Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/ndN95jYew89otu98PBKrOZx8L4s.cer
File: ndN95jYew89otu98PBKrOZx8L4s.cer (raw, json)
Hash identifier: FRk8Po1L8A8aNaYSEHHjiOQUERYGtT1q0YVZQeonCtM=
Subject key identifier: 9D:D3:7D:E6:36:1E:C3:CF:68:B6:EF:7C:3C:12:AB:39:9C:7C:2F:8B
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 408B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3660442/2962801C4FB211ED837146D4F1222468/ndN95jYew89otu98PBKrOZx8L4s.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3660442/2962801C4FB211ED837146D4F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Sat 18 Apr 2026 00:02:50 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 329166
IP: 102.202.192.0/22
IP: 102.211.204.0/22
IP: 102.214.8.0/22
IP: 2c0f:5780::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16523 (0x408b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Apr 18 00:02:50 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=F3660442AF, serialNumber=9DD37DE6361EC3CF68B6EF7C3C12AB399C7C2F8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dc:eb:8e:b1:d8:d4:ff:ec:9d:04:dc:21:ef:
9e:62:31:d5:63:43:c1:43:ed:15:f3:16:04:bc:0f:
f1:16:89:74:9e:6e:eb:06:e7:70:53:85:9c:86:f2:
06:ca:bd:24:c0:25:fe:98:a3:b3:f9:84:4e:67:33:
cc:a7:b4:a1:a2:4a:e1:e7:62:81:09:ee:dd:cb:e5:
97:7b:83:00:7c:3b:79:9d:26:b3:b2:8d:1d:fd:6a:
09:0d:9f:50:4b:ad:cf:06:2a:92:56:a7:cd:bf:3a:
72:f0:72:52:d9:dc:3f:be:9b:ce:71:e3:f6:c5:4e:
23:ac:0b:9d:28:3a:53:4d:55:53:9c:26:79:91:7b:
e2:72:bd:ab:bd:28:53:6d:3a:38:d7:a1:ca:f6:dc:
1c:4f:e0:10:5e:6a:f8:fc:78:09:83:c8:b9:47:c3:
87:1c:39:33:1c:65:32:bd:4c:bd:65:e3:85:17:ff:
4a:e1:eb:f4:48:34:39:f3:93:3d:ba:d2:ae:97:e5:
a3:f6:1b:c2:d0:9d:09:fc:6c:da:cd:86:42:53:67:
95:f3:57:d4:0d:69:d4:25:e0:9f:23:60:26:43:f5:
38:69:5b:1d:ba:25:37:00:38:1a:72:46:70:74:4c:
12:54:50:ae:0b:68:b0:39:9f:65:70:70:ca:ae:65:
7a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D3:7D:E6:36:1E:C3:CF:68:B6:EF:7C:3C:12:AB:39:9C:7C:2F:8B
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3660442/2962801C4FB211ED837146D4F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3660442/2962801C4FB211ED837146D4F1222468/ndN95jYew89otu98PBKrOZx8L4s.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329166
sbgp-ipAddrBlock: critical
IPv4:
102.202.192.0/22
102.211.204.0/22
102.214.8.0/22
IPv6:
2c0f:5780::/32
Signature Algorithm: sha256WithRSAEncryption
0b:91:d1:57:1b:0e:3d:f2:26:6c:09:b1:26:b7:fe:b2:2e:7d:
97:69:17:58:fa:50:74:7a:c1:81:49:39:76:ec:ec:5c:1a:97:
e3:14:b1:5e:9e:f9:08:2e:8b:fc:63:5a:ef:55:1c:6c:0e:86:
4e:3f:2d:07:c3:19:9b:20:4a:ae:af:a5:2c:83:43:64:3f:29:
ab:f5:4e:92:37:90:09:2c:31:92:a6:84:63:52:b5:5b:ec:3d:
7d:6b:30:ef:b4:2a:eb:a9:9a:d3:90:5e:b5:58:85:d6:de:9f:
e8:2e:00:23:37:d8:2c:e6:6a:02:73:7d:69:d5:2b:71:d3:e6:
4b:fc:c5:ac:ff:a5:d7:3f:7b:8e:65:90:62:b0:37:92:f9:ea:
2b:c0:9e:84:80:0d:84:91:01:49:f0:a6:48:6b:cc:fa:c9:04:
e1:55:8e:56:86:1b:49:f4:32:d3:d0:07:3d:84:75:86:29:ca:
fe:a4:22:35:8b:74:58:6f:4d:eb:3b:a2:32:c3:da:98:72:8f:
2b:06:a5:b7:87:bf:04:66:38:f4:dc:eb:bf:d6:6b:6b:f4:6f:
31:b6:f3:1b:98:84:07:02:e3:72:5d:1b:37:b4:ab:2e:0c:f3:
c6:51:ec:9f:85:9b:02:f3:ac:28:ac:f5:43:0e:7d:0d:47:d7:
6b:00:18:5e
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgICQIswDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNjA0MTgwMDAyNTBaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjYwNDQyQUYxMTAvBgNVBAUTKDlERDM3REU2MzYxRUMzQ0Y2OEI2RUY3
QzNDMTJBQjM5OUM3QzJGOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCx3OuOsdjU/+ydBNwh755iMdVjQ8FD7RXzFgS8D/EWiXSebusG53BThZyG8gbK
vSTAJf6Yo7P5hE5nM8yntKGiSuHnYoEJ7t3L5Zd7gwB8O3mdJrOyjR39agkNn1BL
rc8GKpJWp82/OnLwclLZ3D++m85x4/bFTiOsC50oOlNNVVOcJnmRe+Jyvau9KFNt
OjjXocr23BxP4BBeavj8eAmDyLlHw4ccOTMcZTK9TL1l44UX/0rh6/RINDnzkz26
0q6X5aP2G8LQnQn8bNrNhkJTZ5XzV9QNadQl4J8jYCZD9ThpWx26JTcAOBpyRnB0
TBJUUK4LaLA5n2VwcMquZXqnAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUndN95jYe
w89otu98PBKrOZx8L4swHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY2MDQ0Mi8yOTYyODAxQzRGQjIx
MUVEODM3MTQ2RDRGMTIyMjQ2OC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NjA0NDIvMjk2MjgwMUM0RkIyMTFFRDgzNzE0NkQ0RjEyMjI0NjgvbmROOTVq
WWV3ODlvdHU5OFBCS3JPWng4TDRzLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFBc4wOgYIKwYBBQUHAQcBAf8EKzApMBgEAgABMBIDBAJmysADBAJm08wDBAJm
1ggwDQQCAAIwBwMFACwPV4AwDQYJKoZIhvcNAQELBQADggEBAAuR0VcbDj3yJmwJ
sSa3/rIufZdpF1j6UHR6wYFJOXbs7Fwal+MUsV6e+Qgui/xjWu9VHGwOhk4/LQfD
GZsgSq6vpSyDQ2Q/Kav1TpI3kAksMZKmhGNStVvsPX1rMO+0KuupmtOQXrVYhdbe
n+guACM32CzmagJzfWnVK3HT5kv8xaz/pdc/e45lkGKwN5L56ivAnoSADYSRAUnw
pkhrzPrJBOFVjlaGG0n0MtPQBz2EdYYpyv6kIjWLdFhvTes7ojLD2phyjysGpbeH
vwRmOPTc67/Wa2v0bzG28xuYhAcC43JdGze0qy4M88ZR7J+FmwLzrCis9UMOfQ1H
12sAGF4=
-----END CERTIFICATE-----
Generated at Thu May 7 20:43:33 2026 by rpki-client