Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/fs54roG_QHKx3E9vt-bLkWYlKzQ.cer
File: fs54roG_QHKx3E9vt-bLkWYlKzQ.cer (raw, json)
Hash identifier: lsgF7kZrMfTZJdgJMXGl3l073aWFvAPLrvQeGIY+umM=
Subject key identifier: 7E:CE:78:AE:81:BF:40:72:B1:DC:4F:6F:B7:E6:CB:91:66:25:2B:34
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 320B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/fs54roG_QHKx3E9vt-bLkWYlKzQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:47:19 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 196.200.240.0/20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12811 (0x320b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:47:19 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E1028AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2f:56:8c:55:79:0a:a7:34:0e:a1:de:20:e6:
07:1a:da:a6:f0:c8:2c:aa:6f:ac:ca:21:56:19:37:
ff:ec:12:76:1d:4f:99:07:5c:97:34:98:72:c1:46:
b0:de:f5:cf:e9:d8:99:13:1c:ae:43:92:ee:d7:00:
35:6c:d1:0a:74:60:0a:c6:16:32:a7:bb:fa:e7:8d:
56:68:2d:89:f2:cc:c4:8c:a9:63:50:7b:97:f5:5a:
9c:46:e7:9b:1d:4c:a7:83:0f:6c:6a:33:b4:d2:90:
f6:f4:62:07:b5:2f:47:d2:15:ee:82:93:33:9c:b8:
b3:7f:06:8d:27:88:30:4a:c9:cb:e8:65:a1:5d:eb:
a1:98:a1:0a:45:03:8b:24:b2:f9:79:ed:f8:ca:88:
e2:eb:c3:d8:4e:ec:95:57:5f:52:bb:6e:60:15:3d:
05:92:95:a5:ca:d2:c8:cb:c9:5f:3b:b3:72:39:20:
0c:15:9e:3a:7f:03:a8:4b:49:a3:db:d0:fd:64:11:
79:94:ba:60:c1:5a:f7:c9:82:3d:61:a9:b2:07:12:
39:42:56:75:5e:c8:4c:70:0f:97:34:ca:4d:df:76:
d6:60:28:4e:e2:5a:6a:59:fc:c5:0d:b3:34:45:9d:
ba:4d:94:b6:79:09:d4:72:59:cb:ed:67:6e:95:3f:
95:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:CE:78:AE:81:BF:40:72:B1:DC:4F:6F:B7:E6:CB:91:66:25:2B:34
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/fs54roG_QHKx3E9vt-bLkWYlKzQ.mft
sbgp-ipAddrBlock: critical
IPv4:
196.200.240.0/20
Signature Algorithm: sha256WithRSAEncryption
55:08:8f:e9:b3:e8:a0:70:d6:64:41:f8:fd:03:5e:03:29:f7:
73:e4:30:fd:f6:c3:83:8f:e3:9c:22:f7:9f:95:ac:c3:ab:7f:
e3:07:02:f6:99:a8:57:4d:4d:eb:4a:5c:88:3a:df:3b:6d:3c:
8c:d3:c8:7f:56:77:43:fa:6f:24:38:c4:71:8c:74:e4:af:55:
ee:53:00:67:ef:02:4e:9e:20:ef:60:65:a3:59:ea:17:0c:60:
b0:1c:10:9a:9d:c7:6e:cd:dd:58:3e:29:a3:f7:b8:3e:40:b6:
fb:86:88:47:17:70:9b:d7:5f:99:5b:16:02:75:18:31:a0:f8:
e9:01:b9:2b:d9:19:47:ac:0e:3d:52:96:10:67:5d:8f:58:9f:
a3:7c:3d:28:24:69:ad:60:33:32:19:c3:2c:9c:8a:a1:b5:7a:
af:a2:d1:ec:d6:35:eb:04:0a:2a:db:a9:97:08:8b:03:e3:16:
88:8a:61:02:de:ca:c1:aa:b6:3b:00:e9:ea:bc:46:7e:2b:e6:
cb:6e:b1:e3:e6:1b:99:16:fd:84:3a:c9:39:fb:2e:9f:19:b4:
e4:27:47:21:fc:2b:ab:21:bc:57:38:92:90:b1:bc:0f:12:8d:
c8:c5:c4:67:7c:88:c7:e0:8d:5e:d4:23:28:15:3d:2e:6e:96:
5c:c1:13:88
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:56:26 2025 by rpki-client