This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Vtkm3-FLVBTqtZN12UzwH6VI0xY.cer File: Vtkm3-FLVBTqtZN12UzwH6VI0xY.cer (raw, json) Hash identifier: Y8e2xcQqpAA221A2s5Jjl6MIZyvp91NLLTMlxQWfkmI= Subject key identifier: 56:D9:26:DF:E1:4B:54:14:EA:B5:93:75:D9:4C:F0:1F:A5:48:D3:16 Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 39D8 Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36BF1B7/71F44CFCEE9F11E8946A735DF8AEA228/Vtkm3-FLVBTqtZN12UzwH6VI0xY.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36BF1B7/71F44CFCEE9F11E8946A735DF8AEA228/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 01:48:02 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 197.234.240.0/22 IP: 2c0f:f248::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Tue 20 Jan 2026 07:53:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14808 (0x39d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 01:48:02 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F36BF1B7AF, serialNumber=56D926DFE14B5414EAB59375D94CF01FA548D316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fe:53:94:d5:b2:0e:47:89:57:e3:43:bc:59: 8a:ee:ba:66:b6:23:94:14:41:35:04:2b:aa:af:f9: d6:3d:1f:df:77:90:ec:d1:01:6b:80:2a:78:77:58: e6:cc:23:c1:8b:6e:d1:fd:ff:dc:9e:44:d4:9c:c2: 89:88:b5:c2:d1:82:ec:e1:b8:8a:83:8d:2d:c0:50: 9c:48:a4:9e:09:46:7c:98:2c:e9:7d:4b:9a:43:10: d6:be:55:4b:ab:94:a5:d6:9c:2b:2d:b7:d0:20:d8: fd:57:31:9d:24:b1:41:00:78:b2:76:1a:b2:e1:ab: 78:dd:94:79:dd:a4:50:c7:92:b5:ad:5a:10:3f:db: c3:9e:be:54:81:c6:62:90:a6:ed:33:8d:d7:10:c4: 95:6e:37:bc:e3:6c:d8:8c:3b:af:cc:99:8e:c3:8b: 22:44:c1:e5:fc:d1:81:85:6d:4b:48:db:73:01:a6: e4:48:f1:81:5e:81:0a:fd:e1:7f:de:d1:3f:1e:df: 93:38:4e:c5:6e:40:e3:bf:79:fe:c9:95:3c:56:6d: c9:80:e7:19:9d:78:30:6e:f8:8c:1e:4d:df:a8:c9: 4b:25:43:b6:ee:a2:d1:2b:48:ce:65:a4:43:36:0f: d8:c6:5b:7b:1e:eb:c2:ba:bc:f3:25:c3:58:db:c4: 3d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D9:26:DF:E1:4B:54:14:EA:B5:93:75:D9:4C:F0:1F:A5:48:D3:16 X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BF1B7/71F44CFCEE9F11E8946A735DF8AEA228/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BF1B7/71F44CFCEE9F11E8946A735DF8AEA228/Vtkm3-FLVBTqtZN12UzwH6VI0xY.mft sbgp-ipAddrBlock: critical IPv4: 197.234.240.0/22 IPv6: 2c0f:f248::/32 Signature Algorithm: sha256WithRSAEncryption 4c:cb:16:3b:fd:97:56:73:9a:bb:02:60:00:99:10:d7:71:1a: c0:48:57:7e:f8:4b:bf:04:26:30:0f:42:72:1d:d8:9c:43:5b: 1e:b6:1f:47:c0:c4:81:e4:f8:9f:20:7c:68:73:32:c6:00:30: 80:38:8d:4f:7b:02:8c:1e:ba:be:2f:aa:0e:97:a2:44:b0:87: 1a:b4:7a:da:6b:89:3f:86:55:2e:f9:20:f8:07:a8:46:2a:46: ac:62:e8:03:2b:d7:2d:ae:0f:b0:6a:8f:ac:16:79:a6:e6:d1: c3:3e:5d:60:c2:77:8b:5b:03:03:8f:ed:16:21:30:3d:48:48: 34:41:1f:eb:00:6e:43:26:e0:11:72:65:9d:26:a5:37:00:4d: 61:f8:8b:3f:cc:d5:cd:9e:84:0c:95:50:d1:61:04:fc:ed:64: cf:60:52:47:5d:66:b2:4e:7a:4e:3c:40:5b:5d:d5:25:35:0d: f2:9f:a9:3f:7e:a4:cb:d7:ca:78:83:0c:88:16:f2:8b:06:bc: 64:b4:72:bc:e6:18:22:cb:81:9a:b2:4a:a3:c0:b6:c2:e3:b7: 2a:2c:60:85:0c:a7:b9:e5:1f:63:e1:44:39:a9:fc:76:ff:d5: b6:91:b3:58:3c:af:4c:1d:9d:88:bf:af:68:99:4f:7a:35:33: db:42:fb:d8 -----BEGIN CERTIFICATE----- MIIGCTCCBPGgAwIBAgICOdgwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMTQ4MDJaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNkJGMUI3QUYxMTAvBgNVBAUTKDU2RDkyNkRGRTE0QjU0MTRFQUI1OTM3 NUQ5NENGMDFGQTU0OEQzMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL/lOU1bIOR4lX40O8WYruuma2I5QUQTUEK6qv+dY9H993kOzRAWuAKnh3WObM I8GLbtH9/9yeRNScwomItcLRguzhuIqDjS3AUJxIpJ4JRnyYLOl9S5pDENa+VUur lKXWnCstt9Ag2P1XMZ0ksUEAeLJ2GrLhq3jdlHndpFDHkrWtWhA/28OevlSBxmKQ pu0zjdcQxJVuN7zjbNiMO6/MmY7DiyJEweX80YGFbUtI23MBpuRI8YFegQr94X/e 0T8e35M4TsVuQOO/ef7JlTxWbcmA5xmdeDBu+IweTd+oyUslQ7buotErSM5lpEM2 D9jGW3se68K6vPMlw1jbxD1fAgMBAAGjggL+MIIC+jAdBgNVHQ4EFgQUVtkm3+FL VBTqtZN12UzwH6VI0xYwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZCRjFCNy83MUY0NENGQ0VFOUYx MUU4OTQ2QTczNURGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2QkYxQjcvNzFGNDRDRkNFRTlGMTFFODk0NkE3MzVERjhBRUEyMjgvVnRrbTMt RkxWQlRxdFpOMTJVendINlZJMHhZLm1mdDAuBggrBgEFBQcBBwEB/wQfMB0wDAQC AAEwBgMEAsXq8DANBAIAAjAHAwUALA/ySDANBgkqhkiG9w0BAQsFAAOCAQEATMsW O/2XVnOauwJgAJkQ13EawEhXfvhLvwQmMA9Cch3YnENbHrYfR8DEgeT4nyB8aHMy xgAwgDiNT3sCjB66vi+qDpeiRLCHGrR62muJP4ZVLvkg+AeoRipGrGLoAyvXLa4P sGqPrBZ5pubRwz5dYMJ3i1sDA4/tFiEwPUhINEEf6wBuQybgEXJlnSalNwBNYfiL P8zVzZ6EDJVQ0WEE/O1kz2BSR11msk56TjxAW13VJTUN8p+pP36ky9fKeIMMiBby iwa8ZLRyvOYYIsuBmrJKo8C2wuO3KixghQynueUfY+FEOan8dv/VtpGzWDyvTB2d iL+vaJlPejUz20L72A== -----END CERTIFICATE-----Generated at Sun Jan 18 12:10:01 2026 by rpki-client