Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/rlHSVxbdtMyjGy6YXgp1Jff0ucY.cer
File: rlHSVxbdtMyjGy6YXgp1Jff0ucY.cer (raw, json)
Hash identifier: orWuDyUipzmPwZwDKsxipGUtxkZZnHH4viQKBJHKt6c=
Subject key identifier: AE:51:D2:57:16:DD:B4:CC:A3:1B:2E:98:5E:0A:75:25:F7:F4:B9:C6
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 308D
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/rlHSVxbdtMyjGy6YXgp1Jff0ucY.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:26:02 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328795
IP: 102.220.252.0/22
IP: 2c0f:3400::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12429 (0x308d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:26:02 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F368A3D1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:80:89:02:1d:6e:55:8c:28:93:9e:22:ba:2f:
8f:f0:3f:c2:62:56:f2:81:9a:71:00:18:ee:17:4c:
df:4a:dd:57:43:b7:46:1c:2c:b2:ba:ac:5e:75:f5:
5b:66:ba:92:9d:32:71:a7:b8:59:48:1d:60:cf:76:
e1:8f:4e:ff:a3:fe:8a:9a:41:25:34:bc:56:d5:62:
16:78:78:67:7d:9a:dd:0a:33:ca:58:12:5a:b2:ea:
95:5f:b8:71:a2:b0:db:67:94:8c:95:18:54:33:2d:
bb:b2:b5:1e:50:bf:43:16:d1:2c:16:bb:c3:d3:78:
a6:55:e7:71:26:c9:fc:9b:ca:76:98:4f:9a:bc:dd:
f0:2d:46:ba:c5:5d:b6:97:0d:b8:7b:af:aa:2c:e2:
f3:8b:ea:70:e2:22:86:6b:74:40:c4:81:f3:24:a2:
c5:e4:0b:a6:c2:0d:b1:0d:aa:62:2f:08:9a:2e:b2:
4f:e2:a6:28:9a:fa:f1:aa:24:6d:f5:2c:1f:09:f7:
f7:3a:0b:d1:bd:b0:b1:5b:48:2b:3e:ac:ec:32:d7:
6a:58:11:f1:5d:3c:cd:f0:ff:88:73:de:a5:b5:d4:
1a:63:df:ba:13:b5:2b:d8:c3:f2:23:5b:68:bd:a6:
ff:d3:2b:be:98:08:24:90:bd:79:77:52:7a:80:16:
22:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:51:D2:57:16:DD:B4:CC:A3:1B:2E:98:5E:0A:75:25:F7:F4:B9:C6
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/rlHSVxbdtMyjGy6YXgp1Jff0ucY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328795
sbgp-ipAddrBlock: critical
IPv4:
102.220.252.0/22
IPv6:
2c0f:3400::/32
Signature Algorithm: sha256WithRSAEncryption
8c:ee:a2:81:61:7e:7b:ee:d5:08:d2:c9:a9:ed:62:4b:3c:1c:
8b:9f:ba:e5:71:b2:2c:71:73:3a:e9:a8:72:a0:36:a2:ce:59:
7c:6b:73:25:d9:44:66:e1:1a:6b:57:72:42:37:85:37:63:c3:
50:0b:32:cc:f0:c6:9a:53:49:29:7f:67:4e:0c:ea:97:d0:7d:
a9:f0:c9:65:21:3c:48:77:8e:05:e9:0c:27:82:eb:ed:b5:3e:
11:e8:c3:63:a6:2c:10:e2:17:b6:d6:dd:93:90:16:ca:ca:85:
de:9d:17:87:88:a7:f9:80:77:7f:9e:32:5e:98:83:97:d6:eb:
0a:ab:2a:33:0b:5b:c9:7a:7d:f9:83:b3:64:5b:4b:30:c1:85:
d1:91:16:6f:88:ec:2c:ac:8a:bc:f9:d5:da:d5:56:7b:02:aa:
3e:6b:19:d8:ed:fb:16:86:25:91:a9:2b:27:d0:36:59:c3:9d:
83:4f:2f:dc:ad:0d:cc:58:1e:3e:d4:dc:bf:08:d7:ef:b6:b2:
fc:e1:c1:4c:39:6d:1a:30:3d:d1:cc:87:13:2a:18:b5:cf:e4:
70:e0:50:bf:2f:8c:3c:72:19:f9:c9:5b:9a:51:55:41:51:a9:
1f:d5:77:ab:51:6e:1f:be:b5:39:17:45:cd:21:0d:b8:86:3d:
d3:dc:ee:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:30:29 2025 by rpki-client