Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/iyKehHwjMl1Mwm9Ajx0z5VennW0.cer
File: iyKehHwjMl1Mwm9Ajx0z5VennW0.cer (raw, json)
Hash identifier: ewo/oPyh9zvP2Vbn47bElLALl56+PDUrvWSnKmaLcqI=
Subject key identifier: 8B:22:9E:84:7C:23:32:5D:4C:C2:6F:40:8F:1D:33:E5:57:A7:9D:6D
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 328B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/iyKehHwjMl1Mwm9Ajx0z5VennW0.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:14:43 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328549
IP: 102.36.184.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12939 (0x328b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:14:43 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C3E3DAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9c:7e:6f:b1:c3:c0:2f:cd:56:bd:69:b1:2f:
e6:35:15:49:f0:83:57:4e:a1:3f:74:b9:16:e9:a2:
0d:79:93:3a:e2:4a:a7:ef:e1:3e:1a:de:ac:6d:c3:
a8:a5:e5:20:72:06:04:15:5e:de:2e:8f:14:93:cd:
89:9c:2a:4e:6c:ef:6e:53:1f:fd:c5:24:29:ab:8b:
f3:07:08:5a:95:94:dc:34:7f:07:87:36:d5:7b:82:
eb:99:3e:f6:dc:a4:43:62:93:d3:16:16:c0:a7:a7:
6b:69:9e:3e:3b:70:15:04:02:db:f0:14:49:c6:94:
49:7b:48:c6:e4:b7:16:c4:48:6c:89:b4:6a:0c:fd:
e6:af:b8:e1:b4:92:54:c4:f5:42:e9:22:e8:05:5e:
96:90:9b:ad:15:72:d2:f0:de:2e:dc:e1:18:03:93:
42:9d:2a:be:18:ee:ec:5b:64:37:6c:1e:da:11:b4:
a4:26:c5:b4:7d:16:f6:2a:91:dd:16:09:e4:32:38:
84:69:33:d4:10:51:96:73:63:2e:25:a5:5c:14:55:
9d:af:00:a6:8e:66:72:2c:83:d9:3b:b9:c4:4e:9b:
a0:3a:4a:1e:06:b2:2a:2f:9c:d0:fe:1f:87:3f:a2:
16:d4:15:36:b0:62:05:b8:62:88:89:0f:3f:8a:42:
5e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:22:9E:84:7C:23:32:5D:4C:C2:6F:40:8F:1D:33:E5:57:A7:9D:6D
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/iyKehHwjMl1Mwm9Ajx0z5VennW0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328549
sbgp-ipAddrBlock: critical
IPv4:
102.36.184.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:be:15:ff:82:01:fe:cd:4d:00:85:b6:37:01:3b:0b:57:89:
c6:db:51:a6:14:72:af:79:74:17:e4:5c:0f:21:c0:c6:20:5c:
13:8e:3f:a3:fe:ca:15:8b:20:da:8e:ba:c8:33:b3:1f:45:3b:
f9:d7:5f:b8:bb:cc:c9:87:36:1a:13:ea:7f:45:54:41:2a:87:
52:a2:af:3b:43:f5:cb:b8:fb:57:ce:3b:10:a5:43:6b:b5:24:
83:0b:2c:55:cf:e4:84:1b:b9:ca:26:38:71:51:d1:6e:a1:3c:
23:99:c7:3f:80:c2:3c:1e:a4:b3:54:2a:8b:00:60:61:ca:4f:
3d:93:21:b0:19:6f:db:29:84:ba:89:c8:d4:9c:98:46:5b:52:
a2:88:5b:98:7c:00:a0:31:07:88:ca:60:98:27:91:0c:08:8f:
10:39:be:d4:2a:2e:ff:98:66:40:83:e7:4d:5a:6d:88:38:ca:
11:4a:bc:5c:c7:6e:09:5a:b6:13:39:9b:1d:95:e7:05:ef:3b:
08:62:f9:57:ad:13:79:a8:65:eb:50:5c:b7:78:39:75:5e:2e:
76:fa:be:6c:fa:fe:9d:56:3d:90:1c:cc:39:af:c7:47:78:74:
46:0f:9e:ac:d9:79:ca:6e:0d:cc:49:5c:32:1f:e3:e6:60:fc:
c1:d1:d3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:19 2025 by rpki-client