This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Poh-hWgUgzFB-ND2ZKyvbEowXUM.cer File: Poh-hWgUgzFB-ND2ZKyvbEowXUM.cer (raw, json) Hash identifier: j/F+5qr8BV9M5BfVYxlrOH00ogI6uYL5F7cnTSTJq9E= Subject key identifier: 3E:88:7E:85:68:14:83:31:41:F8:D0:F6:64:AC:AF:6C:4A:30:5D:43 Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3B8F Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/Poh-hWgUgzFB-ND2ZKyvbEowXUM.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:51:23 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 328242 IP: 102.23.168.0/21 IP: 154.115.156.0/22 IP: 2c0f:f1f0::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Mon 12 Jan 2026 00:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15247 (0x3b8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 02:51:23 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F36F18B8AF, serialNumber=3E887E856814833141F8D0F664ACAF6C4A305D43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:1e:e4:6f:9e:3d:d3:fc:d0:a7:33:32:77:74: 08:2b:8d:ea:21:a1:15:ee:85:a2:9d:ef:db:a3:64: 1d:ee:c3:3b:e6:c0:cd:1d:ff:65:75:45:84:a4:27: d5:a1:c6:cf:b1:9b:95:6d:77:12:63:7e:ec:da:02: 9a:43:ef:2a:b2:9c:d1:f2:6b:e3:b4:24:8b:6e:c0: 59:cf:e6:5d:be:76:62:23:1e:21:e5:c3:f8:45:90: 17:93:6e:ca:e8:bf:6e:48:c0:b9:86:17:75:72:a8: 5c:aa:d0:e6:b6:0f:a7:28:2b:9c:57:89:b8:50:cb: ed:d2:9c:3d:39:3e:7b:e7:c8:ba:2a:38:f9:a2:d5: a3:b1:5e:a7:b4:23:4d:49:cc:0d:41:95:8e:19:ea: 75:90:a5:06:28:40:a9:23:bf:3c:38:75:f9:9f:0a: 0b:63:f5:c4:ae:f3:ef:c9:cd:db:cc:f0:4b:c9:c5: 80:47:23:ea:b4:06:04:ff:ea:30:b8:0a:6c:cc:bc: 37:a7:55:0f:a1:c1:5b:85:0c:d8:af:7e:43:0e:38: f0:9e:c0:a7:a2:df:9b:a8:06:1d:d1:76:cd:7c:ae: 4b:5a:58:fb:12:55:65:86:c4:0d:5c:7d:da:f3:86: 6b:46:88:19:6d:d8:c8:d3:de:42:23:01:ed:4e:2f: 09:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:88:7E:85:68:14:83:31:41:F8:D0:F6:64:AC:AF:6C:4A:30:5D:43 X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/Poh-hWgUgzFB-ND2ZKyvbEowXUM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 328242 sbgp-ipAddrBlock: critical IPv4: 102.23.168.0/21 154.115.156.0/22 IPv6: 2c0f:f1f0::/32 Signature Algorithm: sha256WithRSAEncryption 74:2c:c8:bd:13:08:9b:c6:ed:99:cf:c2:c6:89:eb:aa:e6:89: 7f:e8:3d:15:4e:5b:33:5e:15:0c:6e:ce:28:33:b3:18:23:1d: ea:4c:89:a4:5f:2c:bf:67:1e:d1:67:62:53:c2:8c:68:81:63: 92:b3:44:b1:9b:17:f2:7c:b0:dc:e3:99:6b:8c:6d:57:c1:ea: c5:71:e4:17:17:1e:a1:d0:ce:b6:e5:0b:47:ef:85:ca:74:71: 65:fb:ec:5e:f6:96:b7:6c:2d:0e:e2:24:ee:ca:a3:d1:d5:bb: 7b:4c:5a:05:e9:62:df:cf:60:f1:6b:03:ee:05:3b:6d:96:2c: 7d:f3:ec:71:ce:a1:7f:ae:e7:71:21:1b:a6:16:f3:20:ff:27: cc:ba:7b:9a:4c:11:fd:01:4f:1e:6b:37:f6:2a:85:ae:df:55: 3a:b1:41:1b:dd:54:ca:c1:ff:4c:04:93:63:aa:e7:7f:1b:ed: 12:89:c0:98:ec:95:36:7c:3b:68:33:58:0b:04:ee:7d:f1:14: 86:eb:cc:1b:97:a3:75:b4:f8:b4:5c:5d:e0:3f:b4:d1:34:bc: 1b:4a:0c:58:e6:e4:cf:4a:65:a0:77:62:b4:b1:cc:52:4a:93: e0:6a:51:71:8d:0c:94:3f:3d:98:d3:4a:bc:e4:a8:f8:a5:e8: 8e:61:cd:37 -----BEGIN CERTIFICATE----- MIIGKzCCBROgAwIBAgICO48wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMjUxMjNaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNkYxOEI4QUYxMTAvBgNVBAUTKDNFODg3RTg1NjgxNDgzMzE0MUY4RDBG NjY0QUNBRjZDNEEzMDVENDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD+HuRvnj3T/NCnMzJ3dAgrjeohoRXuhaKd79ujZB3uwzvmwM0d/2V1RYSkJ9Wh xs+xm5VtdxJjfuzaAppD7yqynNHya+O0JItuwFnP5l2+dmIjHiHlw/hFkBeTbsro v25IwLmGF3VyqFyq0Oa2D6coK5xXibhQy+3SnD05PnvnyLoqOPmi1aOxXqe0I01J zA1BlY4Z6nWQpQYoQKkjvzw4dfmfCgtj9cSu8+/JzdvM8EvJxYBHI+q0BgT/6jC4 CmzMvDenVQ+hwVuFDNivfkMOOPCewKei35uoBh3Rds18rktaWPsSVWWGxA1cfdrz hmtGiBlt2MjT3kIjAe1OLwmtAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUPoh+hWgU gzFB+ND2ZKyvbEowXUMwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZGMThCOC9FMjFCRjM1NDQ5ODQx MUVBQUM0MkFBNTJGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2RjE4QjgvRTIxQkYzNTQ0OTg0MTFFQUFDNDJBQTUyRjhBRUEyMjgvUG9oLWhX Z1VnekZCLU5EMlpLeXZiRW93WFVNLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF AgMFAjIwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBANmF6gDBAKac5wwDQQC AAIwBwMFACwP8fAwDQYJKoZIhvcNAQELBQADggEBAHQsyL0TCJvG7ZnPwsaJ66rm iX/oPRVOWzNeFQxuzigzsxgjHepMiaRfLL9nHtFnYlPCjGiBY5KzRLGbF/J8sNzj mWuMbVfB6sVx5BcXHqHQzrblC0fvhcp0cWX77F72lrdsLQ7iJO7Ko9HVu3tMWgXp Yt/PYPFrA+4FO22WLH3z7HHOoX+u53EhG6YW8yD/J8y6e5pMEf0BTx5rN/Yqha7f VTqxQRvdVMrB/0wEk2Oq538b7RKJwJjslTZ8O2gzWAsE7n3xFIbrzBuXo3W0+LRc XeA/tNE0vBtKDFjm5M9KZaB3YrSxzFJKk+BqUXGNDJQ/PZjTSrzkqPil6I5hzTc= -----END CERTIFICATE-----Generated at Sat Jan 10 20:51:48 2026 by rpki-client