Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Ks_GgYhAWsVEUFKRxY5H-F4rMn0.cer
File: Ks_GgYhAWsVEUFKRxY5H-F4rMn0.cer (raw, json)
Hash identifier: 4UF9jHktzl/yUWE33a+XSOAtdVvUq02B20C20CGUuRQ=
Subject key identifier: 2A:CF:C6:81:88:40:5A:C5:44:50:52:91:C5:8E:47:F8:5E:2B:32:7D
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 316C
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/Ks_GgYhAWsVEUFKRxY5H-F4rMn0.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:12:41 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328628
IP: 102.67.144.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 00:06:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12652 (0x316c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:12:41 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F369C49AAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d8:be:81:63:40:eb:d3:0c:12:80:ec:3c:38:
d0:5e:66:76:87:df:99:73:4f:4a:1b:8e:bc:3c:a7:
13:e5:ac:5c:86:60:d8:78:02:14:13:88:83:16:4e:
cc:c2:01:dc:3a:53:0f:38:78:d3:87:8f:3e:af:20:
7d:ad:7b:cd:09:6c:85:b1:0b:88:b5:9b:93:d0:5b:
36:89:33:40:99:3e:15:76:36:a3:18:44:b5:b9:90:
4c:00:9b:f1:9a:bf:bf:12:49:3b:2b:65:7b:7c:42:
5d:95:39:ba:69:5f:28:98:38:75:98:f0:02:81:48:
52:75:4e:9b:40:59:be:e0:79:26:be:fc:2a:fb:4f:
aa:f2:00:da:3f:30:6d:e4:61:6f:6a:02:67:c0:42:
8c:19:af:7c:9e:e4:74:3e:a2:70:df:12:18:84:f8:
68:8c:a5:7b:c8:c0:c1:d5:76:54:7d:31:56:70:52:
f6:40:45:90:0a:4e:83:37:90:f4:70:26:a4:a9:07:
91:30:a9:c3:17:d9:41:f7:3c:93:4b:64:dc:14:6c:
68:8b:20:13:8e:22:98:4e:43:6c:f3:7b:bd:9f:22:
07:56:6a:6d:a1:4b:6d:15:44:e6:ab:bf:31:3f:dc:
70:0d:0c:eb:25:9d:b6:84:fc:57:1e:4f:a7:73:19:
51:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:CF:C6:81:88:40:5A:C5:44:50:52:91:C5:8E:47:F8:5E:2B:32:7D
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/Ks_GgYhAWsVEUFKRxY5H-F4rMn0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328628
sbgp-ipAddrBlock: critical
IPv4:
102.67.144.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:3a:9b:66:95:c8:79:5d:39:8d:83:e8:0d:4f:cd:0b:83:dc:
0f:45:63:f1:be:4c:ff:60:94:7a:7f:f6:1a:c9:ac:a1:f9:02:
1f:b3:db:53:9e:ae:d1:2a:ba:54:e1:36:0d:14:2f:20:e3:c4:
c6:b6:70:e3:72:79:52:98:30:b1:17:e9:e3:6f:69:ea:ba:5f:
7b:6d:73:44:53:52:39:cf:3f:7f:e4:e3:e0:fb:bd:35:d2:a0:
32:83:d9:11:89:eb:66:d1:d7:14:f6:9f:59:2d:8e:19:a8:fc:
76:ae:18:f4:e3:19:af:ad:9d:16:13:c3:2a:98:37:94:c7:2f:
d7:f0:f5:a9:9c:21:2f:c4:0f:b0:48:e0:9b:61:22:4d:05:2f:
9f:28:93:2a:c5:eb:2f:05:de:ca:a6:5d:16:59:5d:79:57:8f:
dd:9a:11:16:ae:c3:1e:9b:30:93:89:9c:27:da:9d:c4:a6:c0:
6b:96:00:97:a5:87:fd:39:ec:65:33:ad:3d:0f:6c:0d:01:d7:
35:cf:ce:f3:23:f7:4d:b9:2d:b0:7e:91:76:6b:6a:a8:9e:7a:
3a:10:5b:b6:75:f7:01:e5:e9:1c:33:e4:1e:05:73:6c:5e:69:
2d:58:9d:51:8c:2c:de:12:8e:dc:c3:c5:7c:a5:4c:c6:5c:a7:
fb:11:9e:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 21:55:41 2025 by rpki-client