Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/XKqYLAMXkyYzLWt3CljoeVy4RZ8.cer
File: XKqYLAMXkyYzLWt3CljoeVy4RZ8.cer (raw, json)
Hash identifier: AREiUM9oOjPIwPwSwMycqMjiJibqefg1N7DxcOBjbDE=
Subject key identifier: 5C:AA:98:2C:03:17:93:26:33:2D:6B:77:0A:58:E8:79:5C:B8:45:9F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3037
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/XKqYLAMXkyYzLWt3CljoeVy4RZ8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:08:32 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328633
IP: 102.217.184.0/22
IP: 102.223.104.0/22
IP: 2c0f:e848::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12343 (0x3037)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:08:32 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3678967AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:82:6b:22:64:0a:8a:5c:e8:e1:69:02:e6:1e:
55:78:c7:55:1a:0a:78:98:86:ef:71:53:e7:83:6b:
df:ad:b1:26:9f:95:71:7c:c6:da:fa:41:9e:c9:d9:
f5:5d:55:e3:e5:4e:ca:81:51:68:96:dc:b2:9b:ea:
10:1b:da:ee:65:5b:f0:c8:29:a3:7e:42:76:f5:74:
f7:06:b1:5f:83:b0:02:9b:33:44:a5:46:ef:ad:03:
1d:29:a1:14:35:47:09:d3:09:3a:2c:e0:96:19:b0:
88:f7:45:d7:63:98:24:e1:13:f6:7b:2f:3b:23:88:
20:76:19:85:62:c7:a1:f9:92:8a:44:da:a1:f8:07:
05:9f:2c:9e:51:54:33:21:70:42:c5:b9:1e:1d:71:
29:f4:f2:81:0b:4c:bc:e2:26:9a:0c:b8:0d:46:45:
4a:43:a2:d3:4c:b8:57:f3:a6:0a:50:67:42:a4:82:
38:b5:03:bc:7d:df:27:34:18:08:78:a1:23:6f:b0:
b4:4e:93:53:fd:07:b5:79:a9:c7:25:99:1b:d0:2b:
85:68:0c:b3:a3:81:da:f7:db:c8:9c:dd:ee:05:25:
75:af:60:eb:7b:ed:90:78:74:ea:fc:9b:7e:fb:5a:
09:9f:72:aa:fd:7b:3c:15:b9:8c:c3:ef:b9:4a:39:
f4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AA:98:2C:03:17:93:26:33:2D:6B:77:0A:58:E8:79:5C:B8:45:9F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/XKqYLAMXkyYzLWt3CljoeVy4RZ8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328633
sbgp-ipAddrBlock: critical
IPv4:
102.217.184.0/22
102.223.104.0/22
IPv6:
2c0f:e848::/32
Signature Algorithm: sha256WithRSAEncryption
3c:a8:76:67:e5:49:89:5c:cb:40:e6:bd:b0:c5:e5:b7:c9:a4:
51:7c:6e:72:c9:32:74:2b:da:b6:7e:4b:d0:d2:3d:c8:5c:e1:
2c:47:89:f0:43:0d:28:1c:d9:08:06:02:60:e3:87:07:ef:40:
c7:92:64:7c:a3:1d:93:78:08:7a:04:33:83:ad:b5:fc:2b:ee:
a3:09:d4:a0:4a:05:d8:95:1b:4c:ec:f9:19:c4:51:a8:dd:05:
63:4f:46:72:96:f7:18:51:6b:b4:93:27:24:7d:18:2d:01:42:
a3:9d:a7:0c:01:ec:8b:bc:7a:0c:56:b5:a4:0b:7e:79:6c:62:
5e:9f:24:15:37:22:bc:17:0b:01:5d:41:d0:3f:6c:e8:68:24:
34:f5:37:6a:60:83:42:bc:b8:2a:23:fb:db:b0:44:c1:dc:16:
50:5a:77:55:65:7d:d4:95:f5:1d:48:06:54:31:f9:f3:f3:7b:
6e:0e:d6:f4:e7:a9:25:29:f9:08:ae:88:70:8c:cf:82:3c:6b:
ac:eb:e1:a1:65:fa:12:3c:97:aa:e6:d2:1c:0b:f3:76:ee:88:
f8:7d:01:3d:1a:ba:e0:a3:65:28:ac:9e:b5:c0:da:3c:e9:b1:
63:ae:22:5a:88:91:c9:9b:ae:44:f0:0a:42:c3:b7:1c:8b:f8:
07:41:15:08
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:40:35 2025 by rpki-client