Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/RQb8pqpV74TTpMAErIOrtQvu07k.cer
File: RQb8pqpV74TTpMAErIOrtQvu07k.cer (raw, json)
Hash identifier: t+zJPnZymOdpQoxUi6uJV0rN8EGDhDIGz/rCib30bmo=
Subject key identifier: 45:06:FC:A6:AA:55:EF:84:D3:A4:C0:04:AC:83:AB:B5:0B:EE:D3:B9
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F0A
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3658AE0/E551C3EC9A3011ECB563A0B45A40D577/RQb8pqpV74TTpMAErIOrtQvu07k.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3658AE0/E551C3EC9A3011ECB563A0B45A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:08:09 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328598
IP: 102.22.88.0/21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12042 (0x2f0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:08:09 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3658AE0AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:69:f3:b6:cb:21:b5:1c:84:14:5e:42:16:cf:
b8:02:17:c2:ad:76:24:b7:2f:d8:26:8c:62:df:dd:
11:ae:32:91:f8:2b:9c:54:c9:bb:af:6f:1f:6e:29:
7e:6d:48:82:0a:c2:b3:b8:49:cd:b0:7b:dd:cc:3b:
7f:ab:d1:e0:8b:7d:b3:d0:c7:9d:75:d8:59:c1:03:
c1:c3:39:36:fb:89:13:ee:aa:e1:b4:15:22:1f:8c:
3e:19:9c:6e:bd:78:8e:cd:b3:d9:a9:0a:88:70:c5:
7f:2f:57:64:a1:71:89:22:5d:81:93:0c:93:9d:1d:
04:7e:49:b2:7b:f1:02:9f:e0:26:19:ac:6e:f7:da:
b5:cd:c7:41:ad:0e:8e:09:f8:70:d3:92:1c:f0:67:
9e:2f:b9:20:b7:45:7d:b0:ac:44:f1:9a:93:c9:e0:
cf:d5:07:ac:f8:9c:3a:8a:be:54:e1:c8:41:60:8b:
a0:89:5c:59:59:c8:65:41:54:bd:09:fc:49:07:e4:
99:11:7a:b1:dc:5b:33:2b:7a:07:12:5b:ad:25:07:
e9:ff:c2:a3:a8:96:3a:0c:29:4a:6b:95:53:a2:9c:
ee:91:d5:9a:d9:47:5a:d5:41:0d:83:31:06:a8:67:
18:0d:b7:de:90:5f:65:00:43:d2:cc:e4:db:19:16:
fe:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:06:FC:A6:AA:55:EF:84:D3:A4:C0:04:AC:83:AB:B5:0B:EE:D3:B9
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3658AE0/E551C3EC9A3011ECB563A0B45A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3658AE0/E551C3EC9A3011ECB563A0B45A40D577/RQb8pqpV74TTpMAErIOrtQvu07k.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328598
sbgp-ipAddrBlock: critical
IPv4:
102.22.88.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:ec:2b:9b:5e:b1:65:3f:5d:7e:51:d1:2d:78:95:fe:83:39:
9c:be:8b:d4:0a:7b:26:8d:11:85:12:0c:93:07:ee:ef:6e:b3:
33:37:d5:1d:48:1e:d1:16:13:f5:3b:50:01:b1:08:bb:a8:07:
8b:18:c2:7b:28:2c:c9:d2:a9:ac:0f:0e:48:fb:ac:1c:29:c7:
74:41:29:56:9a:14:cb:01:08:d4:8b:9e:e5:7d:ec:bf:f0:b4:
12:02:01:67:e0:2b:a5:85:ba:28:da:58:2e:e6:52:05:6d:30:
ea:79:3d:43:0d:a5:b9:1f:84:0b:5d:76:24:d7:b9:27:f8:b7:
c4:3b:61:d0:f8:07:a0:bd:8e:fd:fa:27:92:12:3b:ac:77:1a:
6b:1c:84:ef:f2:42:f1:b0:fe:f5:56:ba:cc:c4:60:75:33:85:
6f:63:d0:7f:74:86:39:aa:41:c2:18:3c:44:a8:ea:4c:60:49:
e4:91:25:4d:53:dd:e9:ac:10:7a:78:9f:5e:7c:5f:0d:f2:1e:
82:08:f9:77:6d:b0:f5:fb:b0:f8:e0:7c:ae:0c:7c:92:2f:ee:
87:e3:6f:e3:62:71:ca:a3:3e:80:e8:ee:1b:e0:a6:28:20:63:
f2:44:78:85:e6:c4:ad:95:ba:df:46:22:9f:bf:97:1f:a5:d0:
a5:90:0f:11
-----BEGIN CERTIFICATE-----
MIIGFjCCBP6gAwIBAgICLwowDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMjA4MDlaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjU4QUUwQUYxMTAvBgNVBAUTKDQ1MDZGQ0E2QUE1NUVGODREM0E0QzAw
NEFDODNBQkI1MEJFRUQzQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC0afO2yyG1HIQUXkIWz7gCF8KtdiS3L9gmjGLf3RGuMpH4K5xUybuvbx9uKX5t
SIIKwrO4Sc2we93MO3+r0eCLfbPQx5112FnBA8HDOTb7iRPuquG0FSIfjD4ZnG69
eI7Ns9mpCohwxX8vV2ShcYkiXYGTDJOdHQR+SbJ78QKf4CYZrG732rXNx0GtDo4J
+HDTkhzwZ54vuSC3RX2wrETxmpPJ4M/VB6z4nDqKvlThyEFgi6CJXFlZyGVBVL0J
/EkH5JkRerHcWzMregcSW60lB+n/wqOoljoMKUprlVOinO6R1ZrZR1rVQQ2DMQao
ZxgNt96QX2UAQ9LM5NsZFv5ZAgMBAAGjggMLMIIDBzAdBgNVHQ4EFgQURQb8pqpV
74TTpMAErIOrtQvu07kwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY1OEFFMC9FNTUxQzNFQzlBMzAx
MUVDQjU2M0EwQjQ1QTQwRDU3Ny8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NThBRTAvRTU1MUMzRUM5QTMwMTFFQ0I1NjNBMEI0NUE0MEQ1NzcvUlFiOHBx
cFY3NFRUcE1BRXJJT3J0UXZ1MDdrLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFA5YwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANmFlgwDQYJKoZIhvcN
AQELBQADggEBAIrsK5tesWU/XX5R0S14lf6DOZy+i9QKeyaNEYUSDJMH7u9uszM3
1R1IHtEWE/U7UAGxCLuoB4sYwnsoLMnSqawPDkj7rBwpx3RBKVaaFMsBCNSLnuV9
7L/wtBICAWfgK6WFuijaWC7mUgVtMOp5PUMNpbkfhAtddiTXuSf4t8Q7YdD4B6C9
jv36J5ISO6x3GmschO/yQvGw/vVWuszEYHUzhW9j0H90hjmqQcIYPESo6kxgSeSR
JU1T3emsEHp4n158Xw3yHoII+XdtsPX7sPjgfK4MfJIv7ofjb+NiccqjPoDo7hvg
piggY/JEeIXmxK2Vut9GIp+/lx+l0KWQDxE=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:41:43 2025 by rpki-client