Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/PdV0GGdrVqud5W-qgMJ4h5vZRc4.cer
File: PdV0GGdrVqud5W-qgMJ4h5vZRc4.cer (raw, json)
Hash identifier: 4d+cIA8/jzvryqhTcrA8nMu0T7XJBxDGBXcqbE4q4oU=
Subject key identifier: 3D:D5:74:18:67:6B:56:AB:9D:E5:6F:AA:80:C2:78:87:9B:D9:45:CE
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E5A
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3645590/95C1A38A27F811EFA48126167DDC24C2/PdV0GGdrVqud5W-qgMJ4h5vZRc4.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3645590/95C1A38A27F811EFA48126167DDC24C2/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:32:00 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328596
IP: 2c0f:eba0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11866 (0x2e5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:32:00 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3645590AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6f:33:f4:10:79:26:fa:a9:1b:c7:dc:a4:94:
70:f3:14:5e:09:bf:bd:48:ac:0e:2b:7d:e8:a1:09:
d2:b7:52:59:8b:1e:0f:23:39:e9:00:70:cb:64:49:
2d:8a:e3:84:a9:62:6b:19:ce:58:62:1e:d6:d1:ea:
55:f7:a0:90:c5:b3:18:91:ff:90:d1:78:0b:51:8a:
ac:a2:85:c2:04:ba:cc:36:7a:11:d1:57:c1:e6:5f:
01:47:88:9e:95:8a:7b:48:dc:ad:10:47:b8:b9:ab:
86:1a:02:8d:91:91:3d:82:69:24:e2:7a:e2:ee:fe:
5f:69:cd:49:6a:c5:10:42:a7:96:aa:9d:2e:e4:9f:
c2:51:9b:1a:a6:6c:87:5c:e2:cc:48:96:69:bb:41:
bd:83:cc:66:1a:74:1d:f3:e3:c5:7a:7c:dd:27:28:
75:8d:03:ac:e4:9f:4e:21:58:8c:32:5c:07:62:26:
4b:08:71:48:da:55:4d:d7:03:41:69:8b:73:a5:d8:
9a:88:1e:b3:ec:b9:4d:b4:e6:16:a8:21:e3:d3:f5:
60:c8:c0:17:81:22:d7:57:f1:b8:13:a1:84:ff:5a:
36:6b:e7:23:89:5b:bc:bf:20:65:3c:6b:d1:3b:9d:
e2:39:fd:32:2a:09:d0:51:8e:8a:bb:61:ab:3a:b5:
b0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D5:74:18:67:6B:56:AB:9D:E5:6F:AA:80:C2:78:87:9B:D9:45:CE
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3645590/95C1A38A27F811EFA48126167DDC24C2/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3645590/95C1A38A27F811EFA48126167DDC24C2/PdV0GGdrVqud5W-qgMJ4h5vZRc4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328596
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eba0::/32
Signature Algorithm: sha256WithRSAEncryption
27:df:80:a8:2c:7a:f3:b5:c2:a2:77:ed:d7:a6:7f:8e:f2:04:
7a:09:09:31:a0:5b:e1:ab:bc:4b:30:0f:3c:41:21:80:65:92:
d2:69:a3:29:b4:73:bc:d8:12:de:7d:db:ba:02:98:aa:22:e1:
cc:41:33:d9:13:ab:6c:0d:91:2a:9f:31:10:ca:1a:c7:11:81:
89:84:45:bd:27:4c:ec:c9:9c:ef:fc:6d:a5:2c:41:1a:3d:48:
b8:cf:ee:a4:38:74:36:c2:ef:f4:de:e8:b7:9f:4e:4d:2b:fb:
19:6b:e6:35:75:ce:5c:46:b0:a6:0e:85:31:b8:7d:5d:fb:bc:
c7:0c:0c:d8:7c:8d:13:d5:64:6c:06:eb:b9:2f:6c:1b:6a:29:
e1:18:f0:c4:6d:a6:3e:be:50:74:8c:cb:89:58:ed:e9:b9:82:
4c:b0:14:4b:56:45:83:46:c9:1a:38:86:4b:b9:99:a6:fb:3a:
3f:5a:1a:ef:12:3e:8e:91:ac:99:e5:c5:7c:33:88:44:fc:fd:
7a:dd:95:cd:fd:04:c7:fe:b1:ed:db:8b:bb:4d:ad:f2:ea:bf:
0c:da:06:ad:5c:10:70:d3:77:0b:8b:cb:a3:8d:dd:15:6f:bd:
57:77:da:61:03:4e:e3:84:3b:3c:0b:55:4d:ae:db:46:30:16:
f5:a2:54:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:53:20 2025 by rpki-client