Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
File: _Y4EWISxZp69QwrlZnIdl0BKbOg.cer (raw, json)
Hash identifier: kyJ3ac4dM4F1wgfvNsfRvxtskRCsRjsjwjX5gV00j1o=
Subject key identifier: FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F00
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:06:10 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327733
IP: 102.23.92.0/22
IP: 102.212.48.0/22
IP: 102.216.160.0/22
IP: 154.72.8.0/22
IP: 2c0f:ea00::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12032 (0x2f00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:06:10 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E373DAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6a:b2:22:0e:71:c0:08:d5:59:04:e7:a4:45:
4a:e5:bd:de:f6:75:b1:ea:55:c5:a7:08:54:e6:bb:
c7:98:0d:33:fa:75:89:36:3f:df:86:fc:c5:71:1f:
0f:71:fb:8b:e6:67:bf:c9:e0:d7:cd:99:e8:f7:02:
51:3f:97:5b:23:90:f7:69:52:f6:30:8d:ac:88:1f:
fc:3b:64:77:5c:0b:97:2f:2e:aa:8a:3e:37:82:bc:
f6:0c:98:68:c8:98:43:31:ac:b1:30:d1:e0:87:e7:
8c:48:77:25:33:df:0c:39:13:fa:94:bc:d7:46:06:
3e:5c:af:3a:2f:9d:39:38:f6:82:96:10:2e:b0:82:
72:6f:14:70:55:95:af:3a:20:72:27:30:d7:f0:78:
a5:4e:e2:75:e8:7f:29:94:ba:b9:e5:5a:5b:16:ef:
1a:75:e4:70:62:ab:f2:86:fe:c4:b1:c9:ca:7c:27:
67:4d:b4:fb:43:b6:a0:15:e5:6f:4d:44:d2:ba:da:
e5:82:f4:49:c7:2c:51:fa:a3:d3:ed:1a:11:1e:00:
10:1d:61:b2:f8:48:13:2b:9b:4c:21:2d:58:0a:82:
d3:0d:f5:4f:ad:62:b5:c8:97:13:95:82:a4:fc:18:
a4:fe:38:1e:d4:19:e3:fe:4c:d8:7b:44:de:e4:08:
8a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327733
sbgp-ipAddrBlock: critical
IPv4:
102.23.92.0/22
102.212.48.0/22
102.216.160.0/22
154.72.8.0/22
IPv6:
2c0f:ea00::/32
Signature Algorithm: sha256WithRSAEncryption
6d:1c:2c:06:b8:81:39:9d:32:a4:26:eb:45:02:04:67:30:cc:
3e:bd:60:e2:ba:0f:57:37:a3:43:65:60:7d:17:3f:b5:c6:ee:
d2:51:2a:43:f2:e3:92:38:15:93:ee:c1:bc:0f:d3:36:03:7f:
cd:9d:44:86:ea:61:0b:20:ad:3a:42:f0:5d:4c:0d:dd:28:0a:
6e:d4:17:b7:f2:08:09:bf:29:76:00:6d:99:6c:31:c9:56:4c:
40:11:3d:02:cd:e3:c9:cd:7f:34:d7:39:ab:72:9c:f3:67:52:
9a:de:8f:bf:d4:c1:72:f8:34:15:5f:c3:6f:be:34:7b:2d:e9:
fd:27:6f:d9:39:e6:f8:04:1c:b4:19:6f:df:fa:86:3c:77:9f:
db:08:b7:5e:88:48:87:c6:b6:94:e4:6a:fa:6e:de:f8:a0:41:
48:59:75:1c:43:4d:28:e1:f4:c7:8d:9a:f0:77:94:f4:ea:b6:
6d:91:27:69:14:31:e6:1b:82:00:fb:b3:ce:97:1b:3c:79:1e:
31:6c:eb:6d:0b:4f:64:47:64:4e:07:ae:e0:88:67:b2:ef:83:
0a:84:a6:39:0d:61:92:c0:a8:cd:86:d6:c0:cf:0a:e2:a0:58:
67:a9:e6:88:a2:75:e1:c7:f4:7a:2a:aa:73:72:54:38:f1:05:
b2:33:7d:ce
-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgICLwAwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMjA2MTBaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkUzNzNEQUYxMTAvBgNVBAUTKEZEOEUwNDU4ODRCMTY2OUVCRDQzMEFF
NTY2NzIxRDk3NDA0QTZDRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCearIiDnHACNVZBOekRUrlvd72dbHqVcWnCFTmu8eYDTP6dYk2P9+G/MVxHw9x
+4vmZ7/J4NfNmej3AlE/l1sjkPdpUvYwjayIH/w7ZHdcC5cvLqqKPjeCvPYMmGjI
mEMxrLEw0eCH54xIdyUz3ww5E/qUvNdGBj5crzovnTk49oKWEC6wgnJvFHBVla86
IHInMNfweKVO4nXofymUurnlWlsW7xp15HBiq/KG/sSxycp8J2dNtPtDtqAV5W9N
RNK62uWC9EnHLFH6o9PtGhEeABAdYbL4SBMrm0whLVgKgtMN9U+tYrXIlxOVgqT8
GKT+OB7UGeP+TNh7RN7kCIqtAgMBAAGjggMsMIIDKDAdBgNVHQ4EFgQU/Y4EWISx
Zp69QwrlZnIdl0BKbOgwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZFMzczRC80RDIyQUNENjhCNzMx
MUU5QTQ5QTQzNjhGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RTM3M0QvNEQyMkFDRDY4QjczMTFFOUE0OUE0MzY4RjhBRUEyMjgvX1k0RVdJ
U3hacDY5UXdybFpuSWRsMEJLYk9nLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFADUwQAYIKwYBBQUHAQcBAf8EMTAvMB4EAgABMBgDBAJmF1wDBAJm1DADBAJm
2KADBAKaSAgwDQQCAAIwBwMFACwP6gAwDQYJKoZIhvcNAQELBQADggEBAG0cLAa4
gTmdMqQm60UCBGcwzD69YOK6D1c3o0NlYH0XP7XG7tJRKkPy45I4FZPuwbwP0zYD
f82dRIbqYQsgrTpC8F1MDd0oCm7UF7fyCAm/KXYAbZlsMclWTEARPQLN48nNfzTX
OatynPNnUprej7/UwXL4NBVfw2++NHst6f0nb9k55vgEHLQZb9/6hjx3n9sIt16I
SIfGtpTkavpu3vigQUhZdRxDTSjh9MeNmvB3lPTqtm2RJ2kUMeYbggD7s86XGzx5
HjFs620LT2RHZE4HruCIZ7LvgwqEpjkNYZLAqM2G1sDPCuKgWGep5oiideHH9Hoq
qnNyVDjxBbIzfc4=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:56:26 2025 by rpki-client