Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
File: hyEw5ps_uANbGyXT9vuXSioHjsw.cer (raw, json)
Hash identifier: MPV1DrEasghr/iPZrCCFYKqN9yu7RUMQaWFbTjvjFrM=
Subject key identifier: 87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3334
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:52:21 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37684
IP: 41.242.0.0/22
IP: 102.207.148.0/22
IP: 102.221.32.0/22
IP: 2c0f:f408::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13108 (0x3334)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:52:21 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E2B8CAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d9:9c:bf:26:ad:24:6b:d0:26:09:71:43:0f:
f3:b3:57:36:33:6e:d7:f9:78:a5:53:e6:fa:0b:d2:
de:ac:d5:d4:5b:47:dc:82:a3:ca:f0:df:89:4e:77:
ec:5d:31:bc:89:31:1a:97:04:34:24:ea:a8:e6:27:
e6:f4:eb:d8:f3:5c:3e:08:1d:b0:af:59:e4:cd:65:
6e:78:78:45:30:42:09:3f:29:ae:84:6c:5c:11:a7:
54:d3:c9:35:ab:a1:9c:4d:e4:f5:16:06:56:f9:57:
5c:57:2f:61:ec:1e:e6:cd:ae:9a:e8:de:5c:30:e3:
92:f2:88:f0:db:2f:e9:94:d1:15:c0:a3:d6:34:ee:
19:c0:40:92:3c:04:74:f7:a4:5c:f6:f9:ca:b2:2f:
c5:78:68:2a:13:27:3d:7a:2e:01:d7:b0:cd:0b:5a:
00:09:03:f4:0e:85:e5:a1:66:7b:ea:06:5e:2e:cc:
e6:08:c5:10:2b:a4:99:44:45:d3:63:c4:ae:e5:59:
9f:04:33:56:02:fb:58:b0:ab:64:2b:31:e4:9c:8b:
28:4d:b2:78:de:b3:c4:39:dd:c5:7b:39:96:22:1f:
52:bb:b6:ae:73:90:63:a6:cc:73:0a:06:84:13:af:
de:ec:23:f9:4f:9e:75:1e:9d:69:0e:f8:14:a2:4f:
ef:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37684
sbgp-ipAddrBlock: critical
IPv4:
41.242.0.0/22
102.207.148.0/22
102.221.32.0/22
IPv6:
2c0f:f408::/32
Signature Algorithm: sha256WithRSAEncryption
b1:9f:90:a1:34:d0:48:f0:8a:5f:43:5b:ca:22:9b:c1:fb:70:
dc:f6:7b:b3:ba:78:22:46:8e:19:6f:21:cd:3f:1f:64:28:4c:
44:ef:e9:8c:c8:f2:11:ce:1b:33:ed:47:54:43:92:d3:8f:9e:
0e:38:8e:b5:cd:43:23:64:03:09:76:0b:4b:8a:03:8f:e8:01:
a5:09:43:40:f4:8a:ed:ea:7b:f1:54:7c:c9:e4:15:ca:de:a7:
29:66:91:41:ef:62:d1:0e:e0:ad:bf:93:cd:c1:bc:33:16:dd:
52:5f:46:93:80:fe:cd:5b:d4:23:fd:14:a8:dd:1f:8b:d9:ef:
8c:f4:fb:1d:3c:28:67:91:c8:70:67:e4:cd:b3:08:06:35:32:
5b:50:91:15:5d:13:64:8d:bd:ca:84:e8:f5:94:7b:b1:b8:c1:
ef:ed:ac:21:68:de:26:d9:73:68:da:d0:ff:35:3c:12:e2:98:
da:1e:56:cd:69:d2:ac:58:37:9d:86:22:a6:32:22:73:b0:6e:
bd:c1:98:b5:49:d5:d5:9c:38:84:e2:b0:a1:40:a6:d6:06:6d:
78:e3:17:4a:4f:09:54:4e:78:06:91:d5:46:a4:84:59:d4:42:
de:84:25:2b:d9:70:ac:15:35:2d:4e:4c:5f:63:5f:d4:1e:be:
89:6e:71:2c
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgICMzQwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwNTUyMjFaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkUyQjhDQUYxMTAvBgNVBAUTKDg3MjEzMEU2OUIzRkI4MDM1QjFCMjVE
M0Y2RkI5NzRBMkEwNzhFQ0MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCm2Zy/Jq0ka9AmCXFDD/OzVzYzbtf5eKVT5voL0t6s1dRbR9yCo8rw34lOd+xd
MbyJMRqXBDQk6qjmJ+b069jzXD4IHbCvWeTNZW54eEUwQgk/Ka6EbFwRp1TTyTWr
oZxN5PUWBlb5V1xXL2HsHubNrpro3lww45LyiPDbL+mU0RXAo9Y07hnAQJI8BHT3
pFz2+cqyL8V4aCoTJz16LgHXsM0LWgAJA/QOheWhZnvqBl4uzOYIxRArpJlERdNj
xK7lWZ8EM1YC+1iwq2QrMeSciyhNsnjes8Q53cV7OZYiH1K7tq5zkGOmzHMKBoQT
r97sI/lPnnUenWkO+BSiT+8rAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUhyEw5ps/
uANbGyXT9vuXSioHjswwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZFMkI4Qy9DOEY5REYxRTBCNjIx
MUVFODYyRDg2OEE0QUQ5RTZGQy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RTJCOEMvQzhGOURGMUUwQjYyMTFFRTg2MkQ4NjhBNEFEOUU2RkMvaHlFdzVw
c191QU5iR3lYVDl2dVhTaW9IanN3Lm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMAkzQwOgYIKwYBBQUHAQcBAf8EKzApMBgEAgABMBIDBAIp8gADBAJmz5QDBAJm
3SAwDQQCAAIwBwMFACwP9AgwDQYJKoZIhvcNAQELBQADggEBALGfkKE00Ejwil9D
W8oim8H7cNz2e7O6eCJGjhlvIc0/H2QoTETv6YzI8hHOGzPtR1RDktOPng44jrXN
QyNkAwl2C0uKA4/oAaUJQ0D0iu3qe/FUfMnkFcrepylmkUHvYtEO4K2/k83BvDMW
3VJfRpOA/s1b1CP9FKjdH4vZ74z0+x08KGeRyHBn5M2zCAY1MltQkRVdE2SNvcqE
6PWUe7G4we/trCFo3ibZc2ja0P81PBLimNoeVs1p0qxYN52GIqYyInOwbr3BmLVJ
1dWcOITisKFAptYGbXjjF0pPCVROeAaR1UakhFnUQt6EJSvZcKwVNS1OTF9jX9Qe
volucSw=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:32:44 2025 by rpki-client