Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/eekHF2z7dQa9kWBW83X6OM5BzaM.cer
File: eekHF2z7dQa9kWBW83X6OM5BzaM.cer (raw, json)
Hash identifier: eEUselZo747w+W/2K2s3DXVahrCa0C6WVRHfU7m5N6E=
Subject key identifier: 79:E9:07:17:6C:FB:75:06:BD:91:60:56:F3:75:FA:38:CE:41:CD:A3
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 31E4
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36AB5C3/F1C8256E184511EE9E5699174AD9E6FC/eekHF2z7dQa9kWBW83X6OM5BzaM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36AB5C3/F1C8256E184511EE9E5699174AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:38:54 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328652
IP: 102.210.172.0/22
IP: 102.223.32.0/22
IP: 2c0f:e880::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12772 (0x31e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:38:54 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36AB5C3AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:68:b1:f6:2e:3d:9f:d5:82:73:74:6a:a4:71:
41:8a:17:9b:83:3b:c0:86:3e:2a:7c:57:3a:6d:06:
32:78:f3:08:87:57:0e:d9:6c:b9:3f:a6:27:b9:76:
62:d3:31:c4:93:6d:0e:07:87:4f:b3:c8:d7:b5:25:
44:5e:62:6f:2f:17:71:a3:4b:56:ed:c5:8c:ce:db:
59:65:4a:5e:93:87:43:8c:fb:c9:87:f2:33:2a:29:
29:bb:8b:74:cb:fe:23:59:be:62:db:1d:4a:b5:56:
cc:3d:da:17:c8:8f:2e:0e:cd:ca:fd:50:d2:fd:e5:
1c:08:7c:f1:24:aa:41:01:95:4d:98:7a:e0:84:f1:
de:d3:e6:b5:dd:52:33:07:08:1d:a2:f7:c2:2f:71:
81:22:56:59:5f:c2:7e:b3:be:c3:e2:53:70:e0:93:
84:5e:1a:2a:d6:2e:a4:4a:23:30:70:7a:cf:5d:20:
33:c9:78:19:03:67:a0:2d:f6:4c:70:83:91:99:18:
3b:9e:45:6f:22:6b:a2:49:94:20:0a:8f:cb:95:6a:
38:22:26:e9:cc:46:f7:51:47:62:bd:7f:f4:9f:c7:
9d:c0:b4:3f:93:4b:3c:d1:58:00:7c:4a:0c:58:60:
99:4d:f9:5b:7c:df:3a:62:bf:07:04:15:e3:29:42:
05:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E9:07:17:6C:FB:75:06:BD:91:60:56:F3:75:FA:38:CE:41:CD:A3
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AB5C3/F1C8256E184511EE9E5699174AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AB5C3/F1C8256E184511EE9E5699174AD9E6FC/eekHF2z7dQa9kWBW83X6OM5BzaM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328652
sbgp-ipAddrBlock: critical
IPv4:
102.210.172.0/22
102.223.32.0/22
IPv6:
2c0f:e880::/32
Signature Algorithm: sha256WithRSAEncryption
b4:9e:71:06:96:47:77:5f:34:57:f3:09:9a:f3:68:9b:0b:c7:
d1:c7:09:fe:83:52:8a:6f:39:57:83:57:03:20:55:9a:30:f5:
0a:50:cd:e9:9e:a6:ad:fb:b2:21:a0:f6:b5:4e:8a:69:10:6b:
de:5d:4f:64:9b:89:9e:f2:b2:1f:93:16:bb:c8:a6:d7:01:54:
8c:fc:fc:40:f8:39:bd:b8:5b:70:c3:b3:0c:f1:da:49:f0:da:
bd:bd:d3:9a:07:81:ce:6b:19:9f:aa:7f:5c:36:92:6a:b3:b4:
57:39:79:41:ba:4e:87:b5:50:37:25:14:00:0a:ff:ff:36:ce:
49:c3:21:5d:f8:9b:84:4c:23:ce:0a:9a:16:a9:87:ec:4f:5d:
c0:68:f9:a4:de:4e:dd:4a:2e:81:bb:e5:6c:83:c2:fa:9e:ad:
31:ad:04:5f:15:ea:3b:98:00:d4:16:a7:e1:53:ae:01:6a:10:
b6:7e:1d:2d:96:9d:de:4c:30:c1:27:99:50:1b:ed:02:93:a0:
e5:19:a9:02:da:eb:d5:99:c9:9f:6b:51:cd:8a:fb:f2:92:1e:
1d:50:3c:87:62:da:6c:d2:e3:8e:fd:63:66:4b:05:20:4d:f5:
3e:4d:47:27:7d:2c:16:ab:5b:fa:4b:7a:45:1a:42:86:ba:e9:
bf:95:01:e7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:54:21 2025 by rpki-client