Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
File: lZcz31nobqfCOy-zem6EbbsYgns.cer (raw, json)
Hash identifier: fswvhL0lDTQhvQ2sT5MkcA42yyD7rlkGcN++0AOBAkw=
Subject key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2EEF
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:02:45 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 36916
IP: 41.138.92.0/22
IP: 41.180.0.0/16
IP: 41.221.224.0/20
IP: 41.223.60.0/22
IP: 2c0f:fcb0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12015 (0x2eef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:02:45 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3669D6BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:70:ab:97:62:55:e1:a0:81:1b:61:b2:30:41:
f4:3e:4f:d1:2c:43:38:a0:e8:77:f9:8f:0f:65:6e:
b5:0d:54:b8:28:5f:32:ba:83:f9:57:f1:08:09:d3:
4b:3b:44:b5:25:46:dd:e0:23:4d:54:bd:e5:f5:f5:
47:14:4f:37:fd:9f:8d:47:fe:a1:e6:c7:29:91:8e:
01:21:53:b5:a8:03:16:49:73:16:aa:33:d4:da:f3:
a2:70:ad:4d:6f:76:60:bb:30:0e:73:61:f6:c5:46:
ef:69:70:5d:fe:2f:78:e2:b4:32:6e:f5:f1:31:64:
c5:4f:7e:e5:be:a8:de:d6:a6:db:3f:bb:93:d4:20:
1f:a6:33:1e:e7:89:f3:93:b7:3e:26:86:ec:bd:2b:
5c:c4:0f:98:eb:0b:5f:03:9f:12:10:52:0d:1e:f9:
59:cc:ae:c5:91:47:06:4b:51:46:61:91:65:46:b1:
0f:f9:4a:19:32:33:95:a0:6a:76:4f:0e:11:ab:4f:
15:24:d2:05:62:78:03:69:40:41:3b:41:3e:78:16:
55:f4:b5:ec:8f:94:27:d2:85:24:fd:3e:29:19:9e:
fa:70:ea:94:59:dc:6f:51:a0:b2:42:78:f2:c5:74:
45:74:c8:b4:d8:0b:bb:97:a5:2b:5a:82:04:cb:29:
4f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
36916
sbgp-ipAddrBlock: critical
IPv4:
41.138.92.0/22
41.180.0.0/16
41.221.224.0/20
41.223.60.0/22
IPv6:
2c0f:fcb0::/32
Signature Algorithm: sha256WithRSAEncryption
7c:72:6c:11:b3:db:c0:69:77:e8:77:7a:5d:90:cb:a7:16:4e:
5d:6c:06:2d:0c:da:a7:9f:b0:6e:a5:f6:24:c9:e4:f6:c7:c7:
ce:a9:0b:d0:95:8b:a9:b9:ee:a9:d3:3b:2a:19:7c:d8:17:9e:
f1:7b:1e:af:fe:29:6f:08:8d:88:21:db:14:44:09:fb:d1:3e:
e7:2e:13:54:a3:f9:ec:90:94:56:65:ae:26:c7:94:3b:5b:f7:
cf:18:4e:e8:e8:33:85:4e:b9:c4:bf:46:74:18:c2:d6:76:74:
f3:00:4e:eb:6d:7b:b7:8d:d4:dc:2a:b7:c3:13:59:b9:06:e6:
d9:fa:66:bd:48:32:48:49:84:96:75:72:1a:3b:2d:93:16:61:
f7:0e:f0:e5:6b:78:47:03:4b:04:f5:bb:4d:da:f3:12:0a:00:
84:d0:89:10:95:71:af:c3:63:d2:5a:9d:25:e7:2b:84:e5:6b:
24:6e:97:d5:33:c7:7c:cd:7f:69:45:55:5f:d6:8e:91:f4:da:
6a:61:18:81:b4:92:9f:c5:29:76:c6:62:0e:96:48:05:2a:af:
9d:15:a9:c9:df:4b:8e:ff:3b:09:89:9a:fe:d5:75:04:d6:3f:
87:74:e8:5a:19:9d:a3:87:56:79:fe:42:22:6f:e6:28:d2:eb:
a5:28:9d:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:17 2025 by rpki-client