Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/TPVuEXLS09hhK0RRgkYe6qsf5tQ.cer
File: TPVuEXLS09hhK0RRgkYe6qsf5tQ.cer (raw, json)
Hash identifier: 5SGkEjz7/atazRrivNDIHf8Otm/PXuyJnqUD8Q80qzw=
Subject key identifier: 4C:F5:6E:11:72:D2:D3:D8:61:2B:44:51:82:46:1E:EA:AB:1F:E6:D4
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E8B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3649F7F/D87A6124FAEE11EB99E2AE31D8A014CE/TPVuEXLS09hhK0RRgkYe6qsf5tQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3649F7F/D87A6124FAEE11EB99E2AE31D8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:42:30 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328457
IP: 102.69.240.0/22
IP: 2c0f:6d00::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11915 (0x2e8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:42:30 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3649F7FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f6:5a:e6:a3:31:ad:3d:01:70:05:9d:30:91:
c2:b5:9e:5b:96:cb:80:04:19:9c:8f:9f:9a:49:0f:
4c:36:26:63:af:6c:41:ad:c3:60:71:8c:a5:3d:e0:
6d:14:24:9f:4b:e7:89:b9:62:15:2b:66:6e:6b:6e:
b0:ab:8a:c4:95:ff:2c:7c:d8:d3:5f:3f:69:33:06:
fc:b8:e4:53:9c:33:2d:fd:04:cc:7e:fb:29:86:fa:
6c:6a:bd:11:cd:7c:33:b3:c9:18:04:bc:fc:1d:92:
e4:51:0c:fd:43:8c:49:d3:39:34:5b:e5:ca:17:84:
7a:2c:cc:ee:5f:40:b7:be:1a:84:01:61:6a:10:7a:
62:d5:a0:b3:92:97:c8:ec:5f:5f:a2:6a:cc:c0:63:
2e:3e:46:a9:08:7c:59:ef:88:3a:af:0d:5e:92:85:
49:63:a6:8c:52:25:53:81:d5:b3:12:b2:03:96:6b:
d8:f2:ce:b8:94:a5:7a:ee:90:f5:32:cc:51:c4:ce:
c2:9c:b4:6f:a1:a5:14:80:48:42:30:40:09:36:17:
b2:e4:ce:36:30:75:b4:6b:36:f4:d2:c7:e9:25:a9:
de:03:5c:38:5e:6b:66:56:49:bd:3f:34:ad:aa:71:
31:c9:49:69:81:a0:d0:41:94:26:de:ca:7d:fa:6b:
76:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F5:6E:11:72:D2:D3:D8:61:2B:44:51:82:46:1E:EA:AB:1F:E6:D4
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3649F7F/D87A6124FAEE11EB99E2AE31D8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3649F7F/D87A6124FAEE11EB99E2AE31D8A014CE/TPVuEXLS09hhK0RRgkYe6qsf5tQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328457
sbgp-ipAddrBlock: critical
IPv4:
102.69.240.0/22
IPv6:
2c0f:6d00::/32
Signature Algorithm: sha256WithRSAEncryption
82:41:53:31:13:1b:3a:08:7c:7e:77:ea:a9:e5:6f:42:4a:fa:
d6:46:8b:f6:0f:af:e5:76:bc:ab:e8:d8:2d:51:7e:4a:b3:2d:
72:16:e3:25:bb:ff:72:43:a0:67:60:e2:42:85:35:83:ea:95:
e9:76:9b:91:f4:14:53:3f:74:9b:3e:d8:43:0c:c9:01:57:3b:
3b:02:34:8a:5e:88:ca:06:1a:0a:3b:80:60:3c:36:0a:3a:27:
2a:60:26:f3:24:62:0b:83:d1:7b:6f:b7:98:dc:3a:72:5b:87:
1f:38:02:c0:a0:30:0c:8b:30:ac:04:55:a0:34:32:74:9f:53:
d9:78:5e:f3:16:4f:5d:67:55:0d:af:cd:46:62:b9:0e:81:8d:
23:f7:51:48:ba:a1:48:3e:7f:8c:0d:6a:e5:eb:f7:75:c6:59:
f7:76:7f:70:8b:47:61:a7:57:09:d2:82:d0:0b:d3:0a:e5:55:
f5:56:83:2e:fe:93:14:36:e1:85:f4:fa:3f:a2:fb:d2:4e:22:
07:09:ef:4b:bd:eb:e6:d2:61:b2:ff:83:72:21:dd:a5:fa:18:
30:31:dd:51:ee:9a:17:56:ff:fb:a1:75:25:d2:45:87:5d:5e:
02:b1:56:e5:f5:92:ee:7c:3b:d6:de:f3:3d:78:7b:e5:59:90:
60:42:18:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:17 2025 by rpki-client