Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/8ZI823Vz-wlzku4GArwdsbV78OM.cer
File: 8ZI823Vz-wlzku4GArwdsbV78OM.cer (raw, json)
Hash identifier: uCddsWdTHuhu5zutaMvClmXkP3yNhSdEe0lg+ZnGJf8=
Subject key identifier: F1:92:3C:DB:75:73:FB:09:73:92:EE:06:02:BC:1D:B1:B5:7B:F0:E3
Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Certificate serial: 0F2E
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/B1CAE0D4379711EE8ED7D9314AD9E6FC/8ZI823Vz-wlzku4GArwdsbV78OM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/B1CAE0D4379711EE8ED7D9314AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:56:16 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 213.136.96.0/19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 13:35:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3886 (0xf2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=RIPETOAFRINIC
Validity
Not Before: Jan 1 00:56:16 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36F731FRI
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:91:c8:c8:34:4b:85:44:24:52:a1:1b:e8:c3:
24:06:0a:0d:06:de:93:fb:59:88:de:7c:e9:9f:bc:
75:47:b8:2b:70:c1:73:16:6f:fa:c0:f1:e2:43:57:
17:52:83:e9:1e:83:55:6d:40:25:df:6a:c6:87:cc:
43:4e:b8:d8:61:f2:aa:6f:bf:c8:8b:ba:37:64:f5:
46:29:c9:5f:38:5e:28:f8:f0:b4:71:d0:63:09:33:
84:fe:43:cb:c5:d4:19:c5:4c:82:46:0c:4e:bb:83:
28:1c:c6:7e:5c:c3:fb:92:81:4d:fa:08:f7:11:c2:
f4:6f:7a:e1:86:b1:0a:b1:83:04:fc:42:d4:c3:7e:
db:e7:c0:9c:3c:26:17:f0:fc:f9:d0:08:32:60:6a:
0d:f3:15:2f:ac:94:6e:00:71:db:1a:f0:17:47:0e:
ec:10:5e:a3:c5:f3:a3:76:85:50:2a:c5:91:9c:01:
7c:86:03:04:18:87:ed:0e:da:6b:c3:02:89:fd:03:
64:78:73:20:a3:57:dc:dd:9d:0e:e0:b7:1d:48:b0:
1e:d5:1e:c8:1f:1d:7c:e1:4e:a5:0e:8f:91:66:fe:
cd:42:71:88:f6:8a:2e:1f:47:a7:3b:c0:e3:be:5d:
a9:cf:68:96:92:0b:32:b9:d8:d5:10:38:9b:1a:7a:
9d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:92:3C:DB:75:73:FB:09:73:92:EE:06:02:BC:1D:B1:B5:7B:F0:E3
X509v3 Authority Key Identifier:
keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/B1CAE0D4379711EE8ED7D9314AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/B1CAE0D4379711EE8ED7D9314AD9E6FC/8ZI823Vz-wlzku4GArwdsbV78OM.mft
sbgp-ipAddrBlock: critical
IPv4:
213.136.96.0/19
Signature Algorithm: sha256WithRSAEncryption
ae:5d:1b:94:8f:36:d0:e8:7b:28:e4:e8:5e:29:49:bb:b5:7b:
4d:04:44:eb:7b:e8:66:93:ac:02:aa:bf:21:47:b0:46:f5:8e:
94:75:24:02:b9:24:33:6c:e1:5a:23:3c:41:1f:58:4e:a5:ac:
ee:6d:79:fe:27:a5:c0:15:12:61:a5:58:b6:c4:63:e5:3f:59:
1c:4c:7c:42:e9:1a:5f:69:73:ca:e9:68:d7:59:a9:3c:0f:19:
66:ba:62:83:8e:fe:21:86:02:3b:e6:84:72:0d:6e:7c:c7:aa:
1b:ce:57:04:b9:22:92:04:63:d2:b0:a7:47:bd:54:14:6a:71:
f7:3a:f6:d0:8a:ef:af:c5:5c:fb:47:66:d0:53:4a:c3:15:47:
45:12:72:32:92:55:13:50:99:ad:f6:e3:33:14:ce:7e:26:46:
46:61:98:ec:c0:70:cb:11:cd:c1:d2:b9:cd:ad:0a:5c:1d:8c:
b6:11:e8:9d:26:52:ad:cf:e2:d4:54:02:98:42:dc:32:dc:46:
87:94:4c:ce:35:8b:2c:1c:97:02:92:65:73:ff:c5:a3:9c:1d:
cf:32:47:ed:0b:54:d6:cb:d9:ca:01:47:0b:66:2b:1d:75:70:
a2:2d:16:d6:f0:23:98:7a:56:6b:63:87:0c:66:b5:25:19:a5:
a8:b5:9c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:08:26 2025 by rpki-client