Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/cfbjXgELx4fYmgtLqTPZlvrU2tI.cer
File: cfbjXgELx4fYmgtLqTPZlvrU2tI.cer (raw, json)
Hash identifier: U2YMnADoz+8zqt8jDBdrBeiSroZhTa8bb8qveCp8Y88=
Subject key identifier: 71:F6:E3:5E:01:0B:C7:87:D8:9A:0B:4B:A9:33:D9:96:FA:D4:DA:D2
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 30C4
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36882A1/AA75582CC7C411EBB520A668F8AEA228/cfbjXgELx4fYmgtLqTPZlvrU2tI.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36882A1/AA75582CC7C411EBB520A668F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:37:48 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327978
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12484 (0x30c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:37:48 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36882A1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:df:77:02:a9:f5:08:6d:47:a2:6c:b9:b2:e5:
f1:ca:61:d6:b3:e3:67:e2:a9:06:b2:2b:23:62:f8:
79:10:0a:84:dc:80:35:3d:a7:6d:48:66:46:92:5e:
ff:cb:f0:56:fe:f3:c7:63:d7:79:7a:c7:77:53:e4:
5b:4a:c0:26:3d:39:c6:df:d2:92:30:d6:2f:b1:40:
cd:1f:aa:a4:7e:f2:a6:06:d5:fb:3d:d2:21:21:58:
fa:08:44:16:75:05:11:fe:d7:30:72:0e:a9:52:74:
5f:a4:2b:12:4c:b6:eb:3c:08:b7:48:c5:47:ba:ef:
20:2c:23:8b:b4:2c:d7:dc:cb:13:49:61:77:a0:51:
9b:05:71:1e:ad:08:25:f0:00:6c:13:23:17:48:21:
78:ea:54:b8:5b:3b:94:b9:41:b3:31:b1:42:5b:77:
ab:e9:17:77:e1:2c:af:35:68:b7:60:90:d7:0f:29:
0a:bc:0c:16:e6:57:b2:25:5c:ce:37:6e:c8:ca:bc:
34:da:da:08:5a:18:46:46:bb:02:b6:05:f0:71:74:
42:98:05:d4:0a:4c:fd:34:e1:81:d2:00:d1:c1:52:
28:cc:95:03:3f:d4:d6:6a:bb:1b:c0:d4:a1:bc:76:
6d:96:52:ba:40:0e:0a:b8:f4:d5:19:ea:93:26:ce:
da:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F6:E3:5E:01:0B:C7:87:D8:9A:0B:4B:A9:33:D9:96:FA:D4:DA:D2
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36882A1/AA75582CC7C411EBB520A668F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36882A1/AA75582CC7C411EBB520A668F8AEA228/cfbjXgELx4fYmgtLqTPZlvrU2tI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327978
Signature Algorithm: sha256WithRSAEncryption
27:20:e8:d6:5a:57:98:2e:d0:a5:da:ee:9a:52:81:00:0e:43:
c6:ed:55:52:74:08:da:0c:89:38:c2:ba:7c:d3:c3:c1:20:47:
54:c6:e9:c1:95:03:85:54:4f:de:a3:9a:7e:3e:c7:1d:fb:6f:
85:a4:f0:98:f3:85:54:b7:7a:dd:ba:22:9b:f8:72:98:64:eb:
7d:69:0e:e1:31:36:b2:ee:3b:c1:15:21:83:73:bb:0f:34:50:
e7:06:b3:90:30:80:48:c3:24:4c:00:72:7f:b4:f0:2a:2e:55:
f3:0d:26:e2:73:f3:de:e4:1e:af:08:8f:07:ff:36:c5:9a:c3:
d4:30:75:b2:25:f6:f6:e3:0e:91:57:f9:13:33:c5:fa:b5:cf:
5c:74:7f:23:6d:64:24:4a:9c:c1:c6:60:8f:1d:91:01:d5:8b:
a0:b5:18:ca:6e:cb:44:cb:ef:ac:f9:9a:8f:78:28:65:e5:36:
c8:56:86:00:3c:b9:5c:b6:61:0a:d6:27:c3:ee:28:fb:e3:8e:
36:75:cf:60:fb:b1:4c:80:96:bd:b1:5e:5f:47:10:47:05:62:
9f:c2:57:5e:0f:1f:09:1c:42:3b:83:78:ce:fa:ff:40:c9:cb:
76:6a:c5:f5:3f:db:d6:96:a8:e1:1c:82:30:ae:2b:c5:e1:6f:
09:28:47:54
-----BEGIN CERTIFICATE-----
MIIF9TCCBN2gAwIBAgICMMQwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMzM3NDhaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjg4MkExQUYxMTAvBgNVBAUTKDcxRjZFMzVFMDEwQkM3ODdEODlBMEI0
QkE5MzNEOTk2RkFENERBRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDr33cCqfUIbUeibLmy5fHKYdaz42fiqQayKyNi+HkQCoTcgDU9p21IZkaSXv/L
8Fb+88dj13l6x3dT5FtKwCY9Ocbf0pIw1i+xQM0fqqR+8qYG1fs90iEhWPoIRBZ1
BRH+1zByDqlSdF+kKxJMtus8CLdIxUe67yAsI4u0LNfcyxNJYXegUZsFcR6tCCXw
AGwTIxdIIXjqVLhbO5S5QbMxsUJbd6vpF3fhLK81aLdgkNcPKQq8DBbmV7IlXM43
bsjKvDTa2ghaGEZGuwK2BfBxdEKYBdQKTP004YHSANHBUijMlQM/1NZquxvA1KG8
dm2WUrpADgq49NUZ6pMmztqFAgMBAAGjggLqMIIC5jAdBgNVHQ4EFgQUcfbjXgEL
x4fYmgtLqTPZlvrU2tIwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4ODJBMS9BQTc1NTgyQ0M3QzQx
MUVCQjUyMEE2NjhGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODgyQTEvQUE3NTU4MkNDN0M0MTFFQkI1MjBBNjY4RjhBRUEyMjgvY2Zialhn
RUx4NGZZbWd0THFUUFpsdnJVMnRJLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFASowDQYJKoZIhvcNAQELBQADggEBACcg6NZaV5gu0KXa7ppSgQAOQ8btVVJ0
CNoMiTjCunzTw8EgR1TG6cGVA4VUT96jmn4+xx37b4Wk8JjzhVS3et26Ipv4cphk
631pDuExNrLuO8EVIYNzuw80UOcGs5AwgEjDJEwAcn+08CouVfMNJuJz897kHq8I
jwf/NsWaw9QwdbIl9vbjDpFX+RMzxfq1z1x0fyNtZCRKnMHGYI8dkQHVi6C1GMpu
y0TL76z5mo94KGXlNshWhgA8uVy2YQrWJ8PuKPvjjjZ1z2D7sUyAlr2xXl9HEEcF
Yp/CV14PHwkcQjuDeM76/0DJy3ZqxfU/29aWqOEcgjCuK8XhbwkoR1Q=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:56:25 2025 by rpki-client