Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
File: PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer (raw, json)
Hash identifier: YmuW7TDFt2XxZM8/KWZlrB4QlRMpfaoINqPKLFx0aGk=
Subject key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 30CD
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:39:35 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 33763
AS: 37096
IP: 41.218.64.0/18
IP: 196.1.28.0/22
IP: 196.216.32.0/19
IP: 197.234.64.0/18
IP: 2c0f:f980::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12493 (0x30cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:39:35 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36886B3AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1c:4d:2e:cd:23:8e:9d:79:53:30:73:21:82:
52:63:6d:9c:e2:92:02:26:f0:96:c5:47:d6:f4:9b:
83:21:61:d8:e8:d9:23:80:83:46:42:c6:55:48:7b:
28:12:bd:2c:65:ee:cb:3a:b5:3e:67:db:0f:e2:9c:
2f:47:63:a3:ca:6e:27:d5:60:be:2d:02:ee:00:e3:
9b:6c:f1:f1:3a:31:53:3b:12:f5:5f:31:d3:96:91:
a9:f0:0d:03:32:2b:cf:19:27:25:70:c0:3c:78:93:
d7:28:c7:ea:c0:d0:9f:f7:d0:3d:bc:bb:3d:fd:06:
8f:28:d8:02:1e:ce:3d:78:5a:4a:a7:9d:49:51:87:
76:e6:87:c5:90:fa:6c:9e:d5:5d:0c:17:6a:a1:bc:
4c:2d:7d:d2:fb:d9:b4:58:aa:8c:cf:91:e8:b1:8c:
13:c5:6c:fa:20:ae:0d:d9:ac:73:8e:93:36:57:4e:
f5:aa:9a:62:c0:30:94:62:71:8d:94:65:7a:ba:3d:
4c:60:e6:42:7b:94:f4:e2:54:6a:30:5f:fd:51:f7:
04:e7:8c:90:43:0a:d5:3f:0f:b9:bd:c0:3a:a3:7f:
22:33:1c:11:b3:7f:2e:d0:19:29:a4:a8:45:62:3f:
01:79:2d:60:54:47:98:30:da:cb:0a:f2:49:46:ee:
b8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
33763
37096
sbgp-ipAddrBlock: critical
IPv4:
41.218.64.0/18
196.1.28.0/22
196.216.32.0/19
197.234.64.0/18
IPv6:
2c0f:f980::/32
Signature Algorithm: sha256WithRSAEncryption
0f:c4:5b:c0:78:b9:ef:b2:1c:63:bd:7c:e9:02:6d:84:54:54:
8c:6d:0a:6b:2b:5b:09:d0:e3:79:88:a7:4c:1f:80:f1:1a:d5:
55:2b:c1:16:f9:53:06:e8:d0:42:7b:7c:b2:46:f6:db:f6:d3:
39:e6:b4:9c:20:35:fb:92:73:8b:41:8c:cc:47:13:d6:0b:ad:
ce:cf:0e:a4:40:09:0f:8b:cb:8b:a0:64:01:e9:cf:3d:0b:9e:
bd:06:8e:ed:0c:14:13:fa:de:01:bd:23:3d:80:60:25:d0:f7:
d3:9a:b4:50:9e:b1:f9:b2:05:8a:9e:d3:9d:d6:70:64:cb:a0:
96:8b:ee:24:df:2b:cf:cd:9c:85:3f:34:bc:f7:81:d3:25:cf:
77:4c:35:4c:5d:8e:c6:0e:d0:f3:d7:65:03:5c:1a:62:69:7e:
1c:8b:8d:a3:a3:15:e0:e1:cd:36:6d:8c:61:96:23:23:59:7b:
1d:28:d3:27:ce:d2:39:8f:fc:7e:56:a0:19:46:b5:bc:4d:9d:
2a:c7:5e:99:51:21:5a:9c:9b:38:38:c9:b4:7c:90:75:43:ff:
aa:cc:d2:75:fc:e2:0b:c4:9f:cf:f8:3c:08:fa:91:09:b3:98:
4a:ea:e5:04:f9:6f:98:a5:6c:a3:80:d4:51:40:72:a5:2d:f6:
8d:a0:61:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:19 2025 by rpki-client