Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/NaE6RzFmxUdFBUsur-85WeOenW8.cer
File: NaE6RzFmxUdFBUsur-85WeOenW8.cer (raw, json)
Hash identifier: n1xg8heD1I6WvI/wxurDOQC6HloStNCDsCKipbgXYaI=
Subject key identifier: 35:A1:3A:47:31:66:C5:47:45:05:4B:2E:AF:EF:39:59:E3:9E:9D:6F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F9C
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/NaE6RzFmxUdFBUsur-85WeOenW8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:37:21 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.67.168.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12188 (0x2f9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:37:21 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3666101AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b7:6b:ef:23:c5:a8:56:f4:0e:05:2f:55:ee:
0b:55:72:41:a7:32:ec:78:e5:c4:e1:79:02:e8:33:
7d:d7:c5:6e:72:a2:2a:b1:36:71:ab:9b:fb:ee:65:
3d:30:70:93:35:51:22:00:4d:b3:6a:15:55:64:8d:
9d:0a:12:2b:fa:b1:2c:49:b1:04:2f:c1:51:48:9e:
b1:b5:71:d2:cb:e4:0a:97:19:a1:3c:3b:b1:aa:8e:
72:0d:9d:89:42:3a:1a:d9:fd:28:7c:81:b9:94:4a:
4d:90:cd:01:61:e4:71:a6:fe:d7:8c:f5:fb:9e:b4:
16:f3:58:86:ca:7b:78:95:91:d1:97:f5:ef:9f:d6:
9a:4b:11:da:da:5c:e6:16:b3:95:b0:f5:40:30:e5:
9c:a7:f5:1e:4c:71:32:07:5a:da:4a:05:ed:d5:87:
87:a2:30:d2:0f:05:7b:c9:d0:06:ac:1e:1a:04:71:
b7:cc:47:f5:51:32:0a:03:bd:55:81:e4:e7:1f:96:
27:4e:40:e4:4f:fd:20:4e:53:f4:61:7d:65:f0:52:
02:34:1b:1c:c7:86:0e:7c:a3:e1:e5:9f:99:a7:5a:
45:4a:8d:13:54:ce:11:9d:e5:c9:a1:f4:fd:2e:73:
56:13:1f:ec:22:d2:4e:02:10:13:a3:13:36:f1:2b:
81:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A1:3A:47:31:66:C5:47:45:05:4B:2E:AF:EF:39:59:E3:9E:9D:6F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/NaE6RzFmxUdFBUsur-85WeOenW8.mft
sbgp-ipAddrBlock: critical
IPv4:
102.67.168.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:e6:ce:82:85:13:9b:d3:f5:14:24:97:3d:5b:14:d8:44:5a:
08:21:46:92:13:b1:8a:7a:93:e7:aa:a4:a5:10:8a:ef:bc:2c:
fa:25:34:1c:8e:0b:4c:42:f0:13:90:ea:25:87:c9:fd:91:27:
27:23:ab:b8:f3:9b:dd:a5:17:e6:92:9c:44:3c:b8:ec:3d:2b:
c1:72:cc:94:51:70:cf:5a:84:cb:60:30:61:bb:d6:66:3e:ad:
1f:11:7f:a7:15:82:39:9f:f1:62:be:1e:8b:ba:63:a7:ff:1c:
7d:32:10:db:a1:69:61:0b:15:28:5d:09:64:70:17:38:5d:bc:
1a:fb:74:c7:09:65:2c:00:ac:8f:cb:53:25:b9:9a:e7:29:cb:
f2:5d:f5:54:a4:5a:23:3a:59:7f:ae:b8:8a:37:cc:3d:73:ca:
8c:3e:1e:a7:84:81:d2:f0:19:77:34:01:85:61:91:6b:4a:22:
b6:ae:7e:60:af:85:4b:04:39:2a:4b:94:94:a7:f1:87:09:f0:
54:81:a1:22:fd:69:91:69:b4:f2:63:a5:1e:ad:ce:b1:6c:d4:
1c:63:cf:13:27:9e:b4:d9:b7:16:84:83:4b:6e:b9:ab:d6:ec:
ae:32:f5:eb:75:a0:f8:0e:62:76:13:25:be:a2:e6:58:e0:b6:
2e:44:8d:16
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:51:19 2025 by rpki-client