Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/zXRmXLHPyFlppqWrpHLD6irSVc4.cer
File: zXRmXLHPyFlppqWrpHLD6irSVc4.cer (raw, json)
Hash identifier: bkyRb4F1Hm8Lh/DRyCelni/+AO/dgWiA5kWRFRG5D3U=
Subject key identifier: CD:74:66:5C:B1:CF:C8:59:69:A6:A5:AB:A4:72:C3:EA:2A:D2:55:CE
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3167
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F369BFA8/FBBFE27EB22111EF8BDA705C762E951A/zXRmXLHPyFlppqWrpHLD6irSVc4.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F369BFA8/FBBFE27EB22111EF8BDA705C762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:11:36 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328777
IP: 102.221.92.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12647 (0x3167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:11:36 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F369BFA8AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:43:0c:9b:54:e4:f1:76:65:88:97:08:c4:30:
9c:6e:7b:5f:92:cb:a6:86:67:eb:94:a8:3d:fc:f8:
b8:7f:e1:50:8f:71:c2:2b:f0:81:14:65:bd:e8:01:
af:66:88:36:25:4e:c7:f3:f6:1a:c5:cf:14:35:8d:
b2:8e:ac:74:49:7a:29:23:69:69:8a:c5:f6:ff:f8:
5d:fe:3c:97:29:ea:4f:d8:ce:1c:e3:11:d2:45:50:
45:13:7a:be:89:1c:42:bd:22:0c:73:0d:3e:10:0e:
2a:16:10:b9:d0:0e:c2:6c:47:af:86:e5:7c:04:32:
57:38:5e:a8:49:97:06:ac:8a:52:bb:d3:19:95:6a:
76:9c:5f:a6:f1:a9:b9:4a:9d:f5:b6:ba:d1:e6:76:
c6:54:12:ad:0a:26:5e:32:4f:c0:f1:39:60:8d:d9:
46:db:4c:b1:82:35:c5:b2:26:5b:ae:98:ec:ce:1c:
7d:bb:7f:a0:17:a4:fb:e1:99:fd:ad:81:7c:6b:69:
6e:1b:ff:90:aa:43:7d:e3:c4:09:66:5d:33:1b:d4:
90:ca:37:8c:f6:1e:25:f0:4f:6a:4e:b3:d2:d9:80:
ce:20:5b:c0:09:8f:6f:1b:7f:fe:a3:e8:2b:45:ce:
6c:a2:d9:77:fd:8a:55:8a:15:fb:ee:fd:73:b6:d3:
df:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:74:66:5C:B1:CF:C8:59:69:A6:A5:AB:A4:72:C3:EA:2A:D2:55:CE
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BFA8/FBBFE27EB22111EF8BDA705C762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BFA8/FBBFE27EB22111EF8BDA705C762E951A/zXRmXLHPyFlppqWrpHLD6irSVc4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328777
sbgp-ipAddrBlock: critical
IPv4:
102.221.92.0/22
Signature Algorithm: sha256WithRSAEncryption
06:13:5b:55:fb:06:bb:39:7f:55:e1:16:57:c0:cd:5e:74:95:
7c:2d:46:5c:a2:82:e3:f8:31:05:cc:97:af:44:a9:19:60:7b:
98:45:89:2d:0f:64:9d:2c:19:41:71:fb:3f:5d:df:2b:27:64:
75:ba:8b:ae:e5:f2:a7:41:c7:a3:f4:55:61:d4:f4:5f:52:54:
03:d0:27:9c:74:63:c4:a3:f9:36:25:2f:cc:df:fe:25:af:23:
f7:41:07:30:4e:5d:e3:64:2e:b2:e4:45:07:28:c8:5f:bd:2d:
dc:db:c6:4c:ec:f2:5d:9c:6b:0e:8e:2c:de:d5:c2:05:63:8c:
44:bd:2f:27:c2:8d:92:7c:58:9c:16:21:c3:a6:e2:4c:c0:67:
ac:87:14:73:ca:62:e7:ff:b8:6f:12:45:ba:26:b8:d2:ae:49:
a4:16:61:fb:34:f6:da:97:cb:25:02:91:13:61:9f:3a:7c:43:
ac:3a:de:b2:20:f1:ac:c1:71:d6:b5:f4:d4:9f:ca:88:78:02:
c4:16:83:f0:74:13:ed:2b:cf:8d:a7:8e:dd:ff:a4:ab:e6:c9:
29:be:26:b0:66:98:bf:52:eb:93:81:de:0d:79:05:e6:89:d5:
e4:b7:f9:9c:26:88:10:ca:40:c1:92:68:b2:8b:d3:6b:2f:3a:
45:cd:fd:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:15 2025 by rpki-client