Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/f4UxHUPeqV9MFIwIQ_ssKdOHfMw.cer
File: f4UxHUPeqV9MFIwIQ_ssKdOHfMw.cer (raw, json)
Hash identifier: 04jjmBOoDm5xR3N86ekdhRGPJ8/6g0IS9O7LVuyIl+o=
Subject key identifier: 7F:85:31:1D:43:DE:A9:5F:4C:14:8C:08:43:FB:2C:29:D3:87:7C:CC
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 32C8
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/f4UxHUPeqV9MFIwIQ_ssKdOHfMw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:27:19 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329478
IP: 102.208.28.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13000 (0x32c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:27:19 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36CBA0FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:09:45:e2:35:7b:0a:5e:d5:cb:2e:fa:31:c3:
22:0b:a8:51:8a:ec:8d:5b:99:86:bf:f8:13:9b:10:
a5:af:39:a5:a7:4b:1d:64:82:ff:17:c7:5b:99:9d:
40:b6:37:16:40:a1:67:d5:a8:9c:96:80:71:01:ee:
10:2b:ab:2b:2c:e9:af:44:2e:45:4e:75:46:ea:51:
6e:c1:64:8a:6c:d6:02:46:d1:d6:8a:1b:97:fc:7d:
45:a9:a2:92:ed:64:cd:c7:c8:34:b1:08:13:cc:f3:
51:bc:29:32:96:81:a1:89:e7:9f:d4:0e:34:6d:fd:
22:cf:1a:d3:60:8d:81:9b:d6:a4:2f:86:c1:d7:dd:
38:b3:06:77:c0:ad:1f:20:8f:af:c7:ea:53:06:c3:
84:5f:4a:76:46:f1:c9:14:28:a9:29:c9:ec:68:8a:
74:a3:c7:05:48:3e:d0:5b:c5:00:1b:1c:93:7c:cb:
c8:3a:7f:51:93:af:f3:d3:a6:4d:99:b7:96:c8:ad:
47:1a:4a:de:e5:df:1e:86:31:3d:31:fd:2e:50:60:
bc:47:41:10:f5:cd:ba:80:cd:5d:82:bd:4d:33:9b:
e0:cd:2b:5b:b0:e8:ff:00:c9:3b:a0:25:1f:16:f6:
0f:6e:2f:f3:62:c1:90:70:a3:6a:31:70:ca:7e:bd:
a4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:85:31:1D:43:DE:A9:5F:4C:14:8C:08:43:FB:2C:29:D3:87:7C:CC
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/f4UxHUPeqV9MFIwIQ_ssKdOHfMw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329478
sbgp-ipAddrBlock: critical
IPv4:
102.208.28.0/22
Signature Algorithm: sha256WithRSAEncryption
11:e4:14:f3:be:80:4d:61:b8:5a:a1:7d:eb:c3:f9:51:fe:f9:
28:8e:52:10:7b:c5:2c:3a:c9:93:7e:21:a7:f1:0b:3e:a1:ee:
ec:b3:fd:e9:c0:01:ad:c6:39:a0:2b:f9:f2:32:fe:18:bc:20:
5e:36:5d:7d:0e:bb:48:a9:ef:11:56:88:4e:db:11:fe:23:cd:
29:b9:f3:4b:26:41:73:b1:95:91:a9:91:3b:72:b4:27:c8:61:
1c:af:c0:0d:58:7b:59:e9:d0:44:81:89:03:bc:f8:25:54:04:
3b:8f:15:4b:3e:7d:bd:6a:ae:94:a3:13:9f:42:47:08:cd:60:
2f:12:7a:b9:9a:3d:a4:c9:cc:fe:34:6f:b7:ec:fa:40:47:48:
27:83:8a:3c:e2:c7:60:5b:4d:2d:d2:7b:54:d2:25:d5:a2:70:
f0:9b:54:4a:ad:cc:0d:f7:cf:6b:9a:b7:04:5a:08:27:bc:4c:
d0:cc:2e:f7:59:9e:0b:21:4f:82:22:d7:d0:0f:36:31:92:df:
0d:0b:98:ee:12:e5:d9:7d:9b:93:eb:ba:9c:2f:e4:fc:f0:f3:
f8:f4:de:b0:dd:5f:d6:8a:1b:6a:43:73:0f:1c:77:f9:be:85:
d2:84:b2:df:85:b7:81:50:aa:18:23:4c:38:9c:41:54:ea:b5:
f3:ec:39:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:54:19 2025 by rpki-client