Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/M-hGYU4VRCxoAFpeP85ct1bgSn8.cer
File: M-hGYU4VRCxoAFpeP85ct1bgSn8.cer (raw, json)
Hash identifier: z6Zt8bjCiW1zf6cGQ6ao8YK0TGz2y8XrJART7Dou9gs=
Subject key identifier: 33:E8:46:61:4E:15:44:2C:68:00:5A:5E:3F:CE:5C:B7:56:E0:4A:7F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2CD1
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3613F08/BF472C78690511EEB09925884AD9E6FC/M-hGYU4VRCxoAFpeP85ct1bgSn8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3613F08/BF472C78690511EEB09925884AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:05:26 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328917
IP: 102.211.124.0/22
IP: 102.219.76.0/22
IP: 2c0f:5240::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11473 (0x2cd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:05:26 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3613F08AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:71:62:03:04:99:90:ab:8f:26:32:63:9b:2f:
94:b5:b4:6f:f3:f8:73:5c:38:c7:3e:33:2d:cf:9b:
bb:e9:40:24:f3:1b:89:80:a8:96:b6:5b:83:75:c0:
3d:7a:9f:5e:6d:5e:c3:ae:0d:51:2b:1e:17:af:ea:
bb:d4:c7:4c:64:97:ec:55:f8:03:e2:50:47:f7:e1:
89:66:91:81:af:ef:7e:83:32:fe:bc:59:61:b3:17:
e3:ec:e7:89:3e:6c:c1:a6:d7:5e:75:83:d2:33:32:
dd:0f:76:5b:c9:ab:db:b7:36:fd:2c:77:92:8b:0c:
84:5e:1c:e9:de:02:b3:c6:20:8d:0f:e9:8a:13:3f:
f8:24:f8:88:43:05:cb:47:48:35:40:27:f3:23:31:
9f:5b:13:1c:57:de:d3:c3:af:8d:2a:e4:91:54:c4:
77:03:bc:fe:d9:21:bf:c3:c2:3a:74:0c:5f:97:c9:
5f:98:f1:ec:de:20:e2:61:35:32:97:b3:59:4f:51:
68:9f:e9:b8:8f:1c:7b:4c:d6:70:7e:69:75:d8:56:
4e:5b:0b:d3:c0:d7:62:5d:f4:b9:da:b8:bf:e0:bc:
03:b5:c7:65:6a:df:61:ec:68:b7:56:19:4f:4a:26:
f3:79:de:a0:af:ff:28:e1:f0:ed:c9:63:bc:83:85:
a8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E8:46:61:4E:15:44:2C:68:00:5A:5E:3F:CE:5C:B7:56:E0:4A:7F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3613F08/BF472C78690511EEB09925884AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3613F08/BF472C78690511EEB09925884AD9E6FC/M-hGYU4VRCxoAFpeP85ct1bgSn8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328917
sbgp-ipAddrBlock: critical
IPv4:
102.211.124.0/22
102.219.76.0/22
IPv6:
2c0f:5240::/32
Signature Algorithm: sha256WithRSAEncryption
ad:dd:58:d0:1b:01:86:a0:b9:2a:d3:69:72:e0:7a:4b:c7:9b:
ae:a1:37:e4:79:5e:23:f1:90:89:de:d9:16:74:00:64:5a:09:
c6:4b:89:5c:46:8f:13:f5:c3:3e:34:3a:31:92:c0:cb:34:ed:
b9:1b:14:0e:30:67:fa:df:bc:3c:ef:51:46:a0:e2:1a:5d:28:
29:d0:71:31:85:83:0f:a8:9f:39:c3:63:4d:06:ac:63:df:24:
de:14:aa:7b:ca:74:72:93:cc:d9:b6:59:91:a4:eb:05:63:9e:
c9:1a:75:0a:5c:32:78:53:f9:ac:8b:d9:fe:4d:82:8a:76:29:
b3:49:41:0e:24:2d:56:52:85:e1:0a:32:77:4e:49:9d:8c:46:
6a:0c:af:b8:23:7c:6b:86:07:81:c5:5a:09:28:ce:b9:77:e8:
48:ec:f4:81:82:b9:16:2c:95:ab:cc:2d:9d:a9:c6:88:ba:1e:
fb:a1:81:9a:bf:d5:2f:e3:c0:75:f3:53:ae:57:bc:e9:76:91:
75:18:20:bf:b2:f8:c9:3a:a8:b3:5e:8c:4a:98:e1:9b:6d:32:
d8:a0:5c:a2:74:f0:38:ba:6b:76:9d:7e:bc:22:85:68:20:96:
be:d8:16:b8:35:e3:f1:00:f2:69:67:4b:00:ad:c5:0e:d5:17:
7f:77:5b:cc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:37:34 2025 by rpki-client