Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/saGqcslle0DmFrw3PhPPk7Ip6z8.cer
File: saGqcslle0DmFrw3PhPPk7Ip6z8.cer (raw, json)
Hash identifier: dwDFsy67AY2+/Ct5LDWKwIUywk9EQymkthR1GROySq0=
Subject key identifier: B1:A1:AA:72:C9:65:7B:40:E6:16:BC:37:3E:13:CF:93:B2:29:EB:3F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 34D8
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F366372C/5F217C34657F11ED964AEF85F1222468/saGqcslle0DmFrw3PhPPk7Ip6z8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F366372C/5F217C34657F11ED964AEF85F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Sat 03 May 2025 00:02:15 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328676
IP: 102.207.204.0/22
IP: 102.214.44.0/23
IP: 102.223.7.0/24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 09 May 2025 00:06:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13528 (0x34d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: May 3 00:02:15 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F366372CAF, serialNumber=B1A1AA72C9657B40E616BC373E13CF93B229EB3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7f:56:d6:62:7c:0d:8c:71:c4:4b:2d:af:5e:
9b:7b:a3:ad:c3:a5:f1:1e:9a:ab:67:9d:5e:6e:2f:
e4:4e:0f:01:ab:34:fb:4a:e0:f9:04:2f:70:fc:eb:
36:55:f9:bb:af:25:7e:4f:4e:02:da:47:87:9b:c4:
a9:23:a7:69:9a:d9:d8:80:d4:44:12:ca:f2:31:9c:
46:46:f0:ec:a3:36:4e:49:54:5b:65:83:84:69:c7:
cb:f1:1c:1f:77:31:40:28:6a:8c:cf:b6:70:19:88:
d7:11:5e:0b:9d:f0:17:09:6a:30:f6:f8:b9:b6:f3:
cc:de:29:f7:43:5f:e1:5e:34:85:12:5e:d0:e6:62:
5d:cc:86:59:0f:81:7c:e4:ac:04:40:e6:c2:6a:15:
a6:ab:a5:bf:bc:21:c7:0a:f0:d7:02:1a:94:88:5b:
43:5d:37:cb:fb:a7:c6:ec:00:e5:64:27:67:fa:c7:
ab:32:f4:11:c5:85:98:b8:72:6e:f5:0d:7c:95:8c:
36:69:48:f5:b7:16:95:42:50:06:5c:4d:6c:e9:d6:
e7:aa:68:fc:f8:ee:ec:d1:74:ce:03:bf:14:ae:6f:
cc:19:26:17:80:46:e9:07:b2:ed:8f:37:0f:e0:22:
3c:27:ba:c0:b4:7c:c0:fe:0b:05:e8:50:f7:33:65:
87:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A1:AA:72:C9:65:7B:40:E6:16:BC:37:3E:13:CF:93:B2:29:EB:3F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F366372C/5F217C34657F11ED964AEF85F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F366372C/5F217C34657F11ED964AEF85F1222468/saGqcslle0DmFrw3PhPPk7Ip6z8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328676
sbgp-ipAddrBlock: critical
IPv4:
102.207.204.0/22
102.214.44.0/23
102.223.7.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:9f:e6:2e:ea:85:01:14:e0:86:c0:33:0b:80:7c:62:47:be:
9b:9c:0c:6b:75:34:ff:0c:29:c0:d1:6e:37:7f:64:3b:a9:89:
5d:cb:aa:14:26:0b:3c:bf:e7:bd:46:70:15:b9:dd:eb:a5:4a:
11:fc:aa:5f:63:98:ad:93:e2:3e:64:46:c5:ca:b6:34:f0:bb:
a1:b5:82:7a:2a:98:51:d5:7f:aa:f5:e2:57:ef:eb:7a:46:dd:
00:58:69:18:69:0c:88:6e:3a:9c:5a:ab:ff:b9:12:d7:e3:c6:
af:e2:97:18:6f:aa:60:27:6f:dd:f8:77:4a:c5:5d:d8:f9:57:
e1:03:71:f5:fb:8d:08:19:d8:fc:7c:82:5b:88:ee:6b:0e:0f:
94:de:e3:e3:ba:4f:c4:91:81:89:6d:c6:0b:17:bc:90:18:e3:
3a:c4:bb:63:da:5a:8d:b4:30:2e:c7:a1:0c:0b:c8:5d:a1:da:
d3:77:50:bc:a1:f3:7b:49:05:89:44:d8:b2:c4:c3:c0:c8:6f:
c8:3a:e6:f3:b1:24:0f:38:81:33:02:11:99:92:8e:3f:be:85:
b2:2d:db:67:c9:95:e6:43:b4:a5:ba:3c:8e:aa:5b:26:b2:e8:
26:81:cb:30:30:49:8b:96:89:e5:2f:bc:a4:69:28:5c:eb:bd:
a1:f2:ba:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 11:00:59 2025 by rpki-client