Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/XiJnU4QNZLrrAjtZQWyZHzl3Hvw.cer
File: XiJnU4QNZLrrAjtZQWyZHzl3Hvw.cer (raw, json)
Hash identifier: m7Sd2ArH97E08GIQGry4GJ/WwnAFLX/DE14YPU0cWSE=
Subject key identifier: 5E:22:67:53:84:0D:64:BA:EB:02:3B:59:41:6C:99:1F:39:77:1E:FC
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2ED5
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36539AE/C4044E8A74DA11EFBCFA7F9A762E951A/XiJnU4QNZLrrAjtZQWyZHzl3Hvw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36539AE/C4044E8A74DA11EFBCFA7F9A762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:57:18 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329260
IP: 102.213.177.0/24
IP: 2001:43fd:1000::/48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11989 (0x2ed5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:57:18 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36539AEAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:cf:c0:4c:98:a5:66:f0:e3:db:d7:6f:87:9c:
3d:19:72:23:f5:64:0c:ab:92:88:4c:3e:c4:b0:78:
44:ea:0a:1e:f7:71:8f:da:8e:31:85:23:aa:6d:24:
d5:fc:87:1f:28:1e:0f:ba:47:21:c9:e0:b8:f6:62:
f6:ee:cd:47:e9:fc:49:aa:1a:25:4f:11:f4:57:fb:
e1:1c:81:05:64:f7:46:35:59:f3:8d:c2:0b:90:80:
66:98:3b:fb:1f:40:55:e6:d4:98:d8:1e:bd:c6:0b:
9f:b5:73:72:72:56:1f:26:79:29:4e:ef:52:0e:29:
a8:d3:e1:7c:8c:19:a6:69:e3:ec:1e:be:42:e8:7d:
59:83:7a:e7:f2:5b:fe:5f:a8:97:48:c6:df:48:0e:
06:e9:7f:85:53:df:9c:0e:ca:3d:47:53:3b:f8:c9:
61:78:2b:8b:5f:9b:1d:11:60:f0:55:80:0d:ae:08:
27:3c:89:39:c7:c4:62:8a:96:6e:7e:e6:c7:17:d4:
05:06:02:98:9e:1a:5b:b9:aa:95:00:30:25:c8:37:
25:74:6d:3d:f1:c3:b7:d4:1d:57:0f:96:a6:a3:30:
60:87:23:91:71:08:bb:95:48:fa:06:3f:d0:c6:6e:
d2:a5:68:1d:a6:98:8c:eb:d3:06:9c:74:3a:56:4a:
54:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:22:67:53:84:0D:64:BA:EB:02:3B:59:41:6C:99:1F:39:77:1E:FC
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36539AE/C4044E8A74DA11EFBCFA7F9A762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36539AE/C4044E8A74DA11EFBCFA7F9A762E951A/XiJnU4QNZLrrAjtZQWyZHzl3Hvw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329260
sbgp-ipAddrBlock: critical
IPv4:
102.213.177.0/24
IPv6:
2001:43fd:1000::/48
Signature Algorithm: sha256WithRSAEncryption
93:b4:e9:3e:d9:77:2c:47:6a:36:c2:1b:09:44:08:44:c1:15:
8f:95:93:c4:87:bb:29:2d:82:f1:ba:ed:09:30:56:6d:87:cc:
df:29:37:73:b0:a8:f2:c1:51:f2:10:55:27:07:ca:30:fc:25:
6f:76:f5:6b:5d:30:18:9f:69:8b:33:3a:66:93:0a:79:55:18:
a9:a8:c1:0a:ce:81:2c:5b:79:ae:d2:90:75:ca:fa:a6:db:95:
f0:ee:81:eb:05:f5:43:ac:66:4d:65:6b:64:36:1e:e4:e1:8e:
ed:a0:ee:8d:00:36:1c:a3:13:27:3e:20:7f:ed:5d:08:d4:c3:
96:7b:75:6c:41:95:8e:fe:95:f7:28:25:b5:d1:d4:da:b4:a9:
e8:eb:af:a8:84:fb:d7:09:ab:49:6f:4e:fe:74:97:6a:c3:ea:
69:0d:ec:e3:b1:cd:f6:46:2f:b7:07:bb:2a:02:44:a4:13:f8:
10:1d:45:eb:92:f2:69:41:86:f6:d9:15:7d:11:3c:05:81:6e:
d3:9a:58:84:bc:ad:91:bc:87:a1:28:81:7a:08:d8:3c:1e:00:
09:9f:23:f1:90:aa:1e:94:a4:61:2a:e2:29:dd:ea:bc:96:5d:
d0:06:a7:51:a7:8a:a1:49:40:8c:d4:88:07:7b:38:94:58:55:
4d:09:0d:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:16 2025 by rpki-client