This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/bynJvMAklSDlBwZp-vZmUm98jzA.cer File: bynJvMAklSDlBwZp-vZmUm98jzA.cer (raw, json) Hash identifier: 48HpkA2xVe1po/4zte4zm57TDXGBkFxyvNFS1bmsdbY= Subject key identifier: 6F:29:C9:BC:C0:24:95:20:E5:07:06:69:FA:F6:66:52:6F:7C:8F:30 Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45 Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545 Certificate serial: 10F8 Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36D289C/12FAB962A87511E99285C745F8AEA228/bynJvMAklSDlBwZp-vZmUm98jzA.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36D289C/12FAB962A87511E99285C745F8AEA228/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:53:28 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 80.95.0.0/21 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Wed 28 Jan 2026 00:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4344 (0x10f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=RIPETOAFRINIC, serialNumber=7F7AC180897983E29E937C0A187803C072755545 Validity Not Before: Jan 1 00:53:28 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F36D289CRI, serialNumber=6F29C9BCC0249520E5070669FAF666526F7C8F30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:dc:1d:30:2e:77:87:ef:43:66:61:16:ee:a3: f2:69:ab:7a:1c:c1:4c:aa:73:19:a5:b5:de:cb:23: 04:95:cf:19:4f:18:f7:b0:6b:6c:8c:14:c1:9e:b0: 24:eb:c0:02:98:25:29:21:7d:d0:26:5e:3d:02:7c: c8:61:50:67:c3:6a:47:97:4e:14:aa:c8:56:78:20: 9e:74:29:1a:d7:60:ca:07:2d:66:c8:28:b2:f5:13: 94:f9:db:c8:55:ea:da:2c:f7:6c:af:33:e1:65:a7: b2:50:82:9a:0c:66:d3:29:29:c7:8f:df:f5:e8:bc: fb:86:b7:e2:76:a0:39:1a:b2:ba:19:cd:ca:e5:e2: 47:ea:b1:6f:3c:22:f1:ae:13:4d:de:62:36:59:80: 0d:a6:60:b5:da:76:8e:35:13:ff:57:39:ef:1b:ad: df:37:0a:0e:e9:bb:77:f9:17:46:f4:11:d8:06:53: 1c:f8:f1:c8:78:49:cb:c6:fd:7a:8d:32:6b:92:8b: 3a:50:0a:0f:63:e4:17:e1:f3:7c:06:7a:7a:ba:6e: da:9c:3a:4b:e2:94:f7:00:17:7c:c9:e7:e4:71:7c: 51:bf:f9:f0:56:41:26:39:19:03:0e:4f:d8:e6:32: 54:3a:70:22:9b:5a:77:6e:4e:ce:d2:c2:7d:d8:68: c6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:29:C9:BC:C0:24:95:20:E5:07:06:69:FA:F6:66:52:6F:7C:8F:30 X509v3 Authority Key Identifier: keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D289C/12FAB962A87511E99285C745F8AEA228/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D289C/12FAB962A87511E99285C745F8AEA228/bynJvMAklSDlBwZp-vZmUm98jzA.mft sbgp-ipAddrBlock: critical IPv4: 80.95.0.0/21 Signature Algorithm: sha256WithRSAEncryption 41:a8:67:da:de:25:53:26:f4:db:66:f8:79:1c:00:35:24:70: 2d:0e:12:fe:b8:37:71:c6:13:ac:59:2d:0b:f4:11:b8:81:0a: 2c:db:47:03:b2:6b:4b:4f:40:97:ca:07:83:8f:5f:94:c7:f3: f8:2d:4b:10:02:7e:da:20:fd:49:ab:40:32:8f:19:85:13:cb: da:c2:93:26:85:98:df:e8:34:63:37:e1:7f:ad:28:10:df:28: