Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/mlfRoEhHbJDZjDymmHBdYtTdRNM.cer
File: mlfRoEhHbJDZjDymmHBdYtTdRNM.cer (raw, json)
Hash identifier: g2hERvA8kvUNyzVtRGWPjeicU3Iq1BPosXPbhAxNM2I=
Subject key identifier: 9A:57:D1:A0:48:47:6C:90:D9:8C:3C:A6:98:70:5D:62:D4:DD:44:D3
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2EF8
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/mlfRoEhHbJDZjDymmHBdYtTdRNM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:04:30 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37564
IP: 154.66.152.0/21
IP: 196.220.160.0/19
IP: 197.231.232.0/22
IP: 2c0f:f5f0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12024 (0x2ef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:04:30 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36A44EAAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:72:10:aa:b2:78:98:da:e3:4a:0b:cd:be:ed:
c2:25:51:ff:27:08:cb:2d:c3:54:86:bb:e1:76:a5:
fa:0a:52:66:10:b7:e6:df:c3:5a:1e:ec:3a:8c:2f:
a0:b4:4c:45:08:5f:3e:2c:31:83:64:21:91:a9:94:
7b:76:00:55:94:84:c7:b6:cf:f8:c4:f2:59:54:97:
bc:03:6a:40:27:31:fb:96:65:04:0c:3a:da:22:a0:
0e:45:f0:a4:27:4f:b2:c8:77:12:6a:87:6a:50:08:
9b:03:c9:c0:d2:90:2c:32:9d:cf:de:d7:3b:f4:6d:
87:3e:de:f1:1a:56:bb:84:d6:4a:d8:dc:a8:13:86:
50:20:72:f5:1f:7d:c2:9d:c7:3b:fb:7c:f4:ec:b3:
56:3a:96:37:c7:27:17:04:71:46:0e:27:13:63:6d:
73:78:32:8c:a6:92:3c:df:83:42:ec:07:a7:1d:54:
e0:dc:3a:ad:00:af:f3:de:c8:58:19:58:8c:63:82:
d0:fb:b6:6e:73:17:15:89:4a:8e:37:ee:73:d4:a0:
cc:94:e6:dd:40:e0:01:20:a3:6d:d0:b3:ed:14:8d:
e8:bf:23:18:29:6b:fd:b3:d9:93:08:d5:ea:03:bf:
62:a9:f1:be:98:be:88:51:15:65:5a:08:8c:d1:7f:
2b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:57:D1:A0:48:47:6C:90:D9:8C:3C:A6:98:70:5D:62:D4:DD:44:D3
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/mlfRoEhHbJDZjDymmHBdYtTdRNM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37564
sbgp-ipAddrBlock: critical
IPv4:
154.66.152.0/21
196.220.160.0/19
197.231.232.0/22
IPv6:
2c0f:f5f0::/32
Signature Algorithm: sha256WithRSAEncryption
05:7a:b9:27:20:e9:8f:7d:db:a5:5b:95:c2:03:0c:99:10:f3:
7c:c2:22:bc:df:b8:93:cb:d5:bb:fc:a0:a1:f9:fa:2d:55:88:
ce:65:4b:9d:40:3a:61:15:70:21:19:41:46:a0:d1:7d:36:7b:
d1:b9:b3:cf:06:47:b6:5a:9e:49:b9:79:7f:c0:79:67:42:18:
20:70:53:10:36:cd:6a:eb:3e:9a:f5:33:16:14:f9:05:7f:e7:
14:31:af:b7:d3:a8:83:d8:86:50:6c:03:09:ed:ea:52:47:31:
13:58:4b:41:55:2c:09:1f:c3:1e:10:35:4c:2f:d6:89:f9:dc:
5e:6d:43:c6:4b:60:42:59:bb:22:8a:dc:8a:1a:d2:6f:85:79:
ad:a7:7d:b3:cb:5c:6d:a1:e7:9a:b2:5e:79:9f:83:4a:43:ef:
b1:84:34:64:b6:6b:d7:35:7e:e3:2d:1e:c5:32:04:a0:39:4e:
61:81:2d:af:d6:39:12:7b:49:5a:fe:86:21:ab:3b:3b:01:f2:
30:99:a9:69:d8:0d:bf:88:6c:bd:32:cd:b2:dd:9b:8d:09:53:
03:f2:41:40:f6:f3:99:1a:1d:89:06:b0:97:6d:04:57:bf:fb:
14:03:83:f2:f1:57:16:64:9f:84:8c:ae:22:b2:0a:cf:79:80:
10:71:72:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:33:30 2025 by rpki-client