Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/yQJA_HUSr6EDEZhw4oNL0tTCOcQ.cer
File: yQJA_HUSr6EDEZhw4oNL0tTCOcQ.cer (raw, json)
Hash identifier: aq9I0mNWxSHizrnSeT6JMoSrPKgB+AskMlUlNx7XfrE=
Subject key identifier: C9:02:40:FC:75:12:AF:A1:03:11:98:70:E2:83:4B:D2:D4:C2:39:C4
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 33B6
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36FB3ED/9024FED24EC311ED888A1488F1222468/yQJA_HUSr6EDEZhw4oNL0tTCOcQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36FB3ED/9024FED24EC311ED888A1488F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 06:23:16 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 36965
IP: 41.73.160.0/19
IP: 41.221.48.0/20
IP: 2001:43a0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13238 (0x33b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 06:23:16 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36FB3EDAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:98:eb:24:1d:1b:21:64:3c:4c:71:78:6c:2d:
47:e8:97:c9:98:04:b9:dd:6a:ed:eb:93:4d:9f:02:
38:bb:df:f2:9b:a0:9e:26:a4:6f:4c:cf:8c:0c:73:
19:dd:5c:26:3c:9a:b3:66:9b:df:07:34:2c:65:70:
01:f0:85:81:45:c5:66:fd:c7:34:4e:f3:f9:70:9d:
02:ab:a2:1a:a5:38:5e:8b:d1:b1:0a:53:85:7d:ea:
5e:fe:01:13:2a:f0:d2:86:a5:59:53:98:5c:02:a6:
46:f9:0e:71:04:71:76:c3:91:52:17:fa:8d:64:1c:
d7:fa:05:01:98:6f:2a:88:f4:a9:9b:15:89:1b:7f:
b5:bb:46:42:ef:98:fb:ab:9a:83:e4:12:32:d7:6d:
6e:44:91:7f:a9:27:c5:d3:70:8a:9c:b8:f9:e7:7b:
71:f1:db:c6:ea:84:0e:ed:7c:be:11:83:a1:8d:b9:
da:91:66:53:d0:a0:f1:09:dd:fb:6e:68:e5:6d:13:
62:c4:ce:6c:c0:3c:92:14:9f:42:61:8b:12:87:f1:
72:5f:22:1a:80:b6:2e:f0:2e:bd:dc:08:54:8b:f6:
6f:d8:37:e4:d8:ca:11:17:d9:06:32:0b:9f:23:20:
b8:9e:5a:a8:67:f9:6d:c4:d4:91:03:66:5a:a6:54:
3c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:02:40:FC:75:12:AF:A1:03:11:98:70:E2:83:4B:D2:D4:C2:39:C4
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FB3ED/9024FED24EC311ED888A1488F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FB3ED/9024FED24EC311ED888A1488F1222468/yQJA_HUSr6EDEZhw4oNL0tTCOcQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
36965
sbgp-ipAddrBlock: critical
IPv4:
41.73.160.0/19
41.221.48.0/20
IPv6:
2001:43a0::/32
Signature Algorithm: sha256WithRSAEncryption
42:81:94:60:40:3d:41:e6:d6:9f:f4:e5:95:53:bf:c3:c0:04:
9a:aa:6e:94:a7:6f:18:e9:93:23:4a:05:6e:e1:36:3d:61:4a:
c0:05:26:21:7d:73:16:4e:0a:d9:c2:ba:6d:d2:51:38:36:a3:
03:4c:69:d8:69:cc:7a:6c:4e:95:52:55:6c:3e:22:36:f5:f6:
e8:e3:ab:55:0d:29:44:c0:ae:6d:5f:28:8f:dc:d9:92:0c:10:
e6:9f:f5:81:13:08:99:a8:92:ec:48:bf:1a:96:51:21:6b:8a:
96:34:c4:a5:02:0e:d2:d7:71:31:da:8d:5e:56:d6:0d:64:cc:
34:cf:02:32:75:57:74:c9:96:62:74:e7:34:f2:87:91:e0:f0:
62:ae:58:cd:c1:19:29:aa:66:81:3a:7e:ad:48:83:1f:5b:c4:
93:f8:fb:62:75:9c:89:9a:f4:77:25:51:3f:b2:29:a3:37:76:
a9:55:6a:23:b9:d3:3e:1c:0a:df:c2:98:32:2c:06:d6:7a:09:
81:7c:01:68:28:8a:f7:36:ec:55:67:e0:0a:f0:05:f2:94:f7:
10:99:9c:f6:92:ef:39:33:e8:7b:72:ef:03:56:ff:1c:13:db:
21:61:e9:69:b8:bb:92:bc:8b:f1:cb:49:b1:84:d4:33:31:b8:
25:bb:55:3e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:53:19 2025 by rpki-client