Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/eXtZOVh00u5uyMv9B2sqvGE9ibQ.cer
File: eXtZOVh00u5uyMv9B2sqvGE9ibQ.cer (raw, json)
Hash identifier: hMly0rzb91BrYH1L7jJeb1PQao/+rL7ijjRZWnZD9Ew=
Subject key identifier: 79:7B:59:39:58:74:D2:EE:6E:C8:CB:FD:07:6B:2A:BC:61:3D:89:B4
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3589
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3651B12/040F5AC25BF011F0ABEB4ED6DAE4EC9C/eXtZOVh00u5uyMv9B2sqvGE9ibQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3651B12/040F5AC25BF011F0ABEB4ED6DAE4EC9C/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Tue 08 Jul 2025 11:38:15 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 33774
AS: 36947
AS: 327712
IP: 41.96.0.0/12
IP: 41.200.0.0/15
IP: 41.221.16.0/20
IP: 105.96.0.0/12
IP: 154.240.0.0/12
IP: 196.20.64.0/18
IP: 197.112.0.0/13
IP: 197.200.0.0/13
IP: 2c0f:f858::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 04 Aug 2025 00:06:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13705 (0x3589)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jul 8 11:38:15 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3651B12AF, serialNumber=797B59395874D2EE6EC8CBFD076B2ABC613D89B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e2:f3:44:19:99:e3:38:29:76:4c:28:bc:eb:
9d:51:ce:50:7a:7e:b6:67:83:36:5f:ee:b1:ed:2c:
96:38:a7:85:9b:cd:48:51:2d:92:8b:81:0c:8d:ba:
0f:73:33:06:ae:f9:e4:1e:f2:b4:11:6f:59:3e:68:
79:6d:02:00:52:e8:1d:b6:75:1b:8b:b3:41:ed:e5:
bd:32:cf:81:58:52:05:65:30:27:a2:43:39:95:0d:
01:3e:fb:b1:55:54:12:37:68:8d:ea:b6:dc:ae:3f:
92:0e:6c:14:05:8d:7c:52:62:dc:f3:da:a3:ed:d7:
2e:c2:d4:87:41:d1:84:34:62:19:25:a7:2c:3d:01:
eb:b1:82:6c:fc:7c:39:27:91:f5:6e:62:30:25:b3:
48:00:22:63:cb:02:b1:2d:d6:42:37:82:d1:73:45:
89:c5:5c:4d:2a:54:2c:a7:2e:b5:8f:a2:68:48:fb:
24:8c:ed:00:24:d2:85:d9:b6:33:6b:3a:7f:c6:5b:
3e:4a:0f:30:82:ec:d8:41:94:6e:1c:08:01:24:97:
0d:80:41:36:f6:22:5f:14:ce:8b:6a:84:1e:c4:61:
f0:e5:63:7a:17:3e:7c:bd:f4:90:80:89:08:01:76:
e9:eb:5d:6d:d9:e0:97:fc:dc:23:f3:f2:7a:47:cb:
ed:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:7B:59:39:58:74:D2:EE:6E:C8:CB:FD:07:6B:2A:BC:61:3D:89:B4
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3651B12/040F5AC25BF011F0ABEB4ED6DAE4EC9C/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3651B12/040F5AC25BF011F0ABEB4ED6DAE4EC9C/eXtZOVh00u5uyMv9B2sqvGE9ibQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
33774
36947
327712
sbgp-ipAddrBlock: critical
IPv4:
41.96.0.0/12
41.200.0.0/15
41.221.16.0/20
105.96.0.0/12
