Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/_VmsIHc1mw1yPSCqmZqOFqhLQZM.cer
File: _VmsIHc1mw1yPSCqmZqOFqhLQZM.cer (raw, json)
Hash identifier: U/1DeQPSp1YejK1h4QKty4msd5PMoYLOKKHp0YsXa/Q=
Subject key identifier: FD:59:AC:20:77:35:9B:0D:72:3D:20:AA:99:9A:8E:16:A8:4B:41:93
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3214
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36B49FA/A255919C1C1C11E6BA1E5C0CF8AEA228/_VmsIHc1mw1yPSCqmZqOFqhLQZM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36B49FA/A255919C1C1C11E6BA1E5C0CF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:49:13 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37728
AS: 329003
IP: 41.32.0.0/12
IP: 41.232.0.0/13
IP: 102.40.0.0/13
IP: 154.176.0.0/12
IP: 196.49.86.0/24
IP: 196.60.86.0/24
IP: 196.202.0.0/17
IP: 196.218.0.0/15
IP: 197.32.0.0/11
IP: 2001:4388::/32
IP: 2001:43f8:40::/47
IP: 2c0f:7b00::/28
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12820 (0x3214)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:49:13 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36B49FAAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f3:53:28:ee:6a:fe:ca:cb:3a:44:20:3e:42:
cf:21:eb:a5:17:f3:16:84:31:e2:77:79:dd:50:bf:
cb:f9:df:42:1f:61:3f:bc:8d:a5:f6:d1:c7:87:cf:
a9:85:a8:a9:ce:f7:d2:19:b8:c4:79:50:44:68:f0:
4b:98:79:9f:e1:1e:2f:8b:c7:50:a1:4a:e0:fd:7a:
aa:fa:af:a3:e1:4c:08:6c:a4:24:74:3b:99:12:ff:
bb:81:c0:bb:61:85:b8:b2:75:cb:8e:74:ea:e8:66:
01:d1:14:2f:5e:77:22:b6:84:8c:62:c1:2b:b4:f3:
c7:6c:6e:b9:ee:d9:a0:3b:ab:d3:ae:95:3d:c4:fb:
82:59:64:d4:bd:a9:8a:d3:4c:db:e8:26:bf:ba:dd:
92:21:06:54:7c:83:63:58:6d:5b:1b:34:5a:ed:3f:
c7:f9:08:2b:8c:53:61:4a:93:f0:9a:3e:dc:aa:10:
bb:b7:4f:12:e2:04:13:2b:be:a3:ac:12:6d:7d:9c:
7c:7a:52:89:be:fe:95:b8:d9:e3:0b:9a:f6:f3:83:
da:eb:cc:b2:60:d2:3b:7b:56:46:24:4c:e4:33:4d:
49:dc:54:77:1b:fb:2e:eb:f3:62:0c:95:e7:0d:5f:
8c:23:d1:36:16:ec:ef:3e:2c:89:41:42:da:75:c5:
06:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:59:AC:20:77:35:9B:0D:72:3D:20:AA:99:9A:8E:16:A8:4B:41:93
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B49FA/A255919C1C1C11E6BA1E5C0CF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B49FA/A255919C1C1C11E6BA1E5C0CF8AEA228/_VmsIHc1mw1yPSCqmZqOFqhLQZM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37728
329003
sbgp-ipAddrBlock: critical
IPv4:
41.32.0.0/12
41.232.0.0/13
102.40.0.0/13
154.176.0.0/12
196.49.86.0/24
196.60.86.0/24
196.202.0.0/17
196.218.0.0/15
197.32.0.0/11
IPv6:
2001:4388::/32
2001:43f8:40::/47
2c0f:7b00::/28
Signature Algorithm: sha256WithRSAEncryption
3e:72:77:89:a9:80:6c:e0:34:cd:d9:67:75:b8:61:e9:4a:30:
d6:bc:9f:9c:1e:c0:11:c8:be:9f:a7:4d:fd:a9:5a:49:c4:4b:
d1:7e:dc:08:a2:41:90:1d:f3:87:3e:02:f7:d4:83:5f:74:e8:
d1:7c:20:f4:64:56:0a:cc:47:61:83:e3:2b:b6:a8:20:aa:09:
ee:c9:9d:f7:61:73:a9:36:6a:c3:a8:53:55:99:9c:15:b9:47:
c0:93:24:62:b0:a5:b6:42:72:0e:3b:ec:c7:b8:43:80:5f:32:
9c:4b:6e:ef:dd:c4:dd:64:b1:13:ef:0b:8f:ce:0e:ab:72:7d:
57:a0:d8:63:89:09:cd:36:b8:3a:f9:ce:6f:22:59:1c:ad:d4:
c2:7f:76:87:51:67:4b:5a:11:8b:75:b5:39:ab:59:18:e2:94:
60:35:2e:bd:71:d5:19:0d:a4:58:9a:16:15:a1:2f:b6:b6:fe:
45:3d:3a:84:d5:b4:ef:48:0b:25:ca:55:fa:69:c2:9d:97:f7:
7d:24:30:37:0b:27:80:49:93:a6:1c:67:7c:4e:fd:d7:03:77:
32:85:7f:a4:52:a6:c2:9a:41:40:1c:59:78:c1:5d:76:3f:1d:
24:88:36:fb:65:ae:20:e3:58:6d:9d:05:6a:a1:14:fe:77:a9:
00:05:2b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:39:29 2025 by rpki-client