Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/sbPdzlUwcgAQqZ4U8lK5dDCKtxQ.cer
File: sbPdzlUwcgAQqZ4U8lK5dDCKtxQ.cer (raw, json)
Hash identifier: jZNGSJcCe6G8UZ4zXzaGugoeEUmQzWawSSvs1MxMkLk=
Subject key identifier: B1:B3:DD:CE:55:30:72:00:10:A9:9E:14:F2:52:B9:74:30:8A:B7:14
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3259
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36BD97C/C43845CC2D9411ECA2AA6345D8A014CE/sbPdzlUwcgAQqZ4U8lK5dDCKtxQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36BD97C/C43845CC2D9411ECA2AA6345D8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:03:41 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328463
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12889 (0x3259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:03:41 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36BD97CAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e9:6b:da:f4:5d:0f:3a:f0:8b:ce:54:af:2f:
67:1e:5b:b3:c8:25:82:a4:4c:e8:bf:ce:63:eb:76:
1f:60:5d:63:03:de:34:4a:cf:34:17:49:8c:34:58:
99:98:80:d6:1f:c4:32:01:6b:1c:cb:eb:f7:c1:e5:
41:93:9f:c9:49:c7:f6:7d:51:d1:72:b8:77:21:0b:
d8:32:84:ca:cf:79:15:23:43:ef:f7:b7:73:e9:97:
be:87:90:67:2c:9a:81:45:bd:44:dd:7d:c9:26:62:
d8:96:1d:0c:a5:7d:7b:74:c6:ce:14:6c:bf:26:d7:
52:72:58:1f:91:9f:6f:2d:54:2f:de:ea:b7:65:01:
a1:e6:5d:68:61:28:04:0a:52:36:11:70:f5:a0:56:
e0:3a:4e:32:44:b7:91:04:bd:b2:14:c9:7c:7d:e7:
0a:ef:8a:fe:6c:af:cb:ea:67:cb:2f:4b:98:69:89:
5d:28:51:31:f8:51:e0:18:32:85:f1:bc:5a:b8:96:
2c:05:0b:69:02:85:64:ff:36:4a:44:95:5c:53:97:
9c:b0:6f:86:37:15:4f:50:a7:0d:b7:0e:1e:a8:0f:
d3:93:54:a2:ba:d5:c6:db:0f:ca:fd:e5:3c:b0:df:
03:c8:a0:9f:a9:66:0c:b1:9b:ab:bd:64:8f:84:fc:
41:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B3:DD:CE:55:30:72:00:10:A9:9E:14:F2:52:B9:74:30:8A:B7:14
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD97C/C43845CC2D9411ECA2AA6345D8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD97C/C43845CC2D9411ECA2AA6345D8A014CE/sbPdzlUwcgAQqZ4U8lK5dDCKtxQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328463
Signature Algorithm: sha256WithRSAEncryption
3b:4b:08:30:68:a7:da:d2:47:56:c7:b8:93:df:c2:b8:78:57:
d5:c5:de:c4:86:93:27:a1:86:98:e8:bc:75:56:77:54:7b:da:
e8:41:b3:50:96:a5:60:99:8f:92:13:d3:35:15:f9:ce:77:95:
94:4b:9e:3c:6c:c0:3b:7c:55:2a:e0:03:da:a5:5a:9a:37:7d:
9d:31:81:b7:c0:4e:0f:a3:e6:82:6f:2b:0f:76:1a:fa:33:77:
d5:2f:43:69:35:dd:fd:0a:a4:87:df:1b:4f:cf:9b:ec:63:24:
78:21:db:6c:02:f8:35:83:28:cc:3a:ee:99:81:ff:c6:23:b0:
31:69:4a:9b:bd:fb:41:25:3b:fc:a7:e5:20:42:75:03:21:b9:
65:cc:00:88:93:9b:1c:f1:2b:a8:9c:29:73:89:2e:a8:63:65:
83:01:36:bc:d2:6b:a9:92:94:82:7f:6a:8d:20:e7:b8:95:11:
db:72:ac:f2:72:db:a2:ba:63:d1:63:22:63:70:76:20:c8:1e:
a0:76:c1:ec:08:75:39:09:1d:aa:65:8a:25:ae:7b:e5:84:6c:
dd:8a:8b:8f:f7:3b:5c:76:14:59:8b:50:88:df:46:7d:1d:c2:
14:9a:55:e4:7b:e3:94:ab:d0:fe:f0:00:2c:ba:7b:e2:c8:2d:
7b:b6:cb:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:49:28 2025 by rpki-client