Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/zXTtNlgzTKKBMtaW73DpDKP2Z8M.cer
File: zXTtNlgzTKKBMtaW73DpDKP2Z8M.cer (raw, json)
Hash identifier: v9Y7cHk3Ah7LbuprRmdRU/avrllm1N9mx0qHKywLk2c=
Subject key identifier: CD:74:ED:36:58:33:4C:A2:81:32:D6:96:EF:70:E9:0C:A3:F6:67:C3
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 32F1
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36D70D9/3A34B348C78511EC9432BE98F1222468/zXTtNlgzTKKBMtaW73DpDKP2Z8M.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36D70D9/3A34B348C78511EC9432BE98F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:36:33 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37150
IP: 102.129.96.0/19
IP: 196.40.176.0/20
IP: 196.46.176.0/21
IP: 2c0f:fdf0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 00:06:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13041 (0x32f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:36:33 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36D70D9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6a:70:56:e1:19:54:5d:67:7d:a2:61:2e:0a:
f9:23:5b:04:7b:11:f0:41:0a:60:c5:b6:32:5b:02:
61:23:bb:ba:75:e0:2c:d1:c9:e0:a9:3a:57:0e:b8:
35:8b:c0:23:a0:58:bf:8f:20:62:7f:95:ce:03:46:
4a:d8:d5:b7:f3:1d:ad:e1:c5:97:ec:84:51:47:ed:
3a:aa:9c:ad:02:76:09:ee:1b:45:81:08:a5:96:08:
56:cd:e5:8b:b2:f5:0c:3e:06:1c:41:d2:4e:82:94:
f7:d7:3c:c3:fd:19:35:0c:ad:97:b8:5b:22:61:de:
c8:6a:56:2b:ff:d9:4d:04:5d:ab:d8:96:37:67:09:
56:b6:af:06:40:ea:02:75:51:61:b6:20:3e:cf:d3:
74:ea:e6:de:4e:74:95:2f:dc:e3:5c:1e:77:3b:4d:
7c:72:6c:68:cb:08:50:54:64:eb:e4:fe:18:8c:f0:
fa:d6:08:a3:db:f6:77:55:f1:15:d0:b0:cb:2e:c1:
86:36:86:ed:8b:dd:c5:00:48:92:69:37:4b:0e:e4:
bb:1b:98:39:8c:a2:2e:e5:4a:a1:26:d9:6a:52:58:
db:56:90:4c:19:dd:15:c0:17:d7:c3:d0:2d:59:75:
2e:82:96:f2:68:b2:58:dc:76:8b:ea:c8:0d:a2:25:
5c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:74:ED:36:58:33:4C:A2:81:32:D6:96:EF:70:E9:0C:A3:F6:67:C3
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D70D9/3A34B348C78511EC9432BE98F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D70D9/3A34B348C78511EC9432BE98F1222468/zXTtNlgzTKKBMtaW73DpDKP2Z8M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37150
sbgp-ipAddrBlock: critical
IPv4:
102.129.96.0/19
196.40.176.0/20
196.46.176.0/21
IPv6:
2c0f:fdf0::/32
Signature Algorithm: sha256WithRSAEncryption
96:74:4b:76:e7:33:17:14:6f:ba:1c:bd:0f:ba:73:c8:5c:ab:
71:9a:e9:37:5b:c4:45:86:e2:91:f7:ba:6e:d7:be:5a:78:97:
b4:2f:11:15:ca:4e:70:88:7d:62:03:de:71:ea:6e:c9:14:4c:
7c:d6:cd:f9:05:4d:33:1d:1e:a9:f3:b8:82:a1:9e:59:c0:be:
63:e5:c1:ed:30:d7:1f:32:da:50:0a:a6:75:ff:d3:34:51:1a:
5b:2a:f7:30:e1:a9:86:4a:8e:7a:cd:6d:d4:d9:c8:5e:de:71:
41:1e:1a:16:cf:5f:44:2d:2a:3d:f6:5b:a6:ab:b9:2b:5f:b6:
bb:9b:95:9e:14:7f:dd:af:64:da:71:18:05:d7:4d:fc:d3:23:
c8:30:6e:f2:46:e7:72:f4:f0:f8:5d:19:f6:ff:01:8e:fb:76:
ee:d3:d4:8c:68:3d:d2:24:d2:00:f3:18:c7:c4:55:24:97:6e:
b3:17:69:50:c0:bf:0d:b1:53:d6:72:f9:80:47:cc:3a:55:85:
58:13:e7:34:54:25:77:91:0f:80:ff:c9:14:76:4a:0e:85:f0:
50:85:9d:e6:34:79:75:c4:1d:61:4e:1a:b8:c0:8b:e2:1e:43:
43:80:1e:a1:00:4c:e9:6b:3a:e9:6b:c0:58:fb:61:e1:8b:80:
87:56:9e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 00:57:08 2025 by rpki-client