Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/aIyQ9SPX7PkOt9yYG3Bx44NJMVI.cer
File: aIyQ9SPX7PkOt9yYG3Bx44NJMVI.cer (raw, json)
Hash identifier: Avz54Xz/7FZ4DeXsBDn2gLeqFfLG+l2nwb0XOsJN0Qo=
Subject key identifier: 68:8C:90:F5:23:D7:EC:F9:0E:B7:DC:98:1B:70:71:E3:83:49:31:52
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 34CB
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F361B835/9F84D4AC24C611F099A06586DAE4EC9C/aIyQ9SPX7PkOt9yYG3Bx44NJMVI.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F361B835/9F84D4AC24C611F099A06586DAE4EC9C/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Tue 29 Apr 2025 06:53:27 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329021
IP: 102.216.116.0/23
IP: 2c0f:5340::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 06 May 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13515 (0x34cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Apr 29 06:53:27 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F361B835AF, serialNumber=688C90F523D7ECF90EB7DC981B7071E383493152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9e:5a:cf:32:10:76:ac:fa:12:22:ed:2b:70:
f7:21:54:33:45:44:0b:3c:ec:a4:95:29:df:82:a2:
79:c9:ca:89:08:24:db:ce:36:49:3a:7e:97:e6:60:
a5:7f:cc:88:3d:b6:60:b1:5f:87:46:aa:83:d7:31:
fe:c3:b4:f0:3c:15:c0:c2:1e:5b:43:6e:b7:fd:db:
64:74:d5:9a:9a:c7:03:6b:91:23:8c:52:ad:1a:10:
6e:c6:a8:3e:eb:c2:5b:95:97:38:99:7b:05:dc:24:
2a:ad:75:d1:fd:da:8b:10:15:5e:3f:48:7c:47:41:
52:55:66:2b:85:d5:55:52:88:87:8c:bc:05:8a:78:
c2:1f:0d:e3:80:00:bd:a7:3e:25:aa:db:45:28:e4:
43:36:38:1c:4e:8f:42:98:d8:e8:1e:3a:77:a1:bc:
e8:a9:11:da:55:32:e9:d6:c6:de:68:74:ae:ae:09:
55:8a:09:08:2f:5f:14:ea:d8:b2:98:c8:fa:8d:de:
01:42:c9:6c:ca:7c:e2:c3:ce:12:17:f4:d6:1f:fa:
e3:33:1f:73:93:e8:36:7e:1c:b0:3b:3f:e1:35:30:
81:7a:03:d4:57:57:65:31:e2:71:19:6e:1f:19:d6:
83:41:1d:42:7a:84:7f:95:be:b3:f4:e4:ba:97:bf:
4e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8C:90:F5:23:D7:EC:F9:0E:B7:DC:98:1B:70:71:E3:83:49:31:52
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F361B835/9F84D4AC24C611F099A06586DAE4EC9C/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F361B835/9F84D4AC24C611F099A06586DAE4EC9C/aIyQ9SPX7PkOt9yYG3Bx44NJMVI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329021
sbgp-ipAddrBlock: critical
IPv4:
102.216.116.0/23
IPv6:
2c0f:5340::/32
Signature Algorithm: sha256WithRSAEncryption
47:9e:6a:c2:4a:e8:98:ae:fa:63:18:e2:b0:2d:ab:1c:dc:aa:
14:70:58:68:16:99:d4:8d:8c:71:73:4d:6a:44:ac:a1:e5:b6:
05:87:76:0c:6b:a9:6b:cf:a1:61:b9:69:83:2d:0a:63:11:ae:
1c:f9:e9:db:d6:2f:60:eb:c4:81:8f:10:c2:eb:78:ae:ee:86:
bb:3c:24:af:26:99:d2:93:c4:f6:4d:b7:7c:ff:2f:b5:66:9d:
e7:3d:95:b2:21:c3:45:8d:e6:17:2f:ba:42:54:6b:12:f3:0b:
26:50:2e:e2:c8:ad:f7:ef:fc:05:9b:52:4f:c8:e9:a5:e6:c3:
ac:8c:0d:f0:1f:dd:e4:0a:c0:a8:a4:bc:2e:fd:43:ed:c0:f5:
6a:ff:18:7e:3c:3f:0e:5e:eb:4b:df:c3:25:68:d4:7d:ac:3e:
e5:a1:ed:df:37:3a:0b:4c:8b:f9:7d:d1:36:e1:16:ec:69:3f:
c2:6b:30:1f:31:85:29:0e:16:cc:c0:4a:7b:ad:c0:77:20:72:
2a:13:a5:83:3c:0b:c6:2b:d5:5b:c9:42:43:c8:fc:3e:92:6a:
6f:53:43:38:a0:bf:06:6e:08:85:a1:a3:e4:35:12:72:c5:d3:
9d:5c:3a:cd:fa:94:34:70:4e:bb:78:2a:cd:45:b0:81:dc:f8:
34:97:a7:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 22:28:30 2025 by rpki-client