Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/KSWEoez-KvMJMi1y5i2NXGpe968.cer
File: KSWEoez-KvMJMi1y5i2NXGpe968.cer (raw, json)
Hash identifier: wVwz4HDqIsKkKEoi97jCIy9+pO1GsI7gfC3u3yd2M0I=
Subject key identifier: 29:25:84:A1:EC:FE:2A:F3:09:32:2D:72:E6:2D:8D:5C:6A:5E:F7:AF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 34E8
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/KSWEoez-KvMJMi1y5i2NXGpe968.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Fri 09 May 2025 00:01:35 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329206
IP: 102.207.60.0/22
IP: 102.209.20.0/22
IP: 102.213.4.0/22
IP: 2c0f:7580::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 15 May 2025 07:24:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13544 (0x34e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: May 9 00:01:35 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F364791EAF, serialNumber=292584A1ECFE2AF309322D72E62D8D5C6A5EF7AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a0:47:bb:ff:b3:91:b7:e6:49:81:2e:e1:35:
34:71:1c:80:9f:f8:0d:79:49:8b:59:6b:75:4b:6d:
bd:e9:e3:bb:f8:f0:49:4b:4b:cc:02:91:4d:05:06:
bb:43:e5:5e:14:ca:98:39:13:c3:74:0e:49:15:c6:
e0:58:7f:50:48:0d:66:da:58:85:11:a0:f4:0d:86:
9e:2b:28:e3:d0:cd:b9:91:b4:6c:a0:fd:47:f9:21:
39:d1:7e:16:89:00:b0:6a:ad:2c:81:bf:12:78:c0:
e3:08:e1:aa:be:ef:b4:53:c2:e2:ee:39:e4:e4:34:
c6:67:06:ae:43:28:a5:ac:fd:a4:b2:06:80:88:91:
24:bf:72:8d:ac:8c:1e:9f:4d:4f:e3:04:88:c8:69:
18:e0:03:45:a3:c0:56:0b:27:58:0b:7f:26:51:44:
e4:91:2f:62:a7:c7:23:c7:b7:b4:6a:03:50:e6:03:
e2:14:6b:ad:97:19:78:af:16:36:d2:97:5d:58:48:
38:43:e6:74:55:58:28:a9:ed:31:f4:7d:b8:e7:9e:
a3:29:de:f8:1e:8f:7e:c9:a0:dd:f5:07:fa:12:2d:
46:ab:8a:01:75:0b:6e:72:61:6f:34:42:fa:85:1b:
b3:eb:24:6c:b9:32:85:92:87:af:1c:82:4f:59:48:
ff:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:25:84:A1:EC:FE:2A:F3:09:32:2D:72:E6:2D:8D:5C:6A:5E:F7:AF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/KSWEoez-KvMJMi1y5i2NXGpe968.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329206
sbgp-ipAddrBlock: critical
IPv4:
102.207.60.0/22
102.209.20.0/22
102.213.4.0/22
IPv6:
2c0f:7580::/32
Signature Algorithm: sha256WithRSAEncryption
24:42:f1:79:d2:89:e9:7a:de:33:6a:03:ef:1b:3c:ff:e7:c5:
c3:ad:37:ad:e5:a4:d8:5a:d5:34:f8:69:2d:55:ce:c7:58:88:
72:04:7b:61:57:33:58:20:0b:4e:6f:15:46:34:e9:67:8e:ff:
36:97:13:c4:e2:32:01:90:b0:4e:36:77:90:52:c0:dd:fb:23:
a9:ae:23:f2:f1:d6:4f:66:6d:84:f8:dd:2b:8c:f0:8e:99:87:
22:f7:f0:8c:9e:cd:90:a7:0b:82:82:3b:45:00:67:f8:37:14:
40:80:09:5f:f0:13:35:47:6b:59:14:25:42:60:0e:55:d5:e4:
6f:b1:2e:75:02:68:e9:ee:71:89:5b:09:1d:11:8f:51:77:42:
ff:4e:e2:ee:cb:91:51:07:58:4a:17:28:db:ec:a6:31:6b:28:
0d:e4:cb:90:34:ca:2c:5e:5c:8c:1d:e8:b7:0a:0a:60:ef:22:
31:43:ce:2f:56:db:f6:0e:2b:7e:be:cd:47:e5:5c:24:80:eb:
df:b9:7b:c8:ac:c0:37:2f:ac:c8:bb:39:ea:f3:16:f9:4a:c8:
69:23:5a:34:79:3c:60:fb:24:ff:7d:ff:a3:d9:bd:23:21:06:
9f:2b:de:ab:aa:cd:8a:9a:38:63:35:03:d0:ee:2d:90:3d:1d:
7f:c3:93:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 19:05:36 2025 by rpki-client