Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/bynJvMAklSDlBwZp-vZmUm98jzA.cer
File: bynJvMAklSDlBwZp-vZmUm98jzA.cer (raw, json)
Hash identifier: ikkS/ZM+jg2Wfqd8pmrhX/sC4BJhR/M0ONoBX5eZ3qM=
Subject key identifier: 6F:29:C9:BC:C0:24:95:20:E5:07:06:69:FA:F6:66:52:6F:7C:8F:30
Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Certificate serial: 0F22
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36D289C/12FAB962A87511E99285C745F8AEA228/bynJvMAklSDlBwZp-vZmUm98jzA.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36D289C/12FAB962A87511E99285C745F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:54:02 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 80.95.0.0/21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3874 (0xf22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=RIPETOAFRINIC
Validity
Not Before: Jan 1 00:54:02 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36D289CRI
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:dc:1d:30:2e:77:87:ef:43:66:61:16:ee:a3:
f2:69:ab:7a:1c:c1:4c:aa:73:19:a5:b5:de:cb:23:
04:95:cf:19:4f:18:f7:b0:6b:6c:8c:14:c1:9e:b0:
24:eb:c0:02:98:25:29:21:7d:d0:26:5e:3d:02:7c:
c8:61:50:67:c3:6a:47:97:4e:14:aa:c8:56:78:20:
9e:74:29:1a:d7:60:ca:07:2d:66:c8:28:b2:f5:13:
94:f9:db:c8:55:ea:da:2c:f7:6c:af:33:e1:65:a7:
b2:50:82:9a:0c:66:d3:29:29:c7:8f:df:f5:e8:bc:
fb:86:b7:e2:76:a0:39:1a:b2:ba:19:cd:ca:e5:e2:
47:ea:b1:6f:3c:22:f1:ae:13:4d:de:62:36:59:80:
0d:a6:60:b5:da:76:8e:35:13:ff:57:39:ef:1b:ad:
df:37:0a:0e:e9:bb:77:f9:17:46:f4:11:d8:06:53:
1c:f8:f1:c8:78:49:cb:c6:fd:7a:8d:32:6b:92:8b:
3a:50:0a:0f:63:e4:17:e1:f3:7c:06:7a:7a:ba:6e:
da:9c:3a:4b:e2:94:f7:00:17:7c:c9:e7:e4:71:7c:
51:bf:f9:f0:56:41:26:39:19:03:0e:4f:d8:e6:32:
54:3a:70:22:9b:5a:77:6e:4e:ce:d2:c2:7d:d8:68:
c6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:29:C9:BC:C0:24:95:20:E5:07:06:69:FA:F6:66:52:6F:7C:8F:30
X509v3 Authority Key Identifier:
keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D289C/12FAB962A87511E99285C745F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D289C/12FAB962A87511E99285C745F8AEA228/bynJvMAklSDlBwZp-vZmUm98jzA.mft
sbgp-ipAddrBlock: critical
IPv4:
80.95.0.0/21
Signature Algorithm: sha256WithRSAEncryption
36:59:c6:af:52:91:b9:47:e6:77:e1:87:93:11:74:e7:33:28:
37:15:c1:14:ce:b4:e1:94:e8:fb:d6:40:c8:b0:8e:aa:01:a2:
58:a8:33:e1:31:84:f4:ec:24:06:43:f2:d8:3b:f6:a9:07:b4:
32:45:61:03:57:db:19:51:96:2c:be:7c:43:c1:86:40:03:ee:
f5:35:cd:d4:6d:63:92:75:b1:5d:8d:d3:50:a6:e1:b3:78:b9:
8b:c2:f8:24:27:14:a5:4c:6c:2d:42:b2:93:6d:4b:66:2a:7a:
06:7d:ac:76:6f:28:50:4a:51:0b:30:62:72:71:79:85:43:c0:
28:a1:41:ff:fb:27:d1:f9:d1:c4:9b:3a:8d:2c:c3:f6:94:81:
ee:f1:3a:23:fb:4e:04:fa:6d:1d:b9:1c:fd:e9:81:01:85:cb:
66:f0:2b:b8:d4:f8:65:46:0a:a9:4b:56:91:61:bf:9d:36:cc:
93:fd:04:ab:85:0b:fb:44:4e:ce:5c:21:bd:eb:17:27:6d:61:
51:2d:6d:fc:c1:a4:0b:96:46:9f:07:5a:62:34:65:59:67:1b:
75:4a:6e:53:6b:59:e8:cf:b3:33:a2:b5:80:ce:e9:6b:88:e8:
d5:b4:10:c6:d8:62:1e:8a:f3:68:4b:02:7c:1d:81:c7:04:2c:
1c:bb:cb:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:18:03 2025 by rpki-client