This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/LZHJ8lXAmDR0pNTGDo_g7DHut-o.cer File: LZHJ8lXAmDR0pNTGDo_g7DHut-o.cer (raw, json) Hash identifier: yDWPcl7Ny5EhPBF/q5HslmmjcQbc/U1MV5Q9+C41Aeo= Subject key identifier: 2D:91:C9:F2:55:C0:98:34:74:A4:D4:C6:0E:8F:E0:EC:31:EE:B7:EA Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3AF3 Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/LZHJ8lXAmDR0pNTGDo_g7DHut-o.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:29:05 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 37228 AS: 327755 IP: 105.178.0.0/17 IP: 105.179.0.0/19 IP: 2c0f:3880::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Tue 27 Jan 2026 00:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15091 (0x3af3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 02:29:05 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F3675C2BAF, serialNumber=2D91C9F255C0983474A4D4C60E8FE0EC31EEB7EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7a:05:3c:52:d7:af:c0:38:1b:0f:82:80:16: da:ee:11:65:4d:b3:d7:0f:04:27:41:6c:d4:65:d7: 4a:43:fe:25:74:90:f0:c0:2b:27:