Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/qO2f3Jdp7203QbndrnI9MYFl51A.cer
File: qO2f3Jdp7203QbndrnI9MYFl51A.cer (raw, json)
Hash identifier: NMPyGvqEkVl1x0d+MUk+TLQcY4N8XlCf55R/JToKGBQ=
Subject key identifier: A8:ED:9F:DC:97:69:EF:6D:37:41:B9:DD:AE:72:3D:31:81:65:E7:50
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F74
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36628E9/FCDCD124833211EC890A0BAF5A40D577/qO2f3Jdp7203QbndrnI9MYFl51A.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36628E9/FCDCD124833211EC890A0BAF5A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:29:25 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.68.48.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12148 (0x2f74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:29:25 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36628E9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:a7:c2:59:8b:ba:52:8c:a1:a7:d0:e0:e2:27:
cc:ba:cc:6e:65:e0:76:31:e9:d9:5f:0b:30:30:e7:
14:85:79:56:e7:06:36:6c:4b:7b:23:b8:e9:a5:56:
54:60:cd:e9:09:81:63:80:7d:d9:a8:62:ea:f6:c4:
ac:0a:0e:51:b1:a6:3b:53:00:72:af:c0:13:94:76:
1b:c4:08:8a:9b:f2:56:e9:62:9a:d9:fb:a4:62:2e:
f9:9e:64:c3:20:3d:0d:83:b1:6f:0f:ba:de:95:89:
eb:bc:80:4f:ac:12:59:0e:f1:6c:2a:cb:13:68:7b:
ff:11:c8:4b:d4:41:b6:f0:99:50:98:84:a2:9d:a9:
40:bf:84:5f:1c:05:fd:3b:4f:24:42:90:4e:0d:7c:
13:63:49:84:95:4b:9e:a5:23:16:8c:e2:e3:41:fc:
c5:4e:26:90:b6:d2:ca:d9:72:f5:f3:56:aa:c7:63:
15:00:ab:06:68:8c:5a:6c:1f:84:de:fa:6e:aa:83:
f0:da:33:30:bb:01:a1:d5:20:11:7e:eb:65:b2:77:
6b:14:47:36:73:da:8d:b4:cf:c5:8b:4e:5c:2a:d2:
46:83:86:ed:aa:c7:fa:c0:01:38:53:de:34:0b:21:
2c:e1:da:6d:91:17:c2:a1:05:bc:01:8b:1b:70:3f:
c9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:ED:9F:DC:97:69:EF:6D:37:41:B9:DD:AE:72:3D:31:81:65:E7:50
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36628E9/FCDCD124833211EC890A0BAF5A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36628E9/FCDCD124833211EC890A0BAF5A40D577/qO2f3Jdp7203QbndrnI9MYFl51A.mft
sbgp-ipAddrBlock: critical
IPv4:
102.68.48.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:b8:ae:f9:f2:6a:0a:29:e5:7e:42:a2:73:4c:d4:9f:0e:55:
39:eb:84:25:66:d8:ac:f8:e8:89:17:32:5b:6e:cf:51:61:8a:
39:b4:a5:ab:f1:5f:94:d6:02:34:06:46:91:68:ae:06:37:28:
85:10:47:09:ec:61:69:81:6d:2d:c4:2d:6e:5d:3b:fa:e3:77:
32:57:15:80:f1:2c:36:58:3b:ac:a1:75:e7:c8:5a:01:eb:18:
46:45:b1:a9:01:a5:b4:bb:25:aa:44:5e:9c:3a:2f:c6:4f:8c:
1c:44:1f:e8:a6:75:40:80:08:19:1a:18:97:b8:39:79:56:fb:
41:a2:6a:63:d4:74:6c:18:ac:7a:1c:a7:a9:57:3d:e6:04:3a:
e5:0b:e9:bb:a0:2a:b4:a5:4a:89:fc:48:98:9e:59:30:de:fe:
24:10:4b:78:ce:62:b3:48:2f:d3:2b:db:9c:bd:d7:b4:3a:0c:
f2:5a:53:7a:59:5b:7f:3c:60:ed:2c:c6:a8:8a:60:3a:d1:e7:
52:73:37:f8:9e:95:86:ff:86:e8:9d:a0:0b:58:dd:d2:95:e8:
14:f9:f6:36:78:4f:c4:a8:66:b7:a6:5b:ea:5b:4b:6f:f1:9a:
4a:a1:39:43:ed:18:88:93:cd:bf:8b:80:c9:12:9a:e1:cc:50:
6a:67:14:09
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 02:18:23 2025 by rpki-client