This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer File: I_gUu0fVw67dUQPzb124opvj1x0.cer (raw, json) Hash identifier: f4OPW8iZNsImOP39CE2bMQF/92a+2Zk2I54iOQ8H78Q= Subject key identifier: 23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 387F Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:54:40 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 32653 AS: 37394 IP: 41.77.152.0/21 IP: 41.222.48.0/21 IP: 102.164.121.0/24 IP: 154.72.96.0/20 IP: 2001:43f8:1180::/48 IP: 2c0f:fbf0::/28 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Tue 27 Jan 2026 00:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14463 (0x387f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 00:54:40 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F36D9B5BAF, serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a2:25:82:8f:b8:ba:4b:12:9f:f4:87:a1:4b: 6a:6a:94:ad:2b:8a:7d:fb:a8:e1:6b:b8:ff:0e:17: 47:f5:de:59:a6:53:42:f0:a5:32:ee:18:dd:71:e1: 85:9f:ba:d8:2b:2f:44:bf:7d:3c:e5:ad:3d:3e:d5: 6c:54:cb:50:9a:d1:6e:b1:53:a1:46:a2:a2:f6:d8: f0:54:9c:26:e0:c0:03:74:a1:06:06:07:94:f1:b7: 5c:87:ff:db:99:88:8b:a8:4a:eb:7d:a2:d5:0d:9a: 14:2d:1f:c1:36:97:fb:d2:fe:c4:d6:1c:91:c0:eb: 84:f3:fd:69:66:35:77:ea:2e:87:22:97:c5:64:83: 03:d0:2c:5d:33:b8:4b:4b:4f:95:e3:a2:de:cc:06: 18:f8:d6:bf:17:1a:76:e6:07:e0:1a:7d:ea:47:13: 47:22:31:18:ae:b4:ce:b3:74:c3:fe:b8:4e:69:2d: c3:c2:52:16:4c:80:1a:da:61:40:68:21:86:0e:ac: b0:4f:ca:65:33:fc:1a:1d:e6:4e:b7:88:f6:64:0e: 4a:e6:13:d0:7c:6d:99:4b:23:21:fa:43:d2:c2:6e: 7f:68:38:ba:25:02:83:e3:9f:a9:b3:cf:de:fd:52: 4f:58:59:4b:b1:1d:0f:2f:9c:43:b8:9d:85:c4:55: d3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 32653 37394 sbgp-ipAddrBlock: critical IPv4: 41.77.152.0/21 41.222.48.0/21 102.164.121.0/24 154.72.96.0/20 IPv6: 2001:43f8:1180::/48 2c0f:fbf0::/28 Signature Algorithm: sha256WithRSAEncryption 33:f8:08:95:aa:9c:f5:e2:99:f5:40:a9:3f:eb:ce:d3:9c:58: bb:66:79:4b:9b:11:7c:1a:c4:09:08:3e:4c:0a:a0:dc:e2:18: f9:76:6b:1c:1b:75:95:38:b5:be:5c:10:c0:52:6e:fc:5b:57: 94:fe:3b:b7:34:59:86:d9:47:cd:b0:03:64:a8:16:b8:e8:f0: 9b:38:d6:c8:c5:f0:17:28:d6:dc:85:9f:65:46:39:c6:b1:8b: f8:fa:1c:a3:ac:8d:db:2c:ad:a9:56:62:10:c2:44:d8:32:5d: 25:74:e2:b1:1d:d3:cc:46:99:97:0c:4f:05:ed:b0:8c:32:c5: 1b:f5:67:2d:78:f3:de:d8:ec:b5:4d:a4:4d:93:f3:97:a4:f7: 94:25:88:0f:db:f1:73:20:a4:92:ed:a8:37:7b:67:55:c8:61: 0f:ad:aa:1b:60:da:7e:d7:d6:8a:b8:22:36:71:8b:9c:5d:6d: 87:99:0c:cf:cd:02:8f:f4:f4:8d:bd:a2:a2:3e:07:de:ba:51: 13:f1:02:92:52:88:a6:9b:b6:f2:ce:d4:6d:b0:d7:4c:0d:2d: 00:22:62:24:21:65:ec:99:46:05:f3:5d:a2:97:96:fc:3c:11: 9b:0f:62:4a:3d:29:c9:82:bc:5b:a4:17:4b:40:79:4d:87:a9: e9:72:12:20 -----BEGIN CERTIFICATE----- MIIGRDCCBSygAwIBAgICOH8wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMDU0NDBaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNkQ5QjVCQUYxMTAvBgNVBAUTKDIzRjgxNEJCNDdENUMzQUVERDUxMDNG MzZGNURCOEEyOUJFM0Q3MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCioiWCj7i6SxKf9IehS2pqlK0rin37qOFruP8OF0f13lmmU0LwpTLuGN1x4YWf utgrL0S/fTzlrT0+1WxUy1Ca0W6xU6FGoqL22PBUnCbgwAN0oQYGB5Txt1yH/9uZ iIuoSut9otUNmhQtH8E2l/vS/sTWHJHA64Tz/WlmNXfqLocil8VkgwPQLF0zuEtL T5Xjot7MBhj41r8XGnbmB+AafepHE0ciMRiutM6zdMP+uE5pLcPCUhZMgBraYUBo IYYOrLBPymUz/Bod5k63iPZkDkrmE9B8bZlLIyH6Q9LCbn9oOLolAoPjn6mzz979 Uk9YWUuxHQ8vnEO4nYXEVdPXAgMBAAGjggM5MIIDNTAdBgNVHQ4EFgQUI/gUu0fV w67dUQPzb124opvj1x0wHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZEOUI1Qi85RTFCRDM3ODEzNUEx MUU1QjY4RDQyODZGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2RDlCNUIvOUUxQkQzNzgxMzVBMTFFNUI2OEQ0Mjg2RjhBRUEyMjgvSV9nVXUw ZlZ3NjdkVVFQemIxMjRvcHZqMXgwLm1mdDAeBggrBgEFBQcBCAEB/wQPMA2gCzAJ AgJ/jQIDAJISMEkGCCsGAQUFBwEHAQH/BDowODAeBAIAATAYAwQDKU2YAwQDKd4w AwQAZqR5AwQEmkhgMBYEAgACMBADBwAgAUP4EYADBQQsD/vwMA0GCSqGSIb3DQEB CwUAA4IBAQAz+AiVqpz14pn1QKk/687TnFi7ZnlLmxF8GsQJCD5MCqDc4hj5dmsc G3WVOLW+XBDAUm78W1eU/ju3NFmG2UfNsANkqBa46PCbONbIxfAXKNbchZ9lRjnG sYv4+hyjrI3bLK2pVmIQwkTYMl0ldOKxHdPMRpmXDE8F7bCMMsUb9WctePPe2Oy1 TaRNk/OXpPeUJYgP2/FzIKSS7ag3e2dVyGEPraobYNp+19aKuCI2cYucXW2HmQzP zQKP9PSNvaKiPgfeulET8QKSUoimm7byztRtsNdMDS0AImIkIWXsmUYF812il5b8 PBGbD2JKPSnJgrxbpBdLQHlNh6npchIg -----END CERTIFICATE-----Generated at Sun Jan 25 06:01:52 2026 by rpki-client