This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer File: JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer (raw, json) Hash identifier: IZPCEAtiLO3zoSY+95wgkeBYk8vt/C+OHNbOJ/A5AaQ= Subject key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3BCF Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 03:00:24 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 154.80.0.0/12 IP: 154.192.0.0/11 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Sun 04 Jan 2026 00:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15311 (0x3bcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 03:00:24 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7f:5a:2d:17:c8:bf:77:04:d1:ab:83:4b:33: 50:a9:46:6a:f3:72:31:68:c1:46:34:7d:5c:be:a8: 29:56:09:69:a9:af:5a:df:26:fa:73:e3:cd:31:c7: a1:a8:09:33:8a:27:b5:05:54:ed:b6:c9:f1:45:18: ae:6a:51:c5:65:44:2a:e7:96:3f:7c:6a:30:9e:83: dd:be:5f:d1:d8:55:df:75:67:a0:51:6d:e9:41:38: e2:33:97:f0:23:59:92:29:b6:66:b3:30:78:f6:67: 42:a6:fe:23:37:28:bb:c0:be:64:f7:a7:15:d6:a9: c6:80:cc:04:60:a8:35:8f:a5:04:08:c0:78:62:30: 7e:70:9a:e3:70:92:6e:92:16:f8:4a:a0:02:a0:4a: 25:7c:09:e3:9b:e5:89:13:ff:3a:21:91:7b:78:9c: 20:cb:d4:39:d8:80:c5:07:6e:a6:5e:d9:f7:4d:7a: c0:a4:0e:8e:21:a8:5f:b9:91:34:d1:ec:0b:d3:cc: c2:15:85:2d:5a:b3:2b:fd:2e:75:77:8f:b3:ba:f4: e7:0c:9d:56:8b:e9:a2:be:31:2f:11:34:69:5b:d6: 2e:6d:65:d3:79:e9:9a:f4:19:7f:21:12:87:9e:10: fc:da:cd:3b:e1:7f:08:93:ed:85:90:ff:d4:af:34: 8f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft sbgp-ipAddrBlock: critical IPv4: 154.80.0.0/12 154.192.0.0/11 Signature Algorithm: sha256WithRSAEncryption bc:64:d5:e9:91:fa:32:c0:67:dd:96:b3:5a:91:5c:3f:7e:a7: 6e:b1:37:11:3c:c4:aa:a8:cf:f8:5a:5e:61:4f:53:93:52:4c: df:77:c6:a7:21:9e:43:34:9e:dd:37:17:5d:b1:81:53:d4:6d: ac:c0:14:f1:84:22:32:e5:44:6e:e0:06:96:88:d4:f3:9a:86: 36:37:15:a0:3a:29:b9:08:f6:1a:35:33:88:5c:a8:8e:6e:e0: 27:b4:39:28:5e:d2:4c:e9:f9:8b:1c:2f:96:c3:7c:26:67:0d: 3a:e3:e6:0e:ef:53:7a:84:d1:46:2e:da:48:31:e1:31:34:a2: b9:8e:e9:7f:2b:0f:ea:5b:4c:f8:96:48:17:45:13:cd:1d:84: a6:d0:65:64:f0:59:da:32:45:bd:2e:f2:69:76:da:66:4a:61: c0:71:2a:59:8c:da:4b:f5:b7:16:ab:8b:93:d8:27:fc:be:eb: 8e:9a:e6:29:d6:6c:cf:2b:04:db:57:f6:47:a3:e9:66:ce:76: 76:a2:90:aa:f9:2c:12:3a:0a:44:19:c2:96:05:84:47:6d:60: 8e:87:b1:9a:7d:25:62:0b:47:af:e4:90:51:82:5b:13:9d:a3: 88:6e:87:f8:41:f1:91:84:16:03:cb:15:ab:bf:96:d0:67:54: 31:43:a9:4b -----BEGIN CERTIFICATE----- MIIF/jCCBOagAwIBAgICO88wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMzAwMjRaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRD MUQ2RDM0MTE2REUxNUIzREMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYf1otF8i/dwTRq4NLM1CpRmrzcjFowUY0fVy+qClWCWmpr1rfJvpz480xx6Go CTOKJ7UFVO22yfFFGK5qUcVlRCrnlj98ajCeg92+X9HYVd91Z6BRbelBOOIzl/Aj WZIptmazMHj2Z0Km/iM3KLvAvmT3pxXWqcaAzARgqDWPpQQIwHhiMH5wmuNwkm6S FvhKoAKgSiV8CeOb5YkT/zohkXt4nCDL1DnYgMUHbqZe2fdNesCkDo4hqF+5kTTR 7AvTzMIVhS1asyv9LnV3j7O69OcMnVaL6aK+MS8RNGlb1i5tZdN56Zr0GX8hEoee EPzazTvhfwiT7YWQ/9SvNI8jAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQUJdY+COq+ fPpnhdTB1tNBFt4Vs9wwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUx MUU4OUMwRDZFNEJGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2OEYyRDAvN0Y0QTk4RUE2RTA1MTFFODlDMEQ2RTRCRjhBRUEyMjgvSmRZLUNP cS1mUHBuaGRUQjF0TkJGdDRWczl3Lm1mdDAjBggrBgEFBQcBBwEB/wQUMBIwEAQC AAEwCgMDBJpQAwMFmsAwDQYJKoZIhvcNAQELBQADggEBALxk1emR+jLAZ92Ws1qR XD9+p26xNxE8xKqoz/haXmFPU5NSTN93xqchnkM0nt03F12xgVPUbazAFPGEIjLl RG7gBpaI1POahjY3FaA6KbkI9ho1M4hcqI5u4Ce0OShe0kzp+YscL5bDfCZnDTrj 5g7vU3qE0UYu2kgx4TE0ormO6X8rD+pbTPiWSBdFE80dhKbQZWTwWdoyRb0u8ml2 2mZKYcBxKlmM2kv1txari5PYJ/y+646a5inWbM8rBNtX9kej6WbOdnaikKr5LBI6 CkQZwpYFhEdtYI6HsZp9JWILR6/kkFGCWxOdo4huh/hB8ZGEFgPLFau/ltBnVDFD qUs= -----END CERTIFICATE-----Generated at Fri Jan 2 16:02:28 2026 by rpki-client