Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Qthcb-Q83dnDQqmRI5Oe9tELlmE.cer
File: Qthcb-Q83dnDQqmRI5Oe9tELlmE.cer (raw, json)
Hash identifier: mesrGQuwPWnQv4wZ1UXqqKOrUDpU5jO7zP8n37XOY68=
Subject key identifier: 42:D8:5C:6F:E4:3C:DD:D9:C3:42:A9:91:23:93:9E:F6:D1:0B:96:61
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 34DD
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/Qthcb-Q83dnDQqmRI5Oe9tELlmE.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 05 May 2025 09:07:05 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327849
IP: 102.207.200.0/22
IP: 102.212.124.0/22
IP: 102.222.248.0/22
IP: 2c0f:f2a0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Jun 2025 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13533 (0x34dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: May 5 09:07:05 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36B95DEAF, serialNumber=42D85C6FE43CDDD9C342A99123939EF6D10B9661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:af:fe:79:32:ed:49:e4:c4:dd:05:b0:04:1f:
fc:9d:c3:89:9f:49:82:db:e5:b6:cb:b8:3f:89:93:
18:ae:6c:01:da:03:01:72:f6:0d:96:49:62:57:0c:
6f:24:91:47:ab:d1:72:f3:2e:e0:50:4e:0d:8c:9f:
f7:24:74:33:94:84:1b:04:63:ab:b3:cb:3c:6c:89:
5a:80:50:f7:32:98:70:46:f7:eb:32:d6:5f:cd:f6:
13:5c:c2:92:a4:6a:6b:64:ec:bd:0b:76:ef:ad:c4:
58:e1:ca:9b:9e:26:3e:7b:3a:b6:3c:7a:90:e1:22:
46:61:bf:20:dc:77:36:f7:74:d6:0d:53:a4:99:36:
0e:31:75:5d:f9:b4:4e:9c:61:69:ef:5d:43:59:17:
37:ce:c5:10:d8:02:e7:20:3b:b0:22:c3:04:67:b9:
84:ce:40:17:b4:a8:04:cd:ec:fa:a8:b9:07:b0:7a:
81:b9:bc:6c:05:9e:79:3c:9e:9f:86:d8:64:92:e0:
95:d6:c7:f3:85:4e:26:6d:08:66:21:ea:53:7e:85:
bd:b9:c9:ba:c2:56:7b:60:d0:8e:af:e1:c8:3c:89:
05:b7:bd:69:29:58:85:3b:94:f3:34:76:ec:20:37:
59:63:41:f3:0d:1b:60:d2:c6:c3:e3:4d:82:9c:72:
6d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D8:5C:6F:E4:3C:DD:D9:C3:42:A9:91:23:93:9E:F6:D1:0B:96:61
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/Qthcb-Q83dnDQqmRI5Oe9tELlmE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327849
sbgp-ipAddrBlock: critical
IPv4:
102.207.200.0/22
102.212.124.0/22
102.222.248.0/22
IPv6:
2c0f:f2a0::/32
Signature Algorithm: sha256WithRSAEncryption
80:e4:f6:29:64:42:d6:17:8b:0b:7a:cc:70:33:a2:14:8d:f5:
a2:cf:54:4c:9f:9d:90:c5:0e:1c:d5:98:3f:15:04:88:25:54:
72:83:dc:33:f7:9a:bb:51:ea:50:0c:8e:51:91:d9:79:7e:d3:
1a:15:e1:6d:61:ca:23:00:76:99:93:11:de:d5:a1:db:fe:6f:
9f:1d:a4:22:f9:f0:56:cc:42:bf:b9:c1:00:15:1b:ac:e3:65:
8f:2d:aa:06:68:f5:e5:63:d0:01:12:8b:23:aa:18:25:50:3a:
0c:04:e7:44:a3:7f:12:4f:b9:72:62:0f:f4:46:39:ff:8a:88:
3e:b7:49:7c:4f:61:31:0b:8c:5a:44:51:ed:24:b1:60:bf:f9:
f4:b6:cd:83:72:8d:b7:9e:c0:05:2b:23:4f:78:07:c9:d2:10:
0b:21:c5:08:b0:93:ba:d6:bf:47:2a:f3:8a:21:95:99:de:18:
cf:6f:c3:30:de:da:80:b7:bc:91:eb:35:ab:20:5d:cf:ad:b0:
22:04:cb:01:b8:3e:a1:9d:e7:37:bc:3b:63:bb:7f:bc:ce:ec:
72:6d:45:c1:7a:6d:11:aa:52:0f:6d:8e:54:5e:cc:b9:7b:5a:
dc:69:ec:0c:2f:8f:1c:f2:cf:e9:c3:ce:89:72:0a:6c:dd:4e:
4a:36:b5:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 2 16:49:37 2025 by rpki-client