d1:74:db:0d:d0:e2:dd:f6:06:17:c5:33:d0:91:21:1d:18:a9: b9:f2:fb:5d:00:f3:34:6c:5c:66:09:38:0f:71:6e:de:20:68: 13:17:33:5c:f6:5b:78:0c:8b:5e:f3:64:82:fe:f4:2c:31:6f: 7c:fe:e2:22:7f:07:f3:d8:56:cf:a4:d5:18:a5:18:f2:cf:b2: 55:6e:4b:ac:42:e3:f8:02:03:46:a3:cf:31:9c:b3:7b:75:5d: 93:4c:59:79:c9:70:27:df:5b:8c:19:1d:08:9b:87:c4:b3:5c: 55:2c:54:53:5c:6c:c2:34:3b:bd:9f:27:53:56:ec:71:a4:94: 3f:80:1e:f2:b7:cc:10:09:7b:94:88:f5:e8:b9:81:ff:46:81: 71:03:5e:27:99:33:da:3e:55:d6:43:2a:54:84:43:fc:dd:98: 31:f5:a5:df -----BEGIN CERTIFICATE----- MIIGAjCCBOqgAwIBAgICEPgwDQYJKoZIhvcNAQELBQAwSzEWMBQGA1UEAxMNUklQ RVRPQUZSSU5JQzExMC8GA1UEBRMoN0Y3QUMxODA4OTc5ODNFMjlFOTM3QzBBMTg3 ODAzQzA3Mjc1NTU0NTAeFw0yNjAxMDEwMDUzMjhaFw0yNzAzMzEwMDAwMDBaMEgx EzARBgNVBAMTCkYzNkQyODlDUkkxMTAvBgNVBAUTKDZGMjlDOUJDQzAyNDk1MjBF NTA3MDY2OUZBRjY2NjUyNkY3QzhGMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCX3B0wLneH70NmYRbuo/Jpq3ocwUyqcxmltd7LIwSVzxlPGPewa2yM FMGesCTrwAKYJSkhfdAmXj0CfMhhUGfDakeXThSqyFZ4IJ50KRrXYMoHLWbIKLL1 E5T528hV6tos92yvM+Flp7JQgpoMZtMpKceP3/XovPuGt+J2oDkasroZzcrl4kfq sW88IvGuE03eYjZZgA2mYLXado41E/9XOe8brd83Cg7pu3f5F0b0EdgGUxz48ch4 ScvG/XqNMmuSizpQCg9j5Bfh83wGenq6btqcOkvilPcAF3zJ5+RxfFG/+fBWQSY5 GQMOT9jmMlQ6cCKbWnduTs7Swn3YaMZ5AgMBAAGjggLxMIIC7TAdBgNVHQ4EFgQU bynJvMAklSDlBwZp+vZmUm98jzAwHwYDVR0jBBgwFoAUf3rBgIl5g+Kek3wKGHgD wHJ1VUUwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wWQYDVR0fBFIw UDBOoEygSoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvcmlw ZS9mM3JCZ0lsNWctS2VrM3dLR0hnRHdISjFWVVUuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRv cnkvMDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvcmlwZS10by1hZnJp bmljLmNlcjBPBgNVHSABAf8ERTBDMEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEW J2h0dHBzOi8vcnBraS5hZnJpbmljLm5ldC9wb2xpY3kvQ1BTLnBkZjCCAUUGCCsG AQUFBwELBIIBNzCCATMwbAYIKwYBBQUHMAWGYHJzeW5jOi8vcnBraS5hZnJpbmlj Lm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5L0YzNkQyODlDLzEyRkFC OTYyQTg3NTExRTk5Mjg1Qzc0NUY4QUVBMjI4LzA1BggrBgEFBQcwDYYpaHR0cHM6 Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgYsGCCsGAQUFBzAK hn9yc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVw b3NpdG9yeS9GMzZEMjg5Qy8xMkZBQjk2MkE4NzUxMUU5OTI4NUM3NDVGOEFFQTIy OC9ieW5Kdk1Ba2xTRGxCd1pwLXZabVVtOThqekEubWZ0MB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQDUF8AMA0GCSqGSIb3DQEBCwUAA4IBAQBBqGfa3iVTJvTb Zvh5HAA1JHAtDhL+uDdxxhOsWS0L9BG4gQos20cDsmtLT0CXygeDj1+Ux/P4LUsQ An7aIP1Jq0AyjxmFE8vawpMmhZjf6DRjN+F/rSgQ3yjRdNsN0OLd9gYXxTPQkSEd GKm58vtdAPM0bFxmCTgPcW7eIGgTFzNc9lt4DIte82SC/vQsMW98/uIifwfz2FbP pNUYpRjyz7JVbkusQuP4AgNGo88xnLN7dV2TTFl5yXAn31uMGR0Im4fEs1xVLFRT XGzCNDu9nydTVuxxpJQ/gB7yt8wQCXuUiPXouYH/RoFxA14nmTPaPlXWQypUhEP8 3Zgx9aXf -----END CERTIFICATE-----Generated at Mon Jan 26 17:28:15 2026 by rpki-client