This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer File: S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer (raw, json) Hash identifier: wsvs8bphilYMKG58ibIvNkmgJjE0ouX9ZnXtHco2ffk= Subject key identifier: 4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70 Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3CD2 Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 03:38:29 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 36867 IP: 41.223.204.0/22 IP: 196.1.120.0/21 IP: 2001:42e0::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Sun 08 Feb 2026 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15570 (0x3cd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 03:38:29 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F36A7021AF, serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:05:fe:49:bf:c1:53:18:9a:69:ac:9a:b9:ba: 5c:79:09:30:30:a4:f4:00:92:05:cd:5d:e3:f1:c5: 97:55:88:1a:19:ab:4f:a5:a4:7c:11:dc:6e:52:1f: 5b:5a:33:ef:ae:0c:08:39:86:6c:81:f2:66:b7:fe: 1d:0f:a3:21:62:f2:6f:7a:2c:c7:c7:d8:76:1d:19: 14:da:84:3c:eb:35:66:fe:9a:d2:b2:2e:61:d4:73: ef:9a:13:6e:c1:13:71:57:db:ff:0d:77:18:e4:c8: 78:f0:6b:81:a5:10:ff:60:0e:a3:d2:bc:5c:05:71: d1:16:38:fb:ef:c8:46:73:10:a4:c7:32:7c:e5:a9: f0:11:1e:d8:a7:19:b1:a4:d2:eb:12:43:02:4c:46: 69:43:c8:72:d8:b3:26:d1:5b:8a:c1:7e:48:28:38: 9b:4b:17:eb:bf:79:dd:68:06:98:79:93:17:6e:4a: 9d:75:ec:b8:7d:4f:78:ba:6d:8c:38:87:96:67:05: 4c:1e:6f:e2:4c:5e:3e:ba:63:e0:ab:1a:90:f7:8b: 41:6f:d3:13:59:de:60:35:f9:d8:0e:a0:05:75:1d: c5:61:ff:ca:fb:4b:2c:e9:f7:94:f3:fc:2c:86:6d: be:3e:64:5c:9b:c1:4d:de:8a:3d:57:db:61:07:35: 15:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70 X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 36867 sbgp-ipAddrBlock: critical IPv4: 41.223.204.0/22 196.1.120.0/21 IPv6: 2001:42e0::/32 Signature Algorithm: sha256WithRSAEncryption 9a:bb:76:1a:54:27:79:0c:26:af:90:dd:ee:9d:07:a6:cb:1f: c2:d2:71:0a:2c:4c:a6:65:14:92:3f:c0:01:bf:27:69:fe:78: e7:ac:4a:7b:65:3a:ce:32:30:63:f8:0c:f9:af:02:4c:af:22: 5f:d1:dc:9f:ff:8d:b0:06:72:7e:2a:1f:14:bd:d2:a1:92:0f: 69:97:7b:b8:f0:b4:53:73:04:93:2f:80:16:08:ff:7d:9c:6c: f8:fb:53:b5:16:41:eb:64:11:ab:eb:0e:25:f0:9f:7e:b5:12: 97:c8:eb:05:b7:0a:eb:99:ed:bc:1d:73:9a:d3:bd:8b:3f:d9: dc:96:dc:e8:32:e9:ab:7d:e9:24:0f:a8:d0:ba:6b:d8:f9:e0: 45:2e:af:5c:c0:a0:4d:f4:35:f3:2a:9a:a9:db:31:b8:0d:99: 02:8f:85:6c:2e:96:2c:30:fa:62:ab:02:1c:d0:1e:04:9a:be: 5b:7b:da:6f:fb:30:1b:fb:c3:3c:99:1a:5a:f6:b2:bd:22:cf: d7:3f:d5:04:d3:fa:03:24:a0:8b:6a:ce:30:82:00:b9:aa:2c: 48:65:2d:00:0c:17:b7:15:e6:9e:3e:fe:d6:25:db:4b:19:40: 19:2d:f6:76:8a:5f:5c:c4:d1:e9:21:01:a2:a7:5b:13:82:77: a5:09:f7:eb -----BEGIN CERTIFICATE----- MIIGKzCCBROgAwIBAgICPNIwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMzM4MjlaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNkE3MDIxQUYxMTAvBgNVBAUTKDRCNDg2NjIwMDQwODlGNUJCNjgxOTRB QjA0QjgzMENENDMzQTJCNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5Bf5Jv8FTGJpprJq5ulx5CTAwpPQAkgXNXePxxZdViBoZq0+lpHwR3G5SH1ta M++uDAg5hmyB8ma3/h0PoyFi8m96LMfH2HYdGRTahDzrNWb+mtKyLmHUc++aE27B E3FX2/8NdxjkyHjwa4GlEP9gDqPSvFwFcdEWOPvvyEZzEKTHMnzlqfARHtinGbGk 0usSQwJMRmlDyHLYsybRW4rBfkgoOJtLF+u/ed1oBph5kxduSp117Lh9T3i6bYw4 h5ZnBUweb+JMXj66Y+CrGpD3i0Fv0xNZ3mA1+dgOoAV1HcVh/8r7Syzp95Tz/CyG bb4+ZFybwU3eij1X22EHNRX/AgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUS0hmIAQI n1u2gZSrBLgwzUM6K3AwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZBNzAyMS9FNTAzOTkxQzAyQzMx MUVGQkQxMjc3RjUwMDcwMDFCMS8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2QTcwMjEvRTUwMzk5MUMwMkMzMTFFRkJEMTI3N0Y1MDA3MDAxQjEvUzBobUlB UUluMXUyZ1pTckJMZ3d6VU02SzNBLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF AgMAkAMwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAIp38wDBAPEAXgwDQQC AAIwBwMFACABQuAwDQYJKoZIhvcNAQELBQADggEBAJq7dhpUJ3kMJq+Q3e6dB6bL H8LScQosTKZlFJI/wAG/J2n+eOesSntlOs4yMGP4DPmvAkyvIl/R3J//jbAGcn4q HxS90qGSD2mXe7jwtFNzBJMvgBYI/32cbPj7U7UWQetkEavrDiXwn361EpfI6wW3 CuuZ7bwdc5rTvYs/2dyW3Ogy6at96SQPqNC6a9j54EUur1zAoE30NfMqmqnbMbgN mQKPhWwuliww+mKrAhzQHgSavlt72m/7MBv7wzyZGlr2sr0iz9c/1QTT+gMkoItq zjCCALmqLEhlLQAMF7cV5p4+/tYl20sZQBkt9naKX1zE0ekhAaKnWxOCd6UJ9+s= -----END CERTIFICATE-----Generated at Fri Feb 6 22:49:18 2026 by rpki-client