Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/NwiffHLw58V4LX8rO9aPXYzsU5Y.cer
File: NwiffHLw58V4LX8rO9aPXYzsU5Y.cer (raw, json)
Hash identifier: b9YdjQT5Ym0PRX8FrFJ4dyfJe58ddkEFDP7W2xsr2vA=
Subject key identifier: 37:08:9F:7C:72:F0:E7:C5:78:2D:7F:2B:3B:D6:8F:5D:8C:EC:53:96
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2EAB
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:49:00 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37002
IP: 41.213.128.0/17
IP: 102.35.0.0/16
IP: 102.213.8.0/22
IP: 2c0f:f918::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11947 (0x2eab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:49:00 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F364E67CAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:51:44:3d:e0:62:2b:bb:9a:08:fb:f1:0f:e5:
73:27:1d:bb:60:df:70:5a:d4:ff:96:c5:b0:3c:03:
0e:49:d9:0e:f7:34:f4:cd:1a:d1:0a:a4:f3:95:64:
33:8f:61:93:0a:f9:3a:ea:11:6a:fa:87:fe:5b:31:
c7:a5:1c:05:92:5f:ea:cd:50:9a:a2:b4:95:56:a6:
40:05:2f:90:09:8b:ff:6d:a5:d9:9d:59:39:73:35:
aa:1e:0d:d5:19:62:c5:31:6a:a5:d5:fd:96:00:ec:
6e:09:77:17:33:5f:bc:35:aa:d2:5c:ce:e1:b6:f9:
88:da:b5:d1:17:2d:be:d8:51:ee:22:ab:b3:08:74:
69:0f:2b:0a:49:d5:da:f0:82:76:38:e0:20:f6:6b:
9d:4b:9e:c4:11:9b:d6:02:21:e9:6a:85:5d:a4:f3:
a6:d4:59:f5:04:fc:92:34:5f:19:bd:a8:54:c7:61:
a2:94:b7:2a:d6:c4:81:f8:d3:99:24:ab:94:4b:18:
5f:a8:63:01:65:7c:43:42:19:9c:d6:4f:52:d0:e8:
67:5a:05:08:58:e6:fd:5f:e8:77:d7:d7:28:9c:8d:
d4:e2:a9:f5:a4:42:51:99:5a:8b:72:ba:5c:5f:8e:
04:1e:6f:f8:4a:5d:01:9c:1b:df:d8:6a:45:37:2d:
5e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:08:9F:7C:72:F0:E7:C5:78:2D:7F:2B:3B:D6:8F:5D:8C:EC:53:96
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37002
sbgp-ipAddrBlock: critical
IPv4:
41.213.128.0/17
102.35.0.0/16
102.213.8.0/22
IPv6:
2c0f:f918::/32
Signature Algorithm: sha256WithRSAEncryption
04:90:1e:5b:73:83:e8:b4:60:8b:ee:13:fc:cc:58:c2:06:e3:
7b:a6:7a:d5:c5:ad:79:d8:f7:99:b1:2c:28:e3:ce:09:08:8b:
b2:21:a1:b2:ae:c3:e0:cb:00:4c:8a:20:a6:c7:8d:c3:82:de:
04:a6:e5:d6:d1:52:f0:fa:77:9f:74:54:3b:7b:0f:90:65:a5:
e2:a1:c3:62:81:99:4a:38:f2:b4:18:fc:f7:0d:3a:a2:6c:b3:
9f:54:e7:6a:47:70:69:eb:65:88:99:bb:e7:24:5f:06:38:ce:
71:74:b8:27:e8:26:1a:09:09:4b:aa:24:28:ba:a7:10:73:1c:
bf:0b:4f:f1:42:d3:6d:7d:8c:a3:8b:45:0d:2d:f0:ff:44:d5:
88:38:51:9b:65:5f:4a:47:70:db:0b:f4:f9:b0:f5:f9:63:f0:
10:46:e8:be:8f:42:60:cd:e5:a3:cc:ec:76:51:b2:4e:86:25:
ad:62:06:04:df:62:d7:76:f3:af:b5:be:63:d2:ad:74:d4:bb:
d6:26:95:b9:ab:0e:2c:81:92:38:8a:3e:6e:c6:36:08:2e:2e:
bf:67:47:73:38:79:1c:3b:53:70:7c:e4:f9:eb:98:33:7f:a0:
de:65:dd:4a:fb:44:67:cf:1a:40:f4:3c:39:33:87:24:f6:5a:
bf:37:17:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:51:16 2025 by rpki-client