This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/kcmeRXlnuZKbLt55eXKLD-Jjmtk.cer File: kcmeRXlnuZKbLt55eXKLD-Jjmtk.cer (raw, json) Hash identifier: HbpHrxnCqdiEK68OWOZKkgX45WoT5SH+EW1bp1+qyt4= Subject key identifier: 91:C9:9E:45:79:67:B9:92:9B:2E:DE:79:79:72:8B:0F:E2:63:9A:D9 Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3CFF Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/kcmeRXlnuZKbLt55eXKLD-Jjmtk.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 03:45:41 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 329278 IP: 102.212.244.0/22 IP: 2c0f:4440::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Tue 13 Jan 2026 00:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15615 (0x3cff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 03:45:41 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F36AE219AF, serialNumber=91C99E457967B9929B2EDE7979728B0FE2639AD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bb:53:64:78:05:b4:1a:f4:b9:fe:e6:ea:c0: a6:a1:d5:9f:4c:72:19:55:ea:7a:02:e1:f6:75:25: 03:64:9b:8d:0d:5c:8a:93:9f:bd:68:dc:64:69:59: 96:f0:92:f0:04:59:f7:37:d3:34:6a:3a:41:7f:26: 6b:54:d9:b3:a0:00:aa:95:88:db:02:7e:5e:7b:42: 9b:fc:74:b6:89:a7:f9:78:42:00:a2:af:e0:d0:88: f5:52:06:55:31:42:9d:b9:c1:f6:10:9a:03:a4:38: 4f:e9:95:7a:39:dd:55:2c:6f:8c:78:84:89:5e:f2: 1b:44:e1:98:bf:ac:55:76:53:14:7c:76:f2:be:48: 29:38:08:7a:1c:86:11:50:a0:f0:ef:96:e3:b6:52: 2f:38:e9:1c:f5:1b:e8:87:8f:d3:6e:14:0f:e7:00: 73:94:51:be:fd:f8:b9:90:cf:0b:48:ac:f4:cd:de: 5c:1b:a4:32:30:9c:39:7f:f9:6f:84:7f:fd:b4:bd: f1:15:0a:df:d4:77:62:bd:24:8a:b6:0f:6e:e3:57: 68:86:c7:5c:52:47:37:b1:78:00:75:99:6a:3d:3c: ac:79:4a:a0:36:50:05:88:40:80:da:01:ec:f3:15: fd:2f:7b:22:77:82:50:21:17:8a:c9:51:fb:f1:33: 60:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C9:9E:45:79:67:B9:92:9B:2E:DE:79:79:72:8B:0F:E2:63:9A:D9 X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/kcmeRXlnuZKbLt55eXKLD-Jjmtk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 329278 sbgp-ipAddrBlock: critical IPv4: 102.212.244.0/22 IPv6: 2c0f:4440::/32 Signature Algorithm: sha256WithRSAEncryption 90:cb:60:af:ef:8b:90:b1:37:f0:7a:65:db:2d:e5:0e:b0:dd: 24:cb:01:63:24:18:eb:4c:31:95:d2:af:84:bc:ad:6b:28:c3: 14:96:62:7a:96:f5:cc:00:94:7b:b0:4a:20:d7:18:33:87:69: 3e:fe:c1:e9:99:49:1b:bc:0e:f0:e2:05:11:d6:3f:40:17:7d: d0:83:22:e7:ba:e4:83:e3:fc:50:31:1b:96:dc:20:ae:cc:ea: 50:6d:76:94:04:e8:39:72:2b:1d:2e:10:23:7a:ba:38:74:25: aa:ea:4f:c2:17:e2:e2:b5:8e:99:0e:bf:9b:11:bd:04:08:eb: a1:f8:7b:6b:e1:50:8c:0a:e6:74:59:3d:15:82:12:e5:d3:4e: b8:1b:4c:55:5e:12:43:d9:b1:49:b4:87:7f:7c:56:e6:38:02: 80:2d:03:2e:cc:85:b3:be:51:30:e4:75:fd:16:8e:ac:62:89: a9:5a:12:25:5a:af:d5:dd:84:47:d2:cc:b3:d4:22:21:37:90: 63:0f:3f:54:fb:71:9b:b9:3c:51:75:7f:60:7c:bb:dc:68:c0: 17:47:55:04:e3:15:71:a3:9d:78:09:8e:d2:12:9d:fe:72:8e: 96:92:81:fa:c5:4a:4a:8f:78:fb:9b:dd:c5:28:c9:92:e9:7f: 4a:02:36:bb -----BEGIN CERTIFICATE----- MIIGJTCCBQ2gAwIBAgICPP8wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMzQ1NDFaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNkFFMjE5QUYxMTAvBgNVBAUTKDkxQzk5RTQ1Nzk2N0I5OTI5QjJFREU3 OTc5NzI4QjBGRTI2MzlBRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVu1NkeAW0GvS5/ubqwKah1Z9MchlV6noC4fZ1JQNkm40NXIqTn71o3GRpWZbw kvAEWfc30zRqOkF/JmtU2bOgAKqViNsCfl57Qpv8dLaJp/l4QgCir+DQiPVSBlUx Qp25wfYQmgOkOE/plXo53VUsb4x4hIle8htE4Zi/rFV2UxR8dvK+SCk4CHochhFQ oPDvluO2Ui846Rz1G+iHj9NuFA/nAHOUUb79+LmQzwtIrPTN3lwbpDIwnDl/+W+E f/20vfEVCt/Ud2K9JIq2D27jV2iGx1xSRzexeAB1mWo9PKx5SqA2UAWIQIDaAezz Ff0veyJ3glAhF4rJUfvxM2DvAgMBAAGjggMaMIIDFjAdBgNVHQ4EFgQUkcmeRXln uZKbLt55eXKLD+JjmtkwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZBRTIxOS81MkJBQzNEODIzMTAx MUVGOTI4NzFGM0E3RERDMjRDMi8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2QUUyMTkvNTJCQUMzRDgyMzEwMTFFRjkyODcxRjNBN0REQzI0QzIva2NtZVJY bG51WktiTHQ1NWVYS0xELUpqbXRrLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF AgMFBj4wLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJm1PQwDQQCAAIwBwMF ACwPREAwDQYJKoZIhvcNAQELBQADggEBAJDLYK/vi5CxN/B6Zdst5Q6w3STLAWMk GOtMMZXSr4S8rWsowxSWYnqW9cwAlHuwSiDXGDOHaT7+wemZSRu8DvDiBRHWP0AX fdCDIue65IPj/FAxG5bcIK7M6lBtdpQE6DlyKx0uECN6ujh0JarqT8IX4uK1jpkO v5sRvQQI66H4e2vhUIwK5nRZPRWCEuXTTrgbTFVeEkPZsUm0h398VuY4AoAtAy7M hbO+UTDkdf0WjqxiialaEiVar9XdhEfSzLPUIiE3kGMPP1T7cZu5PFF1f2B8u9xo wBdHVQTjFXGjnXgJjtISnf5yjpaSgfrFSkqPePub3cUoyZLpf0oCNrs= -----END CERTIFICATE-----Generated at Sun Jan 11 07:48:25 2026 by rpki-client