This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/1DoqVLLNNnZCx2hmihOEa4nsje8.cer File: 1DoqVLLNNnZCx2hmihOEa4nsje8.cer (raw, json) Hash identifier: EIc3oB17+hnNxhIlDcpy8lvpOX2gvI85QIQ9LP5jAwA= Subject key identifier: D4:3A:2A:54:B2:CD:36:76:42:C7:68:66:8A:13:84:6B:89:EC:8D:EF Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 397B Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/1DoqVLLNNnZCx2hmihOEa4nsje8.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 01:33:11 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 102.208.248.0/22 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Sat 10 Jan 2026 15:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14715 (0x397b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 01:33:11 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F364EAB0AF, serialNumber=D43A2A54B2CD367642C768668A13846B89EC8DEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6c:0e:70:98:ba:5c:39:49:4d:b6:a9:ca:10: cd:0c:26:8e:cc:aa:96:51:a7:a5:d3:c8:72:82:42: 5e:96:e0:eb:7f:47:52:d5:86:1b:be:07:e8:bb:c0: 1d:b3:cc:0a:df:b9:69:f9:32:97:84:2f:b5:e4:a9: 5d:e8:7a:df:bc:c4:b2:9e:2a:4a:9e:6f:81:3b:36: 55:88:92:a8:3c:a8:6a:33:99:1b:8b:73:33:c8:4b: d8:85:78:a1:0e:73:57:7f:9b:50:3a:5d:3a:cd:c7: b3:9b:ab:c3:fd:43:c4:27:c9:f7:c2:a8:fb:db:8f: 46:b5:71:d2:05:b4:8e:89:cb:f8:7b:1c:cf:51:46: 47:d1:69:7b:2e:f9:c6:f7:35:6c:bb:98:74:f0:a8: a4:9c:9b:0f:c5:58:c5:67:ed:77:a5:43:28:66:51: d0:1c:c0:3c:bd:dd:65:cd:bf:f2:52:11:01:ba:4a: 0f:32:1b:28:fc:4d:3e:2d:66:a6:0b:48:c6:ca:bb: 92:5d:ae:cd:29:49:3b:54:df:3f:2e:a6:62:df:a1: 4e:74:9f:b6:1e:a3:49:c9:b2:12:e8:70:a0:d2:b4: 6f:f7:a0:de:b8:88:5f:ef:27:b6:b6:f4:9e:40:37: ad:dc:d5:16:be:6f:99:59:cc:1c:e8:0b:ec:25:75: 5e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:3A:2A:54:B2:CD:36:76:42:C7:68:66:8A:13:84:6B:89:EC:8D:EF X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/1DoqVLLNNnZCx2hmihOEa4nsje8.mft sbgp-ipAddrBlock: critical IPv4: 102.208.248.0/22 Signature Algorithm: sha256WithRSAEncryption 10:f3:d4:c6:6f:22:b2:4f:e2:46:c8:53:bc:bf:be:b2:59:00: 78:1e:ec:96:0a:50:1a:b9:93:bd:5b:bd:74:cd:32:ed:38:87: f8:d5:b8:51:4c:bd:c3:0f:5e:62:bb:f4:c0:cb:f7:95:62:02: 74:28:9c:a8:d3:53:ec:8d:29:5e:bf:f4:73:48:75:44:0b:a8: f2:fc:a6:ce:12:ea:66:34:0b:04:19:35:46:f4:38:cd:cd:bb: 1b:3c:ef:cd:dd:74:d0:3b:7a:71:8b:19:4a:12:80:8e:74:e5: 48:bb:35:0d:58:74:5b:2c:01:72:48:a7:b5:9d:b6:43:fb:94: 85:b9:ab:c5:ce:1f:bc:40:5c:5e:b4:11:af:32:ae:7b:fb:fa: 29:8c:7a:43:91:bc:df:37:e8:26:2b:9e:c1:aa:ba:1f:5f:d2: 11:2f:0c:56:3d:d7:61:29:76:8f:ca:cb:3d:b2:01:97:22:a8: 11:b6:1c:83:c4:37:9d:c5:cd:15:96:65:37:b9:ae:83:10:d5: 1c:64:33:76:11:32:06:85:f8:a2:c1:29:ee:96:63:c1:86:cb: 70:9a:1b:25:b6:1e:28:f5:a8:e7:2b:2f:fe:9d:c2:d5:f5:87: cf:0f:e7:5b:b8:4f:9e:ec:b7:bd:82:62:26:59:f2:13:6c:4b: 21:9b:69:e9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgICOXswDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMTMzMTFaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNjRFQUIwQUYxMTAvBgNVBAUTKEQ0M0EyQTU0QjJDRDM2NzY0MkM3Njg2 NjhBMTM4NDZCODlFQzhERUYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmbA5wmLpcOUlNtqnKEM0MJo7MqpZRp6XTyHKCQl6W4Ot/R1LVhhu+B+i7wB2z zArfuWn5MpeEL7XkqV3oet+8xLKeKkqeb4E7NlWIkqg8qGozmRuLczPIS9iFeKEO c1d/m1A6XTrNx7Obq8P9Q8QnyffCqPvbj0a1cdIFtI6Jy/h7HM9RRkfRaXsu+cb3 NWy7mHTwqKScmw/FWMVn7XelQyhmUdAcwDy93WXNv/JSEQG6Sg8yGyj8TT4tZqYL SMbKu5Jdrs0pSTtU3z8upmLfoU50n7Yeo0nJshLocKDStG/3oN64iF/vJ7a29J5A N63c1Ra+b5lZzBzoC+wldV7HAgMBAAGjggLvMIIC6zAdBgNVHQ4EFgQU1DoqVLLN NnZCx2hmihOEa4nsje8wHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY0RUFCMC8zQ0FCNDBGNDQ4RUEx MUVGODg1REVFOUU3NjJFOTUxQS8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2NEVBQjAvM0NBQjQwRjQ0OEVBMTFFRjg4NURFRTlFNzYyRTk1MUEvMURvcVZM TE5OblpDeDJobWloT0VhNG5zamU4Lm1mdDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmbQ+DANBgkqhkiG9w0BAQsFAAOCAQEAEPPUxm8isk/iRshTvL++slkA eB7slgpQGrmTvVu9dM0y7TiH+NW4UUy9ww9eYrv0wMv3lWICdCicqNNT7I0pXr/0 c0h1RAuo8vymzhLqZjQLBBk1RvQ4zc27Gzzvzd100Dt6cYsZShKAjnTlSLs1DVh0 WywBckintZ22Q/uUhbmrxc4fvEBcXrQRrzKue/v6KYx6Q5G83zfoJiuewaq6H1/S ES8MVj3XYSl2j8rLPbIBlyKoEbYcg8Q3ncXNFZZlN7mugxDVHGQzdhEyBoX4osEp 7pZjwYbLcJobJbYeKPWo5ysv/p3C1fWHzw/nW7hPnuy3vYJiJlnyE2xLIZtp6Q== -----END CERTIFICATE-----Generated at Fri Jan 9 00:57:57 2026 by rpki-client