Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/g90Sbl5YX_qT9fH_Xe72__27_6Y.cer
File: g90Sbl5YX_qT9fH_Xe72__27_6Y.cer (raw, json)
Hash identifier: uk1kimQIDOCeiB2JkjcWGbMR+HOgsJhM8ertWvYeZq0=
Subject key identifier: 83:DD:12:6E:5E:58:5F:FA:93:F5:F1:FF:5D:EE:F6:FF:FD:BB:FF:A6
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3409
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C6E7C/2BD3F1B6590111EDA097F2F0F1222468/g90Sbl5YX_qT9fH_Xe72__27_6Y.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C6E7C/2BD3F1B6590111EDA097F2F0F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Fri 24 Jan 2025 00:05:08 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328474
IP: 102.67.56.0/22
IP: 102.206.192.0/22
IP: 102.209.120.0/22
IP: 102.214.192.0/22
IP: 102.221.244.0/22
IP: 2c0f:ed60::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13321 (0x3409)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 24 00:05:08 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C6E7CAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:58:d1:4b:91:05:6e:78:53:23:d6:4e:06:1c:
d2:72:13:e0:22:b5:17:fb:8b:4e:55:85:8a:44:d2:
76:ea:12:ef:56:1a:1d:77:58:39:e7:35:bb:f5:5c:
28:7e:48:9d:85:61:f1:e4:d5:62:d8:2c:fd:60:40:
28:32:11:1a:0c:14:a1:21:ba:2e:2a:8e:f0:99:41:
00:f0:c0:30:24:ca:32:1b:fc:b6:26:4d:ad:aa:ed:
7d:52:78:e7:20:5d:de:56:30:af:0e:ed:a2:16:4b:
f5:c8:67:a7:c3:ad:05:b7:15:f2:04:61:0a:0a:04:
8c:05:13:89:3f:03:8f:e4:56:8c:08:9c:da:d6:58:
ee:e9:22:df:ef:36:32:14:3b:67:92:71:99:0c:75:
33:98:4d:65:d7:2c:06:a1:52:1c:41:cc:04:93:6d:
77:16:eb:9e:d8:0d:bf:ae:57:5a:a9:ec:af:55:de:
e7:30:29:f8:58:a4:cf:ca:f9:06:fb:eb:88:cc:cd:
8d:67:f8:6b:f0:08:66:b4:fb:fb:62:1c:58:56:21:
f3:07:40:81:4f:63:02:00:fe:74:8f:26:9b:d2:35:
14:8c:30:e3:d4:05:8d:d0:f1:9d:60:e8:03:eb:2c:
98:2b:68:c6:32:1c:0d:3a:e9:ac:8c:ae:99:25:35:
be:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:DD:12:6E:5E:58:5F:FA:93:F5:F1:FF:5D:EE:F6:FF:FD:BB:FF:A6
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C6E7C/2BD3F1B6590111EDA097F2F0F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C6E7C/2BD3F1B6590111EDA097F2F0F1222468/g90Sbl5YX_qT9fH_Xe72__27_6Y.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328474
sbgp-ipAddrBlock: critical
IPv4:
102.67.56.0/22
102.206.192.0/22
102.209.120.0/22
102.214.192.0/22
102.221.244.0/22
IPv6:
2c0f:ed60::/32
Signature Algorithm: sha256WithRSAEncryption
7f:31:ba:ca:3e:87:e5:9d:af:7d:ac:df:6a:77:64:a3:97:8c:
fb:d0:41:69:19:a2:79:73:3b:c1:cf:51:65:51:d9:3c:18:4c:
a4:43:e4:0a:64:00:16:af:39:e8:1d:a5:42:66:bc:de:9c:bd:
a7:cd:98:dd:4d:62:d6:c3:eb:de:67:7d:f6:e6:b5:12:15:4f:
f7:5c:1c:fd:84:7b:9b:c3:77:b7:a1:1d:1f:33:35:bf:ea:4a:
a8:e2:ad:35:90:d7:78:88:bb:52:0f:49:65:54:18:21:b3:61:
21:fb:c3:f6:7b:af:71:82:7c:4c:11:84:c3:4f:27:f8:b7:ca:
31:e2:52:f7:1e:3e:aa:4f:bb:b6:fa:1c:d5:06:6a:8b:e2:99:
cf:85:b1:72:f6:68:37:a0:96:86:1e:5b:7d:23:a1:4a:97:8a:
92:7c:80:02:c4:70:96:66:c0:5e:26:b2:b4:c4:75:54:8f:24:
2a:6e:68:fc:0b:9b:e9:96:b9:6b:22:42:d6:39:08:08:e1:02:
d7:5c:f2:14:2d:be:ff:6d:7a:5c:6a:09:ef:62:eb:d6:eb:47:
e5:52:e9:48:27:63:ee:61:0d:60:15:03:cf:0b:94:e2:a2:3e:
0f:0f:59:9f:7e:ad:46:8e:4e:07:91:28:53:e3:72:c5:ea:17:
2b:3c:18:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:45:50 2025 by rpki-client