154.240.0.0/12
196.20.64.0/18
197.112.0.0/13
197.200.0.0/13
IPv6:
2c0f:f858::/32
Signature Algorithm: sha256WithRSAEncryption
10:89:25:e2:ea:e5:3f:9f:4f:a6:2a:c5:ae:be:ae:2f:69:ed:
ae:66:22:1a:fe:a0:fe:27:d3:7d:c8:4d:a0:90:57:56:0b:81:
21:c8:50:6e:4e:ab:3b:af:5a:65:85:63:9a:b9:cd:c6:5f:5c:
30:be:91:6d:70:f6:dc:1c:a1:a9:60:dc:ef:c5:19:e2:30:f0:
ae:c7:b6:0b:26:15:81:6a:2b:97:b1:ff:06:71:51:fc:90:a7:
d5:a7:fa:f0:e1:99:8d:d9:d0:33:d8:4f:21:e6:96:c3:7b:41:
da:4f:4f:ed:89:67:8e:8e:32:9f:06:36:c6:ee:4e:01:f3:d2:
ed:0f:e4:a0:5d:42:aa:f4:b5:d4:50:ad:25:ec:fc:73:28:53:
c0:e6:3a:85:a9:7f:e8:d2:58:48:d3:bf:0c:a9:d3:34:5d:7a:
83:50:99:ba:97:25:65:04:69:18:b3:6d:d3:63:a2:42:8c:25:
73:f5:ef:db:91:3e:b4:d8:f8:05:bb:49:d1:e4:87:33:9b:50:
73:a1:4f:b9:87:ca:ff:4b:a6:18:b5:83:7d:58:a7:53:6b:21:
a5:8d:7c:cc:e9:50:20:90:80:63:bc:ca:6b:d4:21:ad:52:ad:
75:a4:88:dc:56:0d:25:41:e5:70:20:ad:31:a3:1e:b7:f9:b0:
de:96:af:db
-----BEGIN CERTIFICATE-----
MIIGUzCCBTugAwIBAgICNYkwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTA3MDgxMTM4MTVaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjUxQjEyQUYxMTAvBgNVBAUTKDc5N0I1OTM5NTg3NEQyRUU2RUM4Q0JG
RDA3NkIyQUJDNjEzRDg5QjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDP4vNEGZnjOCl2TCi8651RzlB6frZngzZf7rHtLJY4p4WbzUhRLZKLgQyNug9z
Mwau+eQe8rQRb1k+aHltAgBS6B22dRuLs0Ht5b0yz4FYUgVlMCeiQzmVDQE++7FV
VBI3aI3qttyuP5IObBQFjXxSYtzz2qPt1y7C1IdB0YQ0Yhklpyw9Aeuxgmz8fDkn
kfVuYjAls0gAImPLArEt1kI3gtFzRYnFXE0qVCynLrWPomhI+ySM7QAk0oXZtjNr
On/GWz5KDzCC7NhBlG4cCAEklw2AQTb2Il8UzotqhB7EYfDlY3oXPny99JCAiQgB
dunrXW3Z4Jf83CPz8npHy+3dAgMBAAGjggNIMIIDRDAdBgNVHQ4EFgQUeXtZOVh0
0u5uyMv9B2sqvGE9ibQwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY1MUIxMi8wNDBGNUFDMjVCRjAx
MUYwQUJFQjRFRDZEQUU0RUM5Qy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NTFCMTIvMDQwRjVBQzI1QkYwMTFGMEFCRUI0RUQ2REFFNEVDOUMvZVh0Wk9W
aDAwdTV1eU12OUIyc3F2R0U5aWJRLm1mdDAkBggrBgEFBQcBCAEB/wQVMBOgETAP
AgMAg+4CAwCQUwIDBQAgMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwMEKWAD
AwEpyAMEBCndEAMDBGlgAwMEmvADBAbEFEADAwPFcAMDA8XIMA0EAgACMAcDBQAs
D/hYMA0GCSqGSIb3DQEBCwUAA4IBAQAQiSXi6uU/n0+mKsWuvq4vae2uZiIa/qD+
J9N9yE2gkFdWC4EhyFBuTqs7r1plhWOauc3GX1wwvpFtcPbcHKGpYNzvxRniMPCu
x7YLJhWBaiuXsf8GcVH8kKfVp/rw4ZmN2dAz2E8h5pbDe0HaT0/tiWeOjjKfBjbG
7k4B89LtD+SgXUKq9LXUUK0l7PxzKFPA5jqFqX/o0lhI078MqdM0XXqDUJm6lyVl
BGkYs23TY6JCjCVz9e/bkT602PgFu0nR5Iczm1BzoU+5h8r/S6YYtYN9WKdTayGl
jXzM6VAgkIBjvMpr1CGtUq11pIjcVg0lQeVwIK0xox63+bDelq/b
-----END CERTIFICATE-----
Generated at Sat Aug 2 18:25:49 2025 by rpki-client