Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Mbpazle_Ha-6iN2u9C7I8VFeE8I.cer
File: Mbpazle_Ha-6iN2u9C7I8VFeE8I.cer (raw, json)
Hash identifier: 81GrLYAbbO5RIL2YCcCN43QOYUgOy+WHBTibRyOF5hI=
Subject key identifier: 31:BA:5A:CE:57:BF:1D:AF:BA:88:DD:AE:F4:2E:C8:F1:51:5E:13:C2
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2DB4
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36312D2/FFA25144F0FD11EBA85B643ED8A014CE/Mbpazle_Ha-6iN2u9C7I8VFeE8I.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36312D2/FFA25144F0FD11EBA85B643ED8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:57:43 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37236
IP: 41.79.240.0/22
IP: 102.213.128.0/22
IP: 102.218.120.0/22
IP: 154.119.224.0/19
IP: 2c0f:f010::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11700 (0x2db4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:57:43 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36312D2AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:72:88:5b:0a:76:11:f0:78:01:3a:35:d5:00:
5e:37:16:99:5b:ec:40:18:3b:d5:c0:4b:a3:d3:ec:
f6:8c:c4:42:5c:50:00:c3:80:08:71:fa:85:37:82:
c4:79:59:ef:e1:48:cf:a1:07:79:5e:a8:5d:76:cb:
56:46:f3:da:db:2e:04:da:47:76:16:d0:45:85:ac:
c5:c8:9b:80:df:e8:00:2b:3c:6e:54:b8:03:b7:d2:
d2:c4:67:62:9d:39:b8:83:1c:4d:32:3d:7a:f2:01:
3d:8b:87:13:f5:09:fe:1f:05:ec:93:e8:a9:60:3c:
5a:46:d7:b7:66:6d:34:73:b3:d4:ac:4f:d0:e3:51:
cb:61:3a:85:90:cf:58:2a:a4:2f:b9:44:e9:cf:c1:
94:67:e9:d2:61:1f:07:e2:ad:07:52:a7:3b:66:b9:
90:cd:09:fa:c5:59:d9:0d:79:84:c6:0d:3a:34:bf:
3d:ed:72:ef:c9:95:e3:69:ac:2a:63:91:f7:1f:99:
b4:c6:0e:c2:cc:f4:2f:e1:3f:6c:10:d3:37:cd:02:
77:b1:0f:f7:f4:11:b5:aa:ae:51:01:a6:44:1d:d0:
18:f9:4d:84:76:a4:94:1f:ea:ab:dd:f1:3c:45:ef:
05:1a:23:40:4c:1b:db:50:cc:ff:f8:5e:9c:f3:e4:
0e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BA:5A:CE:57:BF:1D:AF:BA:88:DD:AE:F4:2E:C8:F1:51:5E:13:C2
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36312D2/FFA25144F0FD11EBA85B643ED8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36312D2/FFA25144F0FD11EBA85B643ED8A014CE/Mbpazle_Ha-6iN2u9C7I8VFeE8I.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37236
sbgp-ipAddrBlock: critical
IPv4:
41.79.240.0/22
102.213.128.0/22
102.218.120.0/22
154.119.224.0/19
IPv6:
2c0f:f010::/32
Signature Algorithm: sha256WithRSAEncryption
23:28:27:87:2b:c5:6d:aa:12:88:8f:d4:92:14:d3:76:04:fc:
18:d1:49:1e:e6:ea:9b:fe:5a:fb:a1:1a:51:ec:98:c2:33:c4:
3e:8c:de:a0:be:82:44:5e:b1:03:d0:e2:5d:7b:5f:e1:90:f8:
25:d8:e0:cf:db:f5:74:42:68:85:64:70:72:b3:67:64:81:8a:
38:82:29:bf:7e:35:ff:4e:5e:9b:ea:0c:92:d8:5b:e7:73:5a:
98:60:68:4e:e9:ab:49:b8:b0:f5:e0:dc:cc:db:fa:bd:e9:86:
d4:16:7c:ee:6c:ca:6a:5b:a9:47:f0:72:b6:77:c5:2c:b8:6a:
19:db:f8:f3:2b:6b:a3:27:b0:5c:38:51:f2:e0:3a:7d:4e:a4:
d1:85:c0:c8:03:68:5e:6c:ee:06:53:31:d5:77:0c:bd:33:06:
b4:41:71:dd:46:4f:29:75:02:0b:06:10:06:a9:21:ac:91:b0:
09:50:80:d6:70:75:b4:d4:03:77:ff:ed:25:61:3a:f5:c3:6f:
5e:63:a3:a2:4e:ef:63:f1:96:e6:ab:c6:21:3b:f7:6e:74:bd:
2f:d6:cf:08:ec:f0:bb:03:71:88:73:41:98:ae:5c:eb:61:d8:
74:a8:e8:4c:aa:42:62:53:05:65:50:a8:80:8f:59:8b:a8:20:
fd:30:7d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:53:19 2025 by rpki-client