Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/W8bKYtbdbvSdoT50fsEHbd1PSrY.cer
File: W8bKYtbdbvSdoT50fsEHbd1PSrY.cer (raw, json)
Hash identifier: iAYx0iMqpHGjWecimFWIax+I+xOWwZHCIeRU//GaCYs=
Subject key identifier: 5B:C6:CA:62:D6:DD:6E:F4:9D:A1:3E:74:7E:C1:07:6D:DD:4F:4A:B6
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 31B5
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36A3F9E/CFD8C1C01B8A11ECB488356ED8A014CE/W8bKYtbdbvSdoT50fsEHbd1PSrY.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36A3F9E/CFD8C1C01B8A11ECB488356ED8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:28:44 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.69.152.0/22
IP: 2c0f:43c0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12725 (0x31b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:28:44 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36A3F9EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:06:44:1d:8c:0c:a6:c8:c1:1b:8b:55:08:45:
91:f3:aa:df:26:e1:d3:04:a7:78:ad:a4:ff:d7:2f:
f0:40:f1:30:37:d6:ce:1c:0f:02:e7:bf:e2:4c:9f:
cd:f9:8e:b8:f4:c0:53:52:36:0c:7b:2b:8c:a9:18:
63:87:d3:fe:30:bf:69:b0:0c:f0:53:a7:93:14:5f:
61:da:8d:e9:92:63:3a:23:95:39:ee:7a:bf:00:1f:
99:35:d9:92:d9:43:4a:64:42:9f:8c:b6:89:cf:d1:
ed:36:57:af:f9:82:a2:7c:6c:f5:27:a7:5f:87:93:
24:d8:e0:e9:2e:4d:b1:c3:5d:23:44:7d:7e:b6:01:
af:ec:bf:5d:06:ca:4d:d3:b6:b5:fe:e8:0c:82:45:
22:28:51:d6:09:dc:a2:46:9c:fa:7e:ab:b8:90:c2:
ed:56:74:bc:0f:2f:3a:6a:84:f1:cb:d7:22:57:ac:
a7:ad:82:be:86:65:b5:ee:c3:57:45:6a:2d:16:0b:
e1:55:69:f6:49:09:d9:1d:da:32:ac:a4:3f:05:72:
21:31:b3:5c:79:0c:71:20:2d:50:dc:61:b5:5a:0c:
0b:af:bb:9d:03:27:a9:51:3a:3d:e8:ba:13:49:3c:
ca:01:29:fb:be:87:ae:88:78:58:ea:df:04:9b:cd:
1b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C6:CA:62:D6:DD:6E:F4:9D:A1:3E:74:7E:C1:07:6D:DD:4F:4A:B6
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A3F9E/CFD8C1C01B8A11ECB488356ED8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A3F9E/CFD8C1C01B8A11ECB488356ED8A014CE/W8bKYtbdbvSdoT50fsEHbd1PSrY.mft
sbgp-ipAddrBlock: critical
IPv4:
102.69.152.0/22
IPv6:
2c0f:43c0::/32
Signature Algorithm: sha256WithRSAEncryption
35:cd:7b:fa:24:a7:d9:1c:58:ae:3d:b5:5c:e8:12:98:33:4f:
28:bc:64:f0:a6:c5:5b:1a:dd:1a:5a:f8:01:1b:c9:55:28:ab:
2c:08:d2:80:12:83:b6:da:d2:41:31:78:84:c7:92:a2:d7:f0:
ae:8a:b3:a3:7f:5f:d7:e3:a5:ed:4e:2c:b3:93:75:ce:63:30:
a7:a9:82:11:1d:1b:fe:cb:97:0c:b4:77:92:35:e8:1a:bf:c6:
6a:cc:b0:44:dc:22:08:c8:de:8f:41:a7:3b:9e:7f:92:cc:e0:
a7:c7:40:ac:a2:6f:cc:11:c9:ef:fe:1f:ae:46:70:54:80:e8:
81:72:a8:1b:fa:41:55:cd:fc:2f:b9:30:d8:25:b2:7e:5b:e1:
42:45:cb:a5:91:50:59:18:46:9e:c5:4f:18:6b:2d:bb:d1:28:
2e:57:18:8e:6b:55:44:10:b7:da:2c:40:60:6f:77:d8:00:f8:
fa:ac:e1:32:74:42:07:66:97:3b:b9:9b:8d:e9:ea:f2:59:28:
94:5a:2f:28:7e:b1:b6:ba:e8:47:1d:71:be:d0:22:cf:95:73:
c9:25:28:9f:5f:ff:a0:15:1f:cb:18:fc:e9:61:d1:85:8e:93:
8c:bc:0c:40:cd:61:77:b9:5c:f7:53:eb:07:94:83:e6:84:00:
fa:7d:37:b1
-----BEGIN CERTIFICATE-----
MIIGCTCCBPGgAwIBAgICMbUwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwNDI4NDRaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkEzRjlFQUYxMTAvBgNVBAUTKDVCQzZDQTYyRDZERDZFRjQ5REExM0U3
NDdFQzEwNzZEREQ0RjRBQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCuBkQdjAymyMEbi1UIRZHzqt8m4dMEp3itpP/XL/BA8TA31s4cDwLnv+JMn835
jrj0wFNSNgx7K4ypGGOH0/4wv2mwDPBTp5MUX2HajemSYzojlTnuer8AH5k12ZLZ
Q0pkQp+MtonP0e02V6/5gqJ8bPUnp1+HkyTY4OkuTbHDXSNEfX62Aa/sv10Gyk3T
trX+6AyCRSIoUdYJ3KJGnPp+q7iQwu1WdLwPLzpqhPHL1yJXrKetgr6GZbXuw1dF
ai0WC+FVafZJCdkd2jKspD8FciExs1x5DHEgLVDcYbVaDAuvu50DJ6lROj3ouhNJ
PMoBKfu+h66IeFjq3wSbzRszAgMBAAGjggL+MIIC+jAdBgNVHQ4EFgQUW8bKYtbd
bvSdoT50fsEHbd1PSrYwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZBM0Y5RS9DRkQ4QzFDMDFCOEEx
MUVDQjQ4ODM1NkVEOEEwMTRDRS8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QTNGOUUvQ0ZEOEMxQzAxQjhBMTFFQ0I0ODgzNTZFRDhBMDE0Q0UvVzhiS1l0
YmRidlNkb1Q1MGZzRUhiZDFQU3JZLm1mdDAuBggrBgEFBQcBBwEB/wQfMB0wDAQC
AAEwBgMEAmZFmDANBAIAAjAHAwUALA9DwDANBgkqhkiG9w0BAQsFAAOCAQEANc17
+iSn2RxYrj21XOgSmDNPKLxk8KbFWxrdGlr4ARvJVSirLAjSgBKDttrSQTF4hMeS
otfwroqzo39f1+Ol7U4ss5N1zmMwp6mCER0b/suXDLR3kjXoGr/GasywRNwiCMje
j0GnO55/kszgp8dArKJvzBHJ7/4frkZwVIDogXKoG/pBVc38L7kw2CWyflvhQkXL
pZFQWRhGnsVPGGstu9EoLlcYjmtVRBC32ixAYG932AD4+qzhMnRCB2aXO7mbjenq
8lkolFovKH6xtrroRx1xvtAiz5VzySUon1//oBUfyxj86WHRhY6TjLwMQM1hd7lc
91PrB5SD5oQA+n03sQ==
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:49:27 2025 by rpki-client