Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer
File: hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer (raw, json)
Hash identifier: 0h9xp8Fmg4NnsDxoOn1Mw2D4PsEqo2yrS6Qchhojwlk=
Subject key identifier: 86:96:44:48:77:5B:2F:8F:86:35:9D:54:16:8E:22:0C:1E:87:1B:F5
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 32FD
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:39:26 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328422
IP: 2c0f:5180::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13053 (0x32fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:39:26 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36D8D30AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:41:03:b5:c4:a4:15:e3:f1:87:6b:31:19:b3:
38:2f:be:2d:7c:56:87:4e:ad:47:f4:ea:cc:67:a4:
64:16:60:a4:a9:26:40:59:d8:86:74:10:ce:ed:31:
b4:6b:ae:10:c1:86:e9:a7:fb:d0:75:c3:d7:f8:bd:
78:9c:05:4e:bd:77:9c:00:33:a1:93:36:0e:02:84:
a3:a5:a8:7a:0c:2d:b7:b0:8c:20:36:0c:f2:81:c8:
3b:42:29:7b:90:b3:2c:65:bf:4c:85:57:c8:c1:81:
68:63:ae:c9:16:cf:69:c9:d9:3d:9c:db:02:69:10:
c2:82:c7:8e:0c:b2:ed:fd:be:ef:f8:6f:f7:e3:0c:
12:5d:cd:f2:f9:5b:89:0d:1c:51:35:3e:f5:2b:de:
b1:4c:04:ca:97:75:0f:cc:aa:11:79:f5:36:3c:58:
c2:b6:9c:0f:e4:1d:76:80:ea:73:40:2c:74:c0:b8:
bc:c3:e9:79:bf:01:1e:b7:f3:a7:dc:a5:db:fe:d6:
17:a5:a1:0b:13:17:93:10:29:b1:03:e8:b8:3f:82:
af:01:21:8c:e1:54:88:66:37:9b:be:b7:d6:c3:e2:
a8:a9:3a:8d:f0:74:d4:28:9e:84:61:29:a2:ea:dc:
22:6f:38:a0:ca:e3:37:3f:0f:11:66:ba:39:fa:00:
f1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:96:44:48:77:5B:2F:8F:86:35:9D:54:16:8E:22:0C:1E:87:1B:F5
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328422
sbgp-ipAddrBlock: critical
IPv6:
2c0f:5180::/32
Signature Algorithm: sha256WithRSAEncryption
77:86:bb:03:69:df:71:55:94:84:73:7c:e0:5b:97:2b:b4:5f:
1b:4b:8a:68:8d:31:1b:6e:09:44:9e:ad:59:3d:52:81:b6:51:
49:ea:57:ab:00:bd:9c:93:a3:6d:05:5c:dd:7a:fa:2f:ab:10:
4c:47:44:0f:32:b7:e3:11:cb:ea:a5:c2:2a:b3:11:c0:e0:b7:
f7:b8:5e:c3:eb:97:42:6c:31:3e:02:04:83:0c:bb:70:d8:1e:
ea:63:4f:c0:15:60:25:05:75:34:19:9b:3a:91:9e:f9:97:8e:
cd:fe:c6:7c:68:ae:37:b7:f5:ce:87:19:93:84:a3:20:87:fe:
00:3a:6c:c3:4b:66:e9:ff:47:8e:45:ca:4c:9f:da:2e:58:d7:
4b:aa:07:ea:e4:e4:86:a0:37:84:19:67:ca:de:fb:09:fa:98:
02:6d:2f:d5:7f:b2:be:2d:db:4e:78:09:d6:22:b3:cb:1d:97:
3c:a3:63:ef:a3:5b:65:94:26:f2:0f:eb:6f:a4:ea:c6:98:75:
42:d7:21:1a:75:c7:d5:db:d7:2c:c9:f4:3b:b0:45:73:d7:e6:
38:b7:de:a6:ec:a9:50:b5:b0:be:02:df:6d:53:26:c0:09:cb:
1e:a3:ea:35:07:a8:1d:bd:99:f4:2b:ef:02:39:36:4b:e2:4f:
20:48:75:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:37:35 2025 by rpki-client