Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/l8yJP0_VIPZzaAb5eWJZm3eOG2M.cer
File: l8yJP0_VIPZzaAb5eWJZm3eOG2M.cer (raw, json)
Hash identifier: s3erMaKTRDVAz/liJtn/ECx6WOWFuHFIVq7PQ9sVAa4=
Subject key identifier: 97:CC:89:3F:4F:D5:20:F6:73:68:06:F9:79:62:59:9B:77:8E:1B:63
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3202
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36B1EE5/21831C1C4F1511EFB7A68685762E951A/l8yJP0_VIPZzaAb5eWJZm3eOG2M.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36B1EE5/21831C1C4F1511EFB7A68685762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:45:23 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328497
IP: 102.64.48.0/21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12802 (0x3202)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:45:23 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36B1EE5AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:63:93:b8:5d:a2:36:16:c8:58:37:84:b3:91:
2d:98:78:2a:bb:e8:1a:9b:a7:0c:ca:37:eb:ac:38:
9c:1d:1a:88:ac:a5:50:78:4d:f9:c7:58:2a:22:58:
5d:7f:4f:05:61:62:ca:4c:d3:2b:f2:fa:8b:9c:66:
29:03:68:d4:b6:83:13:9c:db:30:f6:7f:a0:40:c5:
d0:f7:27:f3:1d:58:79:27:f7:d0:eb:fc:56:a0:51:
5e:40:31:b9:56:84:2b:37:fc:eb:94:95:4d:d2:2c:
a6:16:48:6d:60:d6:59:db:69:65:43:7d:93:65:ef:
69:99:3b:d4:8b:9e:1e:5b:17:f2:85:bf:9b:43:5e:
a8:63:9b:23:72:b0:e3:d8:d8:ee:a2:60:39:95:85:
59:b9:2b:92:90:ee:6e:5d:20:b2:1a:6b:6d:f6:11:
7e:8f:90:7b:b5:b1:17:64:44:8c:31:37:bb:1d:63:
4c:c3:ad:3b:da:97:60:3c:d3:b5:3c:45:09:b1:96:
f8:1b:74:d3:68:f8:d1:fe:88:ba:12:c8:3b:b6:84:
34:9e:bd:7d:20:a9:2d:16:91:79:cf:51:c8:1f:87:
d6:af:59:56:78:40:c6:26:4c:72:43:40:18:91:3d:
d0:95:83:bf:1e:7a:84:b0:97:db:60:89:92:7b:fa:
d2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:CC:89:3F:4F:D5:20:F6:73:68:06:F9:79:62:59:9B:77:8E:1B:63
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B1EE5/21831C1C4F1511EFB7A68685762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B1EE5/21831C1C4F1511EFB7A68685762E951A/l8yJP0_VIPZzaAb5eWJZm3eOG2M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328497
sbgp-ipAddrBlock: critical
IPv4:
102.64.48.0/21
Signature Algorithm: sha256WithRSAEncryption
84:b7:18:e6:92:62:96:af:78:7c:21:3d:3a:50:36:49:5c:5e:
ca:0a:94:1d:24:29:fa:f5:5c:e7:a9:5e:3d:cf:e0:e9:00:e5:
3f:d1:d6:f3:12:c2:59:3c:f2:ed:fb:d9:ea:98:54:cd:8c:6c:
9f:8b:fa:db:0d:e5:e4:15:ab:6a:d8:42:24:09:c5:1e:c0:db:
13:58:1d:84:e5:cc:34:43:03:ae:f1:57:ee:0d:45:5d:22:f7:
88:20:ab:24:5a:64:5c:61:c9:de:f5:dc:41:33:2f:aa:79:0e:
6d:7e:41:6b:41:d4:f0:e2:e9:c6:a8:37:e4:eb:52:39:ec:aa:
d8:4f:2b:f0:14:4b:c4:d6:42:5d:85:20:ff:be:cf:c3:27:cb:
7a:d8:2a:5b:c5:51:7c:0a:b1:f4:81:d1:36:01:a2:df:17:73:
be:3b:6d:06:c9:6c:20:d5:ae:47:c9:0b:c1:ce:b9:c3:87:5f:
3c:a6:57:b1:4d:8a:49:00:31:40:dc:0b:e0:54:51:e3:28:13:
32:50:37:89:9f:4d:ce:e2:9a:1d:64:13:4e:98:0c:63:2c:f1:
25:38:40:5a:5a:c3:f7:02:fb:13:45:af:0d:56:18:44:8e:b1:
9f:d6:61:4b:68:8f:c4:0b:1d:91:d9:8a:4b:28:9a:a3:56:f1:
b7:18:72:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:43:55 2025 by rpki-client