Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/xel4rPl9qfSdxLKEr_AldPEDGH8.cer
File: xel4rPl9qfSdxLKEr_AldPEDGH8.cer (raw, json)
Hash identifier: kyZHsedupgLz8QIAGhfjCwULt2k4ubURUy5QJytbYWE=
Subject key identifier: C5:E9:78:AC:F9:7D:A9:F4:9D:C4:B2:84:AF:F0:25:74:F1:03:18:7F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 334D
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/xel4rPl9qfSdxLKEr_AldPEDGH8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:57:58 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.222.200.0/22
IP: 2c0f:e890::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13133 (0x334d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:57:58 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E6AB8AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:16:cf:8e:c1:75:16:12:74:37:7f:62:59:68:
13:95:ae:ca:96:f8:8c:aa:67:cf:74:83:01:b2:bc:
41:bf:de:cc:36:c2:db:5f:78:2b:f3:85:1d:43:3f:
73:14:60:c4:22:6f:df:98:99:22:18:90:a7:a5:5b:
b6:32:b0:3b:8d:36:85:e5:2c:ce:c8:e5:4b:ce:f7:
eb:e5:cd:82:47:b1:a9:0e:37:a8:49:63:96:fc:87:
4f:f0:49:c5:3e:10:07:ce:4d:89:d6:8f:7a:2e:af:
60:2e:3f:e6:05:9b:3c:15:d7:cf:32:55:4f:5a:ab:
07:68:5d:71:d1:fa:62:b2:cf:53:bb:c2:26:33:4f:
5b:12:d9:d8:c2:aa:e2:70:f3:db:c3:56:95:5b:96:
8e:b3:ef:a8:11:e7:21:e8:09:24:60:f3:09:c6:d3:
17:25:a2:e7:fb:a8:7c:27:a6:68:b8:bb:93:c2:92:
8c:a0:b8:ab:29:45:41:be:f6:c3:f8:cd:da:a0:4a:
e0:49:be:77:78:f7:12:1e:fa:21:bd:e2:1f:8a:69:
e1:67:fb:61:ae:0d:c8:24:c9:a5:eb:a6:da:26:86:
51:21:39:ed:7e:fb:9b:af:8d:e7:42:5e:d6:21:ee:
d5:72:6b:6b:2f:71:4f:d9:0b:a5:fc:20:58:75:94:
49:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E9:78:AC:F9:7D:A9:F4:9D:C4:B2:84:AF:F0:25:74:F1:03:18:7F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/xel4rPl9qfSdxLKEr_AldPEDGH8.mft
sbgp-ipAddrBlock: critical
IPv4:
102.222.200.0/22
IPv6:
2c0f:e890::/32
Signature Algorithm: sha256WithRSAEncryption
90:5a:13:fa:fa:87:c9:76:ae:97:71:77:f3:70:eb:e3:a8:74:
96:09:eb:fd:22:b1:43:d0:05:29:e2:d5:b5:bb:03:51:b3:be:
bb:d2:44:c8:da:4b:53:79:e1:84:6d:78:b3:88:1a:96:fc:91:
e7:ba:6a:b7:6f:bb:35:df:33:15:1e:5b:7b:c2:e9:48:40:f8:
a5:20:9c:e6:87:30:bd:e6:5a:3c:20:e1:37:e7:82:a2:a8:69:
d8:0f:62:c6:63:06:78:85:61:28:c5:d1:d7:f1:af:80:bc:0c:
e8:8b:d8:f1:37:56:d5:33:78:ca:c9:23:e3:af:87:ac:68:a3:
03:2d:33:71:89:0c:73:f6:81:be:8e:49:15:88:2c:bd:70:cd:
6e:f5:3e:95:66:b6:fc:69:7d:bb:5f:07:d0:18:1f:f2:68:bd:
6f:7f:12:cb:0f:d6:d7:34:e9:f0:59:8a:34:d4:2c:2d:b1:91:
f4:21:02:cd:da:f9:8b:3c:71:6e:e2:4f:b3:d8:54:7d:d2:ef:
8b:9a:cb:f1:a1:db:83:b4:46:b5:19:c4:60:eb:49:9c:2d:d6:
d5:12:77:65:3c:9e:77:1b:e9:0d:ca:1a:c5:50:d5:c1:df:db:
51:99:0b:63:dc:91:b9:a4:7c:ce:e3:ad:fa:77:82:a7:86:a3:
60:68:1b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:48:03 2025 by rpki-client