Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/oF-Eq_BmnuDQf8jaNn2Bb6_wZwQ.cer
File: oF-Eq_BmnuDQf8jaNn2Bb6_wZwQ.cer (raw, json)
Hash identifier: VmjdzfLiM65XFG9B6Kbs0OJ0j87meQ/cz+YVPmTEmrQ=
Subject key identifier: A0:5F:84:AB:F0:66:9E:E0:D0:7F:C8:DA:36:7D:81:6F:AF:F0:67:04
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3443
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3687CF2/43F7457EEEB211EFB8B6489E762E951A/oF-Eq_BmnuDQf8jaNn2Bb6_wZwQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3687CF2/43F7457EEEB211EFB8B6489E762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 19 Feb 2025 11:11:38 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37649
IP: 102.164.128.0/18
IP: 154.65.32.0/21
IP: 196.50.8.0/21
IP: 2c0f:ee80::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13379 (0x3443)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Feb 19 11:11:38 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3687CF2AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:91:56:a2:06:eb:28:68:84:6d:0a:29:e2:f0:
92:be:23:e8:3d:9e:c6:53:50:5b:7a:15:b7:eb:51:
f8:54:85:0f:36:0c:bf:40:43:13:ad:11:28:bc:61:
dc:6d:c8:8a:97:eb:5d:b3:72:46:a5:7f:ec:7b:88:
a0:0f:b0:07:5a:7e:e5:e9:67:92:ca:71:f3:89:59:
33:68:cd:2f:73:68:ca:92:12:23:fb:71:ab:52:02:
77:91:e1:08:89:e5:24:f5:b3:ad:7a:7a:84:fa:e9:
52:38:19:aa:c4:b4:08:2b:83:70:4f:3f:17:38:18:
3f:9d:5d:3c:bd:77:9f:f8:cc:a7:01:72:3b:37:21:
c1:45:ed:19:91:d1:12:d9:42:35:b0:1c:ee:a2:be:
32:0f:88:1a:3a:b4:bb:0d:79:37:ac:7a:b9:0a:fd:
84:9b:47:71:34:30:10:a9:e5:49:65:57:75:ee:58:
17:b9:24:2b:d5:21:73:a4:c7:94:8b:28:2f:42:00:
4e:49:d4:3a:48:ef:e2:71:66:c5:73:e1:03:b8:fc:
16:0a:05:8a:e5:23:ea:a9:43:a0:9f:fa:67:9f:6a:
86:0a:aa:16:6a:e9:6a:e4:34:37:30:92:f9:22:23:
94:b4:16:bc:ef:9f:99:4b:08:b4:5b:7e:5f:61:f4:
d6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5F:84:AB:F0:66:9E:E0:D0:7F:C8:DA:36:7D:81:6F:AF:F0:67:04
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3687CF2/43F7457EEEB211EFB8B6489E762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3687CF2/43F7457EEEB211EFB8B6489E762E951A/oF-Eq_BmnuDQf8jaNn2Bb6_wZwQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37649
sbgp-ipAddrBlock: critical
IPv4:
102.164.128.0/18
154.65.32.0/21
196.50.8.0/21
IPv6:
2c0f:ee80::/32
Signature Algorithm: sha256WithRSAEncryption
36:3d:7f:8e:c2:a2:c0:81:fa:e6:82:73:49:98:9f:df:d6:c2:
56:74:a5:84:5c:46:94:1e:64:fe:0a:4b:55:cd:84:4b:da:08:
ee:a6:a9:6e:3b:dd:52:1a:92:4f:23:85:c7:15:33:47:a2:1e:
b5:cd:ca:12:e7:a3:91:26:91:b6:f9:75:a5:79:62:c8:48:b7:
be:34:3e:92:af:42:0b:56:97:0b:f0:c1:c0:60:dc:b8:b0:cf:
f7:42:53:a6:10:22:62:b7:ca:7f:21:63:07:2e:79:8b:d6:4a:
2f:70:b2:ac:68:02:7e:36:c9:a3:bb:0b:fc:31:8a:51:d7:f9:
a1:ef:15:71:e0:36:be:9c:8f:c9:06:70:ac:b6:f1:91:d2:b1:
6a:34:c1:91:86:56:39:2f:3a:c5:09:78:9e:d2:88:9b:f1:84:
d2:51:31:b1:ab:43:fc:4f:6e:7e:1c:56:14:e7:da:5d:a2:15:
e6:0c:9a:00:00:da:e5:03:ba:5f:a3:ba:fa:9c:8c:a4:f9:2b:
72:c7:22:64:d9:67:7c:aa:3e:b5:99:16:d2:75:a5:af:f0:d3:
7a:e7:92:12:78:de:27:80:fc:cc:d9:82:e4:d6:91:42:49:83:
ea:d0:4b:b8:13:a8:54:03:96:61:6f:44:5b:db:4b:2e:52:a4:
af:c5:5b:85
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgICNEMwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAyMTkxMTExMzhaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjg3Q0YyQUYxMTAvBgNVBAUTKEEwNUY4NEFCRjA2NjlFRTBEMDdGQzhE
QTM2N0Q4MTZGQUZGMDY3MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCxkVaiBusoaIRtCini8JK+I+g9nsZTUFt6FbfrUfhUhQ82DL9AQxOtESi8Ydxt
yIqX612zckalf+x7iKAPsAdafuXpZ5LKcfOJWTNozS9zaMqSEiP7catSAneR4QiJ
5ST1s616eoT66VI4GarEtAgrg3BPPxc4GD+dXTy9d5/4zKcBcjs3IcFF7RmR0RLZ
QjWwHO6ivjIPiBo6tLsNeTeserkK/YSbR3E0MBCp5UllV3XuWBe5JCvVIXOkx5SL
KC9CAE5J1DpI7+JxZsVz4QO4/BYKBYrlI+qpQ6Cf+mefaoYKqhZq6WrkNDcwkvki
I5S0Frzvn5lLCLRbfl9h9NZhAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUoF+Eq/Bm
nuDQf8jaNn2Bb6/wZwQwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4N0NGMi80M0Y3NDU3RUVFQjIx
MUVGQjhCNjQ4OUU3NjJFOTUxQS8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODdDRjIvNDNGNzQ1N0VFRUIyMTFFRkI4QjY0ODlFNzYyRTk1MUEvb0YtRXFf
Qm1udURRZjhqYU5uMkJiNl93WndRLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMAkxEwOgYIKwYBBQUHAQcBAf8EKzApMBgEAgABMBIDBAZmpIADBAOaQSADBAPE
MggwDQQCAAIwBwMFACwP7oAwDQYJKoZIhvcNAQELBQADggEBADY9f47CosCB+uaC
c0mYn9/WwlZ0pYRcRpQeZP4KS1XNhEvaCO6mqW473VIakk8jhccVM0eiHrXNyhLn
o5Emkbb5daV5YshIt740PpKvQgtWlwvwwcBg3Liwz/dCU6YQImK3yn8hYwcueYvW
Si9wsqxoAn42yaO7C/wxilHX+aHvFXHgNr6cj8kGcKy28ZHSsWo0wZGGVjkvOsUJ
eJ7SiJvxhNJRMbGrQ/xPbn4cVhTn2l2iFeYMmgAA2uUDul+juvqcjKT5K3LHImTZ
Z3yqPrWZFtJ1pa/w03rnkhJ43ieA/MzZguTWkUJJg+rQS7gTqFQDlmFvRFvbSy5S
pK/FW4U=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:43:55 2025 by rpki-client