Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.cer
File: Gy5x2gSuCRA5RRF_kHbH-OGZJDw.cer (raw, json)
Hash identifier: KuXvhHtI17wVIHSRbm18kATWcj5Plwf3hE+MhhqFf04=
Subject key identifier: 1B:2E:71:DA:04:AE:09:10:39:45:11:7F:90:76:C7:F8:E1:99:24:3C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 34C6
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Tue 29 Apr 2025 00:05:38 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328583
IP: 102.36.140.0/22
IP: 102.206.220.0/22
IP: 102.213.148.0/22
IP: 2c0f:6140::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13510 (0x34c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Apr 29 00:05:38 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36AC9F1AF, serialNumber=1B2E71DA04AE09103945117F9076C7F8E199243C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:aa:6f:fc:97:18:e1:13:ef:37:9e:75:36:1b:
65:90:f1:5f:99:6e:c1:60:5b:5a:44:86:24:dc:15:
3d:49:5d:ea:e6:f5:02:34:31:d2:0e:c5:06:4d:4a:
25:f7:5c:2b:7a:b1:84:db:3d:74:3b:36:8b:7a:7c:
ed:68:4c:15:58:70:da:07:88:b7:9e:a9:c2:d8:a4:
42:e5:11:16:ac:d9:85:65:20:0d:86:8d:4f:be:de:
81:3b:25:10:d6:6e:f3:d8:01:ec:90:2c:b9:94:62:
3d:00:59:92:15:32:5a:0f:2f:b8:e4:ba:d1:bf:69:
fc:71:76:f0:62:44:9c:3d:42:d9:6b:74:d5:66:c6:
72:d2:d5:b4:cf:39:23:7b:d8:b1:18:3d:be:3b:08:
f6:0b:f6:db:a7:7b:2c:c6:21:f1:d4:f2:b7:8a:74:
f9:d5:a0:fd:f2:19:03:7f:79:a7:eb:41:0a:be:f9:
75:1c:c3:b8:46:03:42:89:b4:18:bb:63:65:5b:6b:
6b:0d:b9:13:83:27:8a:d4:b3:ae:4f:b3:70:43:9e:
33:95:51:38:12:a4:dd:eb:ec:a0:de:a1:8a:7e:ec:
cb:97:3b:a2:1d:da:95:ff:5b:b6:b2:24:11:d9:00:
7f:bc:ba:ed:63:74:fa:01:6e:e7:e8:e6:f6:57:67:
fc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2E:71:DA:04:AE:09:10:39:45:11:7F:90:76:C7:F8:E1:99:24:3C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328583
sbgp-ipAddrBlock: critical
IPv4:
102.36.140.0/22
102.206.220.0/22
102.213.148.0/22
IPv6:
2c0f:6140::/32
Signature Algorithm: sha256WithRSAEncryption
34:b7:9e:a5:77:e3:77:3c:b8:92:fd:77:e1:b1:b3:57:78:bf:
a7:91:ec:45:a4:e9:7d:0d:66:22:85:98:a4:96:46:b7:50:9f:
6e:ae:d8:50:60:00:d2:84:90:d2:61:11:cc:14:3c:5a:ba:da:
4d:74:a1:4d:c6:b9:6f:e3:89:fc:ba:40:52:17:df:dc:a0:99:
49:ad:30:e5:fa:bc:1c:ad:b4:88:52:8c:3c:34:a2:cb:6a:1e:
9d:0a:2d:f0:85:85:6f:6b:3f:96:cc:ac:63:e3:8b:5f:4f:f6:
07:89:f1:1e:d3:78:64:c6:85:c7:8a:ec:58:0a:b2:39:9a:5d:
96:b4:97:11:b1:1e:59:d9:44:65:2c:27:46:18:84:2d:d1:8f:
35:6d:c7:18:d4:4d:2e:5c:77:20:cd:1c:1b:80:21:d9:3f:90:
9c:3b:bb:dd:9f:6f:7e:b1:ad:41:a9:2e:30:1e:84:3f:95:24:
7a:18:e8:ad:aa:71:1a:87:85:b7:e4:4f:6a:b2:f0:18:ca:70:
61:88:3b:0b:7c:e7:c5:7f:d4:37:07:c2:8f:b7:7d:a1:63:df:
d8:6a:bf:65:d8:96:bf:57:18:30:21:be:6a:0a:ba:51:e3:8b:
8e:83:67:50:92:2c:52:8e:a1:e7:d6:63:a4:23:b9:68:e5:8d:
bb:d9:da:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 20:07:34 2025 by rpki-client