Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/PUpO_QKaES64mqyOyp2RekfLbFw.cer
File: PUpO_QKaES64mqyOyp2RekfLbFw.cer (raw, json)
Hash identifier: LH0rib1WsLawW/ATvybLjN0ZnV3z8jQo3lpUF8/dCLk=
Subject key identifier: 3D:4A:4E:FD:02:9A:11:2E:B8:9A:AC:8E:CA:9D:91:7A:47:CB:6C:5C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F16
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:10:30 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328820
IP: 102.220.104.0/22
IP: 2c0f:1200::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12054 (0x2f16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:10:30 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36598F5AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:11:b8:14:48:37:e5:21:16:d2:e1:f3:44:c3:
0a:48:72:73:f1:c4:62:ce:74:20:2b:e6:a0:79:cf:
84:aa:b8:ce:79:32:b6:42:86:a9:f7:d7:18:bd:ea:
88:a8:6d:89:ee:2f:2a:aa:e3:fb:e6:ea:23:b2:f0:
7c:b7:2f:91:5e:d5:52:11:08:8a:d3:a0:1b:b6:0f:
8b:e1:3c:70:d5:37:2e:cf:7a:c3:85:ff:4a:2e:47:
e1:e2:27:28:fa:dc:fb:e8:fc:62:b3:e8:e8:16:1e:
37:ac:3a:3a:50:51:01:6d:2e:70:cb:cb:ff:80:59:
27:6a:9e:72:8a:9d:96:16:f3:c6:bd:b0:a7:96:8f:
1d:a5:34:ad:18:c1:3e:61:7e:09:78:cb:77:ca:fc:
9f:4b:b4:a0:91:0a:91:0e:3e:6e:d3:7c:59:16:68:
f2:c5:1e:f2:85:9e:36:cb:b8:68:d1:d3:ee:e3:73:
cd:32:34:95:15:2d:18:de:ee:19:d9:51:f3:77:49:
d9:58:10:00:14:30:45:20:f8:f2:ea:6f:b9:10:65:
43:7f:09:6f:cd:80:e5:d6:67:0a:df:22:5c:9a:e3:
77:6d:1c:fc:11:04:99:40:87:48:dc:b8:e7:93:c3:
d3:cf:82:5a:d6:17:8e:24:3d:78:6d:f2:c5:19:f7:
af:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4A:4E:FD:02:9A:11:2E:B8:9A:AC:8E:CA:9D:91:7A:47:CB:6C:5C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328820
sbgp-ipAddrBlock: critical
IPv4:
102.220.104.0/22
IPv6:
2c0f:1200::/32
Signature Algorithm: sha256WithRSAEncryption
89:ba:58:88:fd:12:da:af:d1:76:ef:2d:a3:82:d1:ee:c3:ae:
00:86:48:13:74:c8:27:09:3d:bf:74:d4:57:b2:22:9e:29:ca:
e1:e3:1b:5d:39:0d:56:fb:fb:df:2a:59:5f:6d:59:2b:b0:0e:
ec:30:01:ba:95:e5:db:91:2b:6d:96:89:41:cd:6f:34:58:87:
03:82:c4:5a:f6:7a:5e:43:85:61:98:ca:c3:2f:3b:21:78:d7:
f1:fc:b5:d2:69:a8:14:ec:f8:f1:35:6a:97:37:38:ab:b9:56:
66:d4:12:1d:53:e0:d3:12:c1:56:28:c8:83:bb:9e:7a:c7:f6:
37:e3:ba:a2:56:e7:c5:84:f0:6f:bc:e8:9e:3a:5e:dd:7c:bf:
09:05:f4:de:14:4c:fa:fd:b6:ee:ff:b7:75:3d:65:97:fb:44:
dc:4b:98:0e:0f:d0:5d:6c:46:4a:50:08:01:d4:2d:cc:a4:b8:
ae:af:c7:7e:f3:e6:d5:74:40:ba:26:ed:d5:2a:06:d2:2b:d4:
8d:68:22:a1:af:76:e7:08:30:9e:58:74:8a:21:09:5b:b9:e9:
1f:9a:f3:29:0a:d7:51:78:f8:b3:51:d8:4b:01:03:38:61:f1:
7d:c6:04:ff:ee:a3:00:cf:bb:9d:17:08:7a:50:56:60:a2:95:
ec:8d:85:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:37:36 2025 by rpki-client