Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/ZkH2tmBUTtFQG8wJWqB_nLD7XE0.cer
File: ZkH2tmBUTtFQG8wJWqB_nLD7XE0.cer (raw, json)
Hash identifier: sbwlJ0regS3UfSYHWuJkP7WUZPciwcuaK40Cw+fm8LA=
Subject key identifier: 66:41:F6:B6:60:54:4E:D1:50:1B:CC:09:5A:A0:7F:9C:B0:FB:5C:4D
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E8E
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364A0C9/B897144AA66A11EE8A82CE8C775412E6/ZkH2tmBUTtFQG8wJWqB_nLD7XE0.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364A0C9/B897144AA66A11EE8A82CE8C775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:43:08 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329380
IP: 102.210.68.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11918 (0x2e8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:43:08 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F364A0C9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e8:f5:e9:ba:5c:eb:f9:bf:0e:1e:15:27:11:
ba:c8:e7:23:0a:b5:4c:fd:8c:93:c8:7a:25:94:25:
56:12:a8:55:dd:70:8e:cc:a7:4d:34:e7:47:7b:a0:
e3:5f:dc:92:68:09:35:e7:dc:b2:c6:3f:3c:53:d0:
b5:a6:7d:41:e6:0e:d3:9d:6e:e5:30:3b:7d:cf:a3:
f9:4b:27:7a:74:a9:f9:02:61:8d:e1:12:dd:1c:5e:
d1:a5:3c:18:cc:99:e3:c1:5e:47:5f:49:17:5d:c1:
8f:c5:7f:d3:c6:0e:3f:a4:26:75:9f:2c:55:78:aa:
fc:e2:d3:ca:34:7f:00:ce:50:78:fd:26:91:da:c2:
41:30:7d:81:c0:b4:9e:4c:83:61:6d:27:39:83:66:
c6:c1:8b:fa:86:26:cd:aa:b0:76:a8:e6:f3:fb:f1:
a1:04:07:e2:c1:e4:c0:f0:bb:34:ef:42:95:6b:50:
20:aa:5a:6f:89:49:d2:bc:7c:6e:08:f5:9d:f2:03:
e9:9f:be:06:0a:40:e3:bd:80:be:c7:51:7f:b7:69:
e8:66:6b:f2:c0:b1:f4:00:43:2f:ca:7f:b0:a5:ce:
75:88:50:ae:87:34:24:52:4d:11:ee:5d:f9:e7:ef:
5f:04:7b:46:e6:35:f0:46:54:0c:aa:4b:29:c0:e2:
cf:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:41:F6:B6:60:54:4E:D1:50:1B:CC:09:5A:A0:7F:9C:B0:FB:5C:4D
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364A0C9/B897144AA66A11EE8A82CE8C775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364A0C9/B897144AA66A11EE8A82CE8C775412E6/ZkH2tmBUTtFQG8wJWqB_nLD7XE0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329380
sbgp-ipAddrBlock: critical
IPv4:
102.210.68.0/22
Signature Algorithm: sha256WithRSAEncryption
96:12:e3:cd:7b:f3:95:3d:b3:aa:40:fe:99:6c:9d:10:9f:ba:
a2:80:7b:1c:71:b1:68:0b:b0:56:43:dc:06:33:13:8d:7a:5b:
83:4a:79:11:80:96:e3:d3:55:a7:79:46:2b:df:8a:e5:95:a6:
f3:1f:d0:ee:46:bc:15:1b:52:ab:13:c6:ba:bc:f0:2d:1d:87:
50:6a:a3:a7:a3:d7:65:70:11:7e:27:2a:96:7f:ed:ca:39:f1:
6b:7f:cb:b0:45:e0:0e:c3:78:d8:64:e5:17:88:18:cf:f1:56:
a8:4a:de:7d:3f:ff:b7:56:b5:fe:ac:09:1c:35:17:a3:bb:a6:
db:d5:2f:cc:72:42:6e:d8:6c:3a:55:c4:d8:82:3f:fe:bc:f2:
5c:e3:66:52:47:83:db:bf:c7:ef:7a:49:06:8e:42:06:a2:ac:
e4:16:69:a9:e6:f0:c0:f0:5a:6a:71:9a:9c:7a:dc:e4:93:ec:
9e:8b:fd:a2:a4:7b:18:67:0e:4d:90:cd:b5:14:5d:1a:08:68:
36:ce:a3:d3:31:fb:ce:7e:b8:e7:52:aa:51:12:c9:29:17:f1:
8a:eb:b7:47:85:db:f5:cf:91:d2:d7:eb:bf:6f:1a:6d:78:0c:
05:c7:72:58:e7:66:5f:06:52:ce:78:ff:38:c7:e0:20:be:31:
1c:59:13:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:36:33 2025 by rpki-client