Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
File: x4zcO11LE2dctIrTtjvgHsWoB_g.cer (raw, json)
Hash identifier: 1TxCw4IC8JDsea+DJvSFQvDkrYeR6rlOucFPSPhiPUM=
Subject key identifier: C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 40B2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Fri 24 Apr 2026 08:37:18 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 328977
IP: 102.203.64.0/21
IP: 102.206.164.0 -- 102.206.175.255
IP: 102.207.160.0/20
IP: 102.208.0.0/22
IP: 102.208.60.0/22
IP: 102.208.168.0/22
IP: 102.210.12.0/22
IP: 102.217.156.0/22
IP: 2c0f:6300::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16562 (0x40b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Apr 24 08:37:18 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=F36FE19EAF, serialNumber=C78CDC3B5D4B13675CB48AD3B63BE01EC5A807F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:38:66:47:1b:f2:0a:a8:1d:0c:9a:96:d6:37:
3f:91:ac:69:a3:5e:d5:56:c2:b1:cf:98:72:49:58:
80:bf:79:50:da:07:48:1d:38:9e:f3:01:69:25:c3:
e5:3e:65:eb:7b:d0:8b:3d:73:0f:3c:b1:eb:16:f9:
eb:c0:c0:2a:23:3b:35:0e:7c:97:d5:78:87:35:fe:
cf:ed:9a:b7:4d:82:de:39:d3:20:90:36:e2:f9:30:
49:a3:de:fe:eb:30:94:8b:aa:05:82:fc:13:0c:25:
9c:52:a9:3a:c3:ba:f5:91:f9:05:07:0b:56:df:1b:
b3:ba:1c:5e:0d:35:a5:f2:6b:ae:35:c2:ad:8c:35:
06:98:e6:66:11:54:8e:da:bd:85:b6:bd:a3:5a:18:
77:f2:34:b2:8e:ee:45:b6:aa:e2:59:47:6c:18:be:
4c:82:d8:61:a9:a6:68:cb:d0:51:d5:0c:2d:47:fb:
7e:36:16:29:a8:d1:14:7b:8f:17:e9:96:b1:05:d2:
fa:31:9c:0b:7a:e5:f4:1b:fb:4b:a5:35:8a:0c:82:
c8:8e:84:f6:b3:64:ab:f1:fb:87:bd:97:b9:af:1a:
b8:e3:39:26:ec:c4:e4:88:fd:e6:ae:0f:90:05:cd:
86:3f:77:63:78:2f:74:00:03:1a:a2:c7:28:70:ff:
40:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328977
sbgp-ipAddrBlock: critical
IPv4:
102.203.64.0/21
102.206.164.0-102.206.175.255
102.207.160.0/20
102.208.0.0/22
102.208.60.0/22
102.208.168.0/22
102.210.12.0/22
102.217.156.0/22
IPv6:
2c0f:6300::/32
Signature Algorithm: sha256WithRSAEncryption
bb:db:4b:65:ba:68:6b:2f:4c:cc:88:af:7c:9b:3b:e9:05:ff:
fe:af:f0:e3:c1:1a:4b:df:95:0c:16:ad:a3:c4:40:5f:b1:54:
c9:c9:1d:54:9e:a3:7c:07:d6:18:ce:7d:b7:f7:ba:5d:11:52:
f7:2f:01:9a:6c:de:04:0f:73:56:51:2f:83:ea:5b:67:81:ff:
e4:a2:d5:e9:92:2b:38:85:ee:2a:ea:de:44:ea:b9:64:ed:61:
20:7e:71:64:fd:1b:9c:78:3a:32:54:29:6a:9e:66:79:f5:c8:
91:21:ed:e7:ce:83:31:5a:e5:4e:2f:f5:4e:72:a1:ba:20:33:
56:0f:e7:08:58:11:c0:71:dc:4d:75:f5:29:a6:c7:61:72:39:
13:07:0f:ab:d3:8a:e3:b6:e8:b8:ab:ba:ae:16:01:ab:0e:c8:
78:f2:a0:c5:d9:fd:92:2e:07:59:68:50:42:1b:57:4e:26:9f:
5e:0b:9e:fe:a1:27:e1:26:1a:ed:96:b2:74:a2:8b:7b:f0:9f:
06:c2:eb:0f:5e:81:83:2c:51:4b:9e:4e:e9:35:23:c8:60:be:
46:84:f5:02:e1:2f:6f:9f:5e:7f:3a:9c:b5:fd:76:68:dc:36:
0e:6b:76:68:fe:9e:38:c6:8d:b4:b1:77:b5:26:9c:15:fe:fe:
bb:07:a1:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 7 20:41:49 2026 by rpki-client