Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
File: U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer (raw, json)
Hash identifier: H8ucdCWej20cqPrM20Ef5W2HWcy3Iwe1cvLW630H6BA=
Subject key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3133
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:00:44 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 25818
AS: 37072
IP: 41.202.32.0/19
IP: 102.64.96.0/20
IP: 102.177.112.0/20
IP: 196.1.144.0/20
IP: 196.32.8.0/21
IP: 197.231.160.0/21
IP: 2001:4210::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12595 (0x3133)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:00:44 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3696E5FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cc:04:05:94:70:26:00:51:ec:dc:f1:bb:35:
c7:20:ef:f0:75:9f:9d:6a:8c:6d:08:43:f0:51:46:
c1:f5:1b:59:3c:a1:f7:a3:53:be:d8:02:d9:03:ad:
96:34:27:67:05:34:1a:f7:27:07:8c:56:da:1c:00:
82:10:95:0f:d7:69:01:f7:9f:11:e1:1b:90:27:31:
b8:ec:e2:49:31:0c:f4:9c:55:c2:32:b5:a7:57:38:
9a:74:e4:cc:f9:8c:c4:dd:e2:b2:a7:66:e0:b0:28:
46:aa:30:d8:0a:b2:8b:fe:b1:2e:27:05:26:86:bb:
58:1f:7b:fc:3a:71:47:bc:4f:78:55:e0:94:c6:af:
b3:49:21:84:ff:7d:1c:f1:0b:d0:4d:5d:8e:97:91:
d2:7b:b6:e7:ec:88:06:3e:50:73:75:ae:c1:fa:b3:
33:96:a8:9c:82:2e:b8:5d:64:47:9b:f9:3d:84:5d:
6b:12:89:26:aa:a8:df:cc:c1:05:3c:c5:7d:db:fa:
79:1c:44:51:c3:10:4e:8a:98:f3:30:b6:61:53:88:
68:0c:15:f9:9e:89:8c:6f:2a:63:10:1c:f6:56:30:
08:47:70:c5:48:9d:c2:6a:7a:bc:6d:2f:12:13:02:
04:18:b5:6d:65:16:d7:ff:4d:87:1b:cd:7f:05:2c:
a5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25818
37072
sbgp-ipAddrBlock: critical
IPv4:
41.202.32.0/19
102.64.96.0/20
102.177.112.0/20
196.1.144.0/20
196.32.8.0/21
197.231.160.0/21
IPv6:
2001:4210::/32
Signature Algorithm: sha256WithRSAEncryption
4a:74:8a:d2:25:8d:0c:df:63:42:41:1e:bb:5e:33:1d:46:7f:
68:5e:85:ca:47:d6:ae:07:85:16:1a:97:e3:da:50:90:81:48:
f8:26:37:2e:4a:bf:d3:5f:e5:62:e1:35:50:7f:d1:8b:b1:1a:
4d:6b:23:ac:97:cc:0c:9e:20:b6:1c:6f:8a:7c:b4:4c:e0:f7:
aa:3d:0b:75:ea:e8:7f:9a:eb:2a:8e:fa:dc:02:bb:75:68:73:
a8:3c:b4:60:d7:c0:f9:d8:ae:35:0e:e5:d0:c9:7a:a7:76:7e:
2f:51:e2:8e:de:1d:e9:25:b6:6a:dd:38:ba:4c:ba:3e:a3:61:
e4:9c:bb:2a:1e:b0:5f:52:d4:49:b0:9e:d1:cf:60:3b:d9:88:
19:b8:d2:25:05:e0:b2:52:ed:27:ba:d1:cf:9b:36:19:9d:60:
a3:65:ad:f6:6d:85:1c:40:b8:d5:20:29:d0:a5:ae:0c:d2:d6:
e6:8a:8b:9e:78:ab:60:36:60:05:ed:a6:3f:a4:ce:5e:36:57:
a1:c5:81:66:44:34:07:c1:20:07:4f:84:33:de:d6:5c:b1:1d:
e4:1d:92:7a:6c:94:3e:56:0b:24:ff:36:62:aa:76:94:5a:c4:
5f:48:07:38:e9:e3:f1:e5:7e:00:c3:3e:52:26:0f:be:ba:ec:
68:ca:70:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:48:05 2025 by rpki-client