This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer File: IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer (raw, json) Hash identifier: NtTP5zvqNR4o1e0Io+axCALuF2em8FQqSnXvKUsnDpg= Subject key identifier: 21:86:2A:80:4A:8E:52:51:D3:F4:D5:51:55:32:4C:AB:CB:1B:2C:D1 Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3DD2 Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:19:03 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 37794 AS: 329158 IP: 196.49.92.0/24 IP: 196.60.106.0/24 IP: 2001:43f8:16a0::/47 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Sun 11 Jan 2026 00:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15826 (0x3dd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 04:19:03 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F36C7A1BAF, serialNumber=21862A804A8E5251D3F4D55155324CABCB1B2CD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bd:df:cb:47:9e:22:d7:df:a1:d0:31:f2:3c: 2a:b5:6d:9c:f2:3f:5d:3d:a2:f6:1c:da:bf:ea:69: 5d:19:cf:27:dc:3a:5f:88:c0:62:1a:5d:3a:83:fd: 16:a6:ee:65:6a:0f:d0:f3:6d:f9:63:71:92:1c:c8: 34:25:b8:10:f5:7c:22:15:e0:27:88:02:9d:8e:cf: a3:ac:a1:59:cf:de:06:ff:80:09:f8:5a:bf:3f:1c: 47:45:9d:8e:64:7e:5b:75:10:57:6d:ac:41:b9:79: 16:f2:73:a2:5c:23:1b:0c:a5:64:7b:be:4f:55:c6: c4:48:91:e3:cf:8d:e9:4f:48:10:11:06:c6:4c:93: 14:80:23:b7:47:48:26:6c:d3:ac:4c:ce:65:fb:8f: 4b:9b:69:29:ea:08:17:d6:f4:05:37:10:02:d2:9e: a7:77:c6:05:f0:36:f3:a9:e4:76:52:af:7b:85:ea: 7e:a0:a8:79:aa:13:ef:4e:90:bf:99:c7:19:af:00: 16:d6:ca:d5:a2:bc:2e:8c:63:44:3a:c2:3f:f8:3a: 6b:e4:9c:36:c8:93:ba:86:4c:ce:e9:91:a7:4f:17: 63:4d:d5:7f:53:11:dd:90:a9:ab:62:b4:14:b0:06: 90:4b:58:16:c6:e0:ab:c8:9e:8f:3a:d2:50:66:01: b8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:86:2A:80:4A:8E:52:51:D3:F4:D5:51:55:32:4C:AB:CB:1B:2C:D1 X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 37794 329158 sbgp-ipAddrBlock: critical IPv4: 196.49.92.0/24 196.60.106.0/24 IPv6: 2001:43f8:16a0::/47 Signature Algorithm: sha256WithRSAEncryption 9e:35:ef:66:67:dd:91:55:8c:51:55:34:71:0d:37:a8:02:66: a1:49:34:92:42:41:93:c7:ce:cb:60:53:af:92:84:46:25:ec: 2a:77:2c:44:ee:00:17:71:36:79:73:23:04:c7:a2:80:9f:b3: aa:a1:1e:2e:89:eb:0d:a6:2e:6f:8f:60:5f:e3:27:2b:5f:ee: 32:72:50:ba:88:6e:08:7e:1d:1a:d2:f0:78:93:1b:90:f7:b9: 17:1d:4c:20:e9:a3:be:de:22:2f:c5:c3:a7:5e:0d:f4:a8:e2: a9:a7:d7:1c:ac:d9:df:30:13:f2:10:87:3c:33:ca:d5:37:5e: 5f:c4:41:fd:97:cf:fd:d5:de:11:9a:12:a6:e4:0b:52:73:a0: f7:72:1d:a9:70:ef:9d:2f:12:23:2b:05:31:b4:54:40:1b:9e: 2a:2e:04:6e:d2:e1:e2:88:76:9d:5d:06:88:7e:0b:cb:9f:e7: 9f:ac:f4:a2:20:10:57:48:17:c7:fc:a0:1a:78:d2:20:5b:cb: f9:86:fc:af:53:4d:42:fd:64:17:93:40:cc:ec:4f:97:0f:fa: e4:8e:25:8a:42:60:0a:49:e2:ed:3f:61:5a:43:1f:c8:f7:f3: 62:18:87:96:86:45:f5:b3:ee:9f:a4:36:43:d4:49:b0:2a:5b: f1:c3:df:5f -----BEGIN CERTIFICATE----- MIIGMjCCBRqgAwIBAgICPdIwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwNDE5MDNaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNkM3QTFCQUYxMTAvBgNVBAUTKDIxODYyQTgwNEE4RTUyNTFEM0Y0RDU1 MTU1MzI0Q0FCQ0IxQjJDRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZvd/LR54i19+h0DHyPCq1bZzyP109ovYc2r/qaV0ZzyfcOl+IwGIaXTqD/Ram 7mVqD9DzbfljcZIcyDQluBD1fCIV4CeIAp2Oz6OsoVnP3gb/gAn4Wr8/HEdFnY5k flt1EFdtrEG5eRbyc6JcIxsMpWR7vk9VxsRIkePPjelPSBARBsZMkxSAI7dHSCZs 06xMzmX7j0ubaSnqCBfW9AU3EALSnqd3xgXwNvOp5HZSr3uF6n6gqHmqE+9OkL+Z xxmvABbWytWivC6MY0Q6wj/4OmvknDbIk7qGTM7pkadPF2NN1X9TEd2QqatitBSw BpBLWBbG4KvIno860lBmAbhvAgMBAAGjggMnMIIDIzAdBgNVHQ4EFgQUIYYqgEqO UlHT9NVRVTJMq8sbLNEwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZDN0ExQi84QkYzNkVCMkE3MEYx MUVEOEUxM0EzQUJGMTIyMjQ2OC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2QzdBMUIvOEJGMzZFQjJBNzBGMTFFRDhFMTNBM0FCRjEyMjI0NjgvSVlZcWdF cU9VbEhUOU5WUlZUSk1xOHNiTE5FLm1mdDAfBggrBgEFBQcBCAEB/wQQMA6gDDAK AgMAk6ICAwUFxjA2BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEAMQxXAMEAMQ8 ajAPBAIAAjAJAwcBIAFD+BagMA0GCSqGSIb3DQEBCwUAA4IBAQCeNe9mZ92RVYxR VTRxDTeoAmahSTSSQkGTx87LYFOvkoRGJewqdyxE7gAXcTZ5cyMEx6KAn7OqoR4u iesNpi5vj2Bf4ycrX+4yclC6iG4Ifh0a0vB4kxuQ97kXHUwg6aO+3iIvxcOnXg30 qOKpp9ccrNnfMBPyEIc8M8rVN15fxEH9l8/91d4RmhKm5AtSc6D3ch2pcO+dLxIj KwUxtFRAG54qLgRu0uHiiHadXQaIfgvLn+efrPSiIBBXSBfH/KAaeNIgW8v5hvyv U01C/WQXk0DM7E+XD/rkjiWKQmAKSeLtP2FaQx/I9/NiGIeWhkX1s+6fpDZD1Emw Klvxw99f -----END CERTIFICATE-----Generated at Fri Jan 9 18:14:40 2026 by rpki-client