This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/d0EtfMEFPOGdN5zMYAe5JaHnTKE.cer File: d0EtfMEFPOGdN5zMYAe5JaHnTKE.cer (raw, json) Hash identifier: Tv4yfk71X/FGD++NDzG+CIz+1EKanO1G3x9Os+qRkwU= Subject key identifier: 77:41:2D:7C:C1:05:3C:E1:9D:37:9C:CC:60:07:B9:25:A1:E7:4C:A1 Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3B52 Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F367FC8B/7B5474960EA911EE99CD2B764AD9E6FC/d0EtfMEFPOGdN5zMYAe5JaHnTKE.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F367FC8B/7B5474960EA911EE99CD2B764AD9E6FC/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:42:44 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 41.209.0.0/18 IP: 2001:4368::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Sun 08 Feb 2026 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15186 (0x3b52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 02:42:44 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F367FC8BAF, serialNumber=77412D7CC1053CE19D379CCC6007B925A1E74CA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dd:78:19:bd:c5:d4:f2:5f:fa:65:69:ca:f9: c3:95:22:b6:17:3a:4c:6d:d3:64:4d:e8:8b:3a:75: fc:80:68:26:d6:51:63:34:53:33:c1:31:e0:1c:26: cc:53:52:ff:8d:2a:a7:b8:ce:6f:65:98:f4:37:a2: e2:c4:f1:94:06:9f:04:72:b1:e2:32:a0:95:e0:4b: 2f:f8:3b:57:cb:31:69:03:ef:a1:f6:b1:b2:82:7b: 8a:04:52:4d:ac:e3:51:aa:53:d1:3a:35:eb:75:19: ff:35:5d:bf:6c:fc:fd:f3:fe:23:d5:ab:3c:19:2c: 6d:93:78:ab:63:d5:8f:5f:57:da:5a:9d:2b:1c:a8: bf:72:88:f6:d3:8d:2c:82:6b:e2:39:67:c2:6b:c5: 97:95:2e:6c:b3:f8:ec:5f:7c:ae:82:36:81:9c:7a: 5d:3e:d5:52:8d:ad:26:e0:d9:55:29:a4:d7:7c:e7: 4e:ae:25:7b:00:46:be:47:3e:8f:cb:07:0e:a2:0d: 1a:ae:2f:11:7e:0b:59:95:7d:ba:3b:5f:b8:37:a4: 8e:06:32:40:f1:e6:1d:c8:ae:0d:74:53:d3:68:02: b9:9c:c2:cf:50:26:33:b4:26:64:6c:23:4f:fc:32: 34:ee:77:79:be:91:53:1f:21:c9:05:3d:8e:1f:79: 87:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:41:2D:7C:C1:05:3C:E1:9D:37:9C:CC:60:07:B9:25:A1:E7:4C:A1 X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FC8B/7B5474960EA911EE99CD2B764AD9E6FC/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FC8B/7B5474960EA911EE99CD2B764AD9E6FC/d0EtfMEFPOGdN5zMYAe5JaHnTKE.mft sbgp-ipAddrBlock: critical IPv4: 41.209.0.0/18 IPv6: 2001:4368::/32 Signature Algorithm: sha256WithRSAEncryption 51:2d:ed:6e:a3:10:e7:01:ec:59:d6:3b:f2:0d:c7:86:1d:ce: a7:e7:df:68:02:d7:68:4a:cf:2f:a1:d2:02:dc:ff:d8:16:e3: 00:db:89:41:29:ee:3e:f1:7c:f9:3d:b2:7f:3f:18:15:5e:6a: a9:fb:db:3f:23:25:54:31:57:f8:5d:a0:a8:f8:4b:ec:6f:6e: 06:87:bf:c3:fc:84:e2:78:24:ae:9d:15:75:e3:e0:b1:f6:d1: d8:6d:00:67:57:40:a8:93:4b:a8:0e:97:5b:c9:ed:c8:3b:f7: 56:60:6c:21:94:d2:52:59:1c:50:c9:bb:60:ea:f7:0e:f1:22: 78:0e:ea:65:97:9f:90:ce:16:f2:29:64:7c:a3:29:b2:1b:06: df:89:cb:50:c0:25:77:fa:89:20:f9:79:df:10:a6:9d:49:dc: 57:33:1b:7e:5d:74:9c:52:c0:6e:b7:e4:09:16:03:90:29:12: 73:44:57:42:61:8a:d4:d6:41:d2:49:70:26:fb:53:fe:49:cd: 2f:0b:27:31:fe:6f:b4:c3:99:ec:af:6e:c1:e2:95:37:ed:fc: 02:83:b5:62:fb:4c:80:07:3e:da:32:51:91:17:26:2a:e9:63: 12:ad:e1:f3:49:a6:a8:36:a3:64:03:04:9f:ae:15:c9:ae:ed: b3:23:83:1b -----BEGIN CERTIFICATE----- MIIGCTCCBPGgAwIBAgICO1IwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMjQyNDRaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNjdGQzhCQUYxMTAvBgNVBAUTKDc3NDEyRDdDQzEwNTNDRTE5RDM3OUND QzYwMDdCOTI1QTFFNzRDQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD3XgZvcXU8l/6ZWnK+cOVIrYXOkxt02RN6Is6dfyAaCbWUWM0UzPBMeAcJsxT Uv+NKqe4zm9lmPQ3ouLE8ZQGnwRyseIyoJXgSy/4O1fLMWkD76H2sbKCe4oEUk2s 41GqU9E6Net1Gf81Xb9s/P3z/iPVqzwZLG2TeKtj1Y9fV9panSscqL9yiPbTjSyC a+I5Z8JrxZeVLmyz+OxffK6CNoGcel0+1VKNrSbg2VUppNd8506uJXsARr5HPo/L Bw6iDRquLxF+C1mVfbo7X7g3pI4GMkDx5h3Irg10U9NoArmcws9QJjO0JmRsI0/8 MjTud3m+kVMfIckFPY4feYfpAgMBAAGjggL+MIIC+jAdBgNVHQ4EFgQUd0EtfMEF POGdN5zMYAe5JaHnTKEwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY3RkM4Qi83QjU0NzQ5NjBFQTkx MUVFOTlDRDJCNzY0QUQ5RTZGQy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2N0ZDOEIvN0I1NDc0OTYwRUE5MTFFRTk5Q0QyQjc2NEFEOUU2RkMvZDBFdGZN RUZQT0dkTjV6TVlBZTVKYUhuVEtFLm1mdDAuBggrBgEFBQcBBwEB/wQfMB0wDAQC AAEwBgMEBinRADANBAIAAjAHAwUAIAFDaDANBgkqhkiG9w0BAQsFAAOCAQEAUS3t bqMQ5wHsWdY78g3Hhh3Op+ffaALXaErPL6HSAtz/2BbjANuJQSnuPvF8+T2yfz8Y FV5qqfvbPyMlVDFX+F2gqPhL7G9uBoe/w/yE4ngkrp0VdePgsfbR2G0AZ1dAqJNL qA6XW8ntyDv3VmBsIZTSUlkcUMm7YOr3DvEieA7qZZefkM4W8ilkfKMpshsG34nL UMAld/qJIPl53xCmnUncVzMbfl10nFLAbrfkCRYDkCkSc0RXQmGK1NZB0klwJvtT /knNLwsnMf5vtMOZ7K9uweKVN+38AoO1YvtMgAc+2jJRkRcmKuljEq3h80mmqDaj ZAMEn64Vya7tsyODGw== -----END CERTIFICATE-----Generated at Fri Feb 6 22:51:39 2026 by rpki-client