This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/KSWEoez-KvMJMi1y5i2NXGpe968.cer File: KSWEoez-KvMJMi1y5i2NXGpe968.cer (raw, json) Hash identifier: TkDG0sLjLuiLBvTuaOc91mkCPnmnrYI0Ohqw/wdlB3Y= Subject key identifier: 29:25:84:A1:EC:FE:2A:F3:09:32:2D:72:E6:2D:8D:5C:6A:5E:F7:AF Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3947 Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/KSWEoez-KvMJMi1y5i2NXGpe968.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 01:24:56 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 329206 IP: 102.207.60.0/22 IP: 102.209.20.0/22 IP: 102.213.4.0/22 IP: 2c0f:7580::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Tue 27 Jan 2026 00:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14663 (0x3947) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 01:24:56 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F364791EAF, serialNumber=292584A1ECFE2AF309322D72E62D8D5C6A5EF7AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a0:47:bb:ff:b3:91:b7:e6:49:81:2e:e1:35: 34:71:1c:80:9f:f8:0d:79:49:8b:59:6b:75:4b:6d: bd:e9:e3:bb:f8:f0:49:4b:4b:cc:02:91:4d:05:06: bb:43:e5:5e:14:ca:98:39:13:c3:74:0e:49:15:c6: e0:58:7f:50:48:0d:66:da:58:85:11:a0:f4:0d:86: 9e:2b:28:e3:d0:cd:b9:91:b4:6c:a0:fd:47:f9:21: 39:d1:7e:16:89:00:b0:6a:ad:2c:81:bf:12:78:c0: e3:08:e1:aa:be:ef:b4:53:c2:e2:ee:39:e4:e4:34: c6:67:06:ae:43:28:a5:ac:fd:a4:b2:06:80:88:91: 24:bf:72:8d:ac:8c:1e:9f:4d:4f:e3:04:88:c8:69: 18:e0:03:45:a3:c0:56:0b:27:58:0b:7f:26:51:44: e4:91:2f:62:a7:c7:23:c7:b7:b4:6a:03:50:e6:03: e2:14:6b:ad:97:19:78:af:16:36:d2:97:5d:58:48: 38:43:e6:74:55:58:28:a9:ed:31:f4:7d:b8:e7:9e: a3:29:de:f8:1e:8f:7e:c9:a0:dd:f5:07:fa:12:2d: 46:ab:8a:01:75:0b:6e:72:61:6f:34:42:fa:85:1b: b3:eb:24:6c:b9:32:85:92:87:af:1c:82:4f:59:48: ff:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:25:84:A1:EC:FE:2A:F3:09:32:2D:72:E6:2D:8D:5C:6A:5E:F7:AF X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/KSWEoez-KvMJMi1y5i2NXGpe968.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 329206 sbgp-ipAddrBlock: critical IPv4: 102.207.60.0/22 102.209.20.0/22 102.213.4.0/22 IPv6: 2c0f:7580::/32 Signature Algorithm: sha256WithRSAEncryption 7e:7c:52:93:84:1f:8a:d8:60:0f:97:b6:63:bb:b6:bf:62:f9: a0:ef:fc:3e:90:e9:51:5b:2e:80:4d:01:fc:bd:07:4e:6f:77: ab:da:90:e2:de:c3:0e:75:1c:cd:0f:55:0a:84:9a:8a:da:88: 91:a2:12:9f:39:a0:77:02:7c:56:12:83:cf:ab:d9:70:c3:0e: 0e:eb:09:80:cd:4f:14:ad:52:dd:81:93:a2:c7:33:e2:9f:ef: d1:82:51:ab:88:61:f5:55:4a:8f:8e:c3:4e:af:59:f1:33:6b: 79:d4:b7:89:0b:25:3c:7e:61:45:c7:4d:1d:42:c6:27:4f:84: 79:e8:b8:db:63:b6:30:55:16:af:f2:f7:04:10:84:ea:6f:1e: 03:73:65:63:d7:a1:ee:d9:ab:65:78:90:25:b1:c1:c2:98:10: 6e:0e:26:07:0a:c4:7d:c3:8f:83:86:44:b5:66:7f:fb:ff:93: 3c:da:9a:f6:37:a0:c0:e3:7e:b6:6f:ad:fb:21:cc:84:e9:c8: 74:a6:56:c3:14:3c:8f:01:85:49:e4:a3:26:91:d8:3b:a4:b3: 2b:7e:e8:d0:90:2c:92:93:2d:44:c0:ee:25:53:5a:9d:1f:a6: d3:57:23:b6:9f:6c:28:61:24:62:be:7e:0b:d7:c9:f3:29:ee: cf:c0:ad:69 -----BEGIN CERTIFICATE----- MIIGMTCCBRmgAwIBAgICOUcwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMTI0NTZaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNjQ3OTFFQUYxMTAvBgNVBAUTKDI5MjU4NEExRUNGRTJBRjMwOTMyMkQ3 MkU2MkQ4RDVDNkE1RUY3QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCroEe7/7ORt+ZJgS7hNTRxHICf+A15SYtZa3VLbb3p47v48ElLS8wCkU0FBrtD 5V4Uypg5E8N0DkkVxuBYf1BIDWbaWIURoPQNhp4rKOPQzbmRtGyg/Uf5ITnRfhaJ ALBqrSyBvxJ4wOMI4aq+77RTwuLuOeTkNMZnBq5DKKWs/aSyBoCIkSS/co2sjB6f TU/jBIjIaRjgA0WjwFYLJ1gLfyZRROSRL2KnxyPHt7RqA1DmA+IUa62XGXivFjbS l11YSDhD5nRVWCip7TH0fbjnnqMp3vgej37JoN31B/oSLUarigF1C25yYW80QvqF G7PrJGy5MoWSh68cgk9ZSP9xAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUKSWEoez+ KvMJMi1y5i2NXGpe968wHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY0NzkxRS83RUMzRjYzNjJGODUx MUVFQTgzOTc2NzI0QUQ5RTZGQy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2NDc5MUUvN0VDM0Y2MzYyRjg1MTFFRUE4Mzk3NjcyNEFEOUU2RkMvS1NXRW9l ei1Ldk1KTWkxeTVpMk5YR3BlOTY4Lm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF AgMFBfYwOgYIKwYBBQUHAQcBAf8EKzApMBgEAgABMBIDBAJmzzwDBAJm0RQDBAJm 1QQwDQQCAAIwBwMFACwPdYAwDQYJKoZIhvcNAQELBQADggEBAH58UpOEH4rYYA+X tmO7tr9i+aDv/D6Q6VFbLoBNAfy9B05vd6vakOLeww51HM0PVQqEmoraiJGiEp85 oHcCfFYSg8+r2XDDDg7rCYDNTxStUt2Bk6LHM+Kf79GCUauIYfVVSo+Ow06vWfEz a3nUt4kLJTx+YUXHTR1CxidPhHnouNtjtjBVFq/y9wQQhOpvHgNzZWPXoe7Zq2V4 kCWxwcKYEG4OJgcKxH3Dj4OGRLVmf/v/kzzamvY3oMDjfrZvrfshzITpyHSmVsMU PI8BhUnkoyaR2Duksyt+6NCQLJKTLUTA7iVTWp0fptNXI7afbChhJGK+fgvXyfMp 7s/ArWk= -----END CERTIFICATE-----Generated at Sun Jan 25 07:28:47 2026 by rpki-client