:3b:22:29:
d4:b6:0a:ea:b6:93:f8:17:e3:64:bb:43:99:0a:23:
34:0d:02:97:a1:e3:ad:d3:fe:86:7b:35:60:23:00:
6b:47:a1:af:7b:7b:ab:e5:c6:63:52:24:29:de:09:
ad:62:5b:c7:7b:ad:40:15:4c:72:4f:c9:0d:b1:09:
6b:0b:1f:57:75:19:05:1d:18:44:07:d3:9a:12:72:
c2:0f:ec:4c:78:e6:62:53:41:01:b6:bc:76:81:d5:
44:9c:fa:25:c2:16:f0:ae:54:42:4e:f3:e7:d1:ca:
47:aa:f3:19:20:0a:a8:fa:dd:bc:a5:b6:a7:36:80:
cd:1c:9a:e5:9f:a9:fa:6b:27:5b:1e:0e:ec:0a:88:
13:63:73:85:11:d5:3d:9b:cc:64:80:70:92:5d:15:
90:7a:7f:3e:2c:af:6e:ff:45:b4:3e:69:22:12:87:
f4:88:d0:a0:14:c2:fc:bc:bb:78:b3:c0:97:16:f3:
e7:eb:bd:11:06:44:84:ce:5a:7e:b6:fc:bd:f4:08:
10:12:47:d7:57:64:40:29:f6:ef:96:2c:41:91:49:
51:56:19:63:9e:2b:d8:96:cb:7e:d8:ab:2a:7f:e0:
dc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:5F:61:A8:F5:23:30:64:53:78:65:92:74:46:A0:05:02:E1:1E:BF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3689F69/B6B5A48C2FC411EFA04CDA8D762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3689F69/B6B5A48C2FC411EFA04CDA8D762E951A/KF9hqPUjMGRTeGWSdEagBQLhHr8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37125
sbgp-ipAddrBlock: critical
IPv4:
41.217.204.0/22
102.164.32.0/21
IPv6:
2c0f:fff0::/32
Signature Algorithm: sha256WithRSAEncryption
3d:0e:7d:18:54:c8:93:ab:cf:a9:0d:51:8a:9b:75:14:d7:8a:
7e:8c:54:e1:62:3c:f9:f8:a4:9a:9e:82:6b:00:65:29:43:39:
e4:09:60:b1:11:53:23:22:12:ba:c3:ca:94:7a:0f:25:aa:22:
1d:2d:11:04:0c:7b:b9:8c:82:31:86:32:fc:30:3a:1f:76:64:
da:f4:7c:96:f2:8b:be:ec:3a:d5:af:b4:99:4c:50:c5:95:b8:
ad:08:84:09:dc:17:32:dd:88:f3:f6:05:15:dd:a6:c0:ed:7a:
e6:5d:f1:ed:33:2b:1d:4c:2e:55:01:a8:fa:80:43:66:9e:d3:
26:66:0c:c3:b1:ac:62:65:96:88:d3:33:7a:b1:7d:2b:f7:9e:
c5:0b:f7:ae:70:52:07:23:d3:22:4e:20:82:1e:1e:d3:ac:0a:
c8:2f:75:72:ad:e3:f1:e8:7f:aa:ef:71:0a:1f:e5:07:00:d7:
4b:87:db:54:a7:cf:b2:d4:30:3c:68:fc:75:f4:b5:ed:5c:41:
e2:27:a7:a4:6f:6f:b1:c1:4c:90:6b:7a:a6:43:c5:83:6c:39:
0a:b6:88:9b:05:4c:a3:61:67:00:2b:e2:f3:cc:c6:01:c1:9f:
cd:fe:c1:35:8f:7d:35:3e:a6:b2:6c:b5:88:03:3a:2f:79:f1:
4d:e8:d3:22
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:31 2024 by rpki-client on console-fra.rpki-client.org