Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/PQ4DaEavbVRHjAyBh8jXIjOqwco.cer
File: PQ4DaEavbVRHjAyBh8jXIjOqwco.cer (raw, json)
Hash identifier: ez9p+RzYNodXjhUlunFRnx70nLxpukvHVeElhD/tYb8=
Subject key identifier: 3D:0E:03:68:46:AF:6D:54:47:8C:0C:81:87:C8:D7:22:33:AA:C1:CA
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 36B2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F368312F/0BC79D2EB77611F0877ABAE9DAE4EC9C/PQ4DaEavbVRHjAyBh8jXIjOqwco.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F368312F/0BC79D2EB77611F0877ABAE9DAE4EC9C/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Sat 01 Nov 2025 22:57:25 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329636
IP: 102.204.123.0/24
IP: 2c0f:3ac0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14002 (0x36b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Nov 1 22:57:25 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F368312FAF, serialNumber=3D0E036846AF6D54478C0C8187C8D72233AAC1CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:05:ff:8a:26:2f:39:c8:76:41:5a:cb:e8:cc:
16:bd:c5:3d:a9:6d:cd:a9:06:02:3e:9d:4a:88:40:
fd:6b:7a:87:9b:e8:38:a3:01:57:52:94:4f:53:a4:
90:01:d9:8f:6d:fd:cd:35:50:7c:d7:74:99:42:4c:
02:d8:dd:37:3f:e4:8d:2f:07:05:b1:12:f9:b5:27:
23:f2:75:ad:51:2e:a6:57:b5:a6:2d:39:a2:6f:79:
7a:d8:94:53:cd:ec:52:47:7b:43:da:ec:95:17:b4:
20:c6:33:73:1c:8d:7b:e0:0c:22:02:b8:06:8a:e8:
14:52:52:f0:ca:fc:12:24:27:f6:c1:57:d9:6a:3a:
84:00:15:ba:aa:7d:6a:36:59:11:a9:7f:42:84:ae:
f0:3b:f3:cf:05:b2:07:dd:e7:25:61:e2:3f:fb:c7:
9f:8b:69:38:a0:c3:d9:55:e9:8b:47:70:0a:64:a1:
9d:9e:a1:ec:21:5b:3e:72:e2:19:f1:f4:cf:b7:84:
98:ff:ee:28:79:3b:e8:5e:95:ad:ad:c9:aa:bf:a0:
31:8e:e0:af:50:03:75:39:e5:53:25:54:f0:8e:8d:
02:51:cd:50:e0:a7:f2:83:0a:3a:34:bc:94:72:4c:
09:a2:c1:53:44:63:4e:e7:ec:02:e6:61:0a:2a:b4:
10:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0E:03:68:46:AF:6D:54:47:8C:0C:81:87:C8:D7:22:33:AA:C1:CA
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F368312F/0BC79D2EB77611F0877ABAE9DAE4EC9C/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F368312F/0BC79D2EB77611F0877ABAE9DAE4EC9C/PQ4DaEavbVRHjAyBh8jXIjOqwco.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329636
sbgp-ipAddrBlock: critical
IPv4:
102.204.123.0/24
IPv6:
2c0f:3ac0::/32
Signature Algorithm: sha256WithRSAEncryption
c3:51:22:ad:64:b8:62:54:54:16:0a:48:e6:44:61:d2:92:c9:
04:7b:09:44:a5:69:8f:71:d2:18:47:52:05:00:46:c0:74:3d:
88:6d:d3:22:b1:e5:ba:f9:cd:4b:7c:e6:62:40:75:d4:f6:cc:
a9:f3:e0:c4:b9:26:82:46:d6:d6:a3:2e:ee:33:70:be:a7:e0:
6a:92:24:12:ff:5d:4c:73:a2:21:26:ed:c6:5f:2f:3d:d8:d8:
2e:3a:86:cf:49:3c:5c:2b:1d:da:2c:38:5f:8b:ce:cc:bd:65:
a1:34:f0:01:de:5e:b1:da:94:dd:50:5e:51:ec:da:81:60:af:
bb:83:75:26:c5:e7:e7:49:88:3c:5a:55:19:02:4b:57:16:13:
2e:e3:6d:78:47:d8:13:48:42:6f:2b:8f:51:f5:35:5d:93:01:
af:35:4c:8d:6f:1e:c8:89:67:f7:a0:b4:02:c3:98:16:fc:6f:
f4:c6:8a:d2:c6:8e:7f:3b:46:27:3e:1c:1f:cf:d5:03:01:b5:
52:55:77:5a:a4:44:5c:a7:ce:46:6b:f9:bc:21:4f:8d:2e:06:
4a:14:9b:69:e4:fa:52:bf:f2:c4:f5:58:82:6b:de:5d:07:b0:
5f:b6:f4:cf:41:3f:ec:dd:d6:3e:22:28:a9:c2:33:3d:7b:b9:
60:7d:af:01
-----BEGIN CERTIFICATE-----
MIIGJTCCBQ2gAwIBAgICNrIwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTExMDEyMjU3MjVaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjgzMTJGQUYxMTAvBgNVBAUTKDNEMEUwMzY4NDZBRjZENTQ0NzhDMEM4
MTg3QzhENzIyMzNBQUMxQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDOBf+KJi85yHZBWsvozBa9xT2pbc2pBgI+nUqIQP1reoeb6DijAVdSlE9TpJAB
2Y9t/c01UHzXdJlCTALY3Tc/5I0vBwWxEvm1JyPyda1RLqZXtaYtOaJveXrYlFPN
7FJHe0Pa7JUXtCDGM3McjXvgDCICuAaK6BRSUvDK/BIkJ/bBV9lqOoQAFbqqfWo2
WRGpf0KErvA7888Fsgfd5yVh4j/7x5+LaTigw9lV6YtHcApkoZ2eoewhWz5y4hnx
9M+3hJj/7ih5O+hela2tyaq/oDGO4K9QA3U55VMlVPCOjQJRzVDgp/KDCjo0vJRy
TAmiwVNEY07n7ALmYQoqtBBDAgMBAAGjggMaMIIDFjAdBgNVHQ4EFgQUPQ4DaEav
bVRHjAyBh8jXIjOqwcowHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4MzEyRi8wQkM3OUQyRUI3NzYx
MUYwODc3QUJBRTlEQUU0RUM5Qy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODMxMkYvMEJDNzlEMkVCNzc2MTFGMDg3N0FCQUU5REFFNEVDOUMvUFE0RGFF
YXZiVlJIakF5Qmg4alhJak9xd2NvLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFB6QwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBABmzHswDQQCAAIwBwMF
ACwPOsAwDQYJKoZIhvcNAQELBQADggEBAMNRIq1kuGJUVBYKSOZEYdKSyQR7CUSl
aY9x0hhHUgUARsB0PYht0yKx5br5zUt85mJAddT2zKnz4MS5JoJG1tajLu4zcL6n
4GqSJBL/XUxzoiEm7cZfLz3Y2C46hs9JPFwrHdosOF+Lzsy9ZaE08AHeXrHalN1Q
XlHs2oFgr7uDdSbF5+dJiDxaVRkCS1cWEy7jbXhH2BNIQm8rj1H1NV2TAa81TI1v
HsiJZ/egtALDmBb8b/TGitLGjn87Ric+HB/P1QMBtVJVd1qkRFynzkZr+bwhT40u
BkoUm2nk+lK/8sT1WIJr3l0HsF+29M9BP+zd1j4iKKnCMz17uWB9rwE=
-----END CERTIFICATE-----
Generated at Wed Nov 5 00:49:11 2025 by rpki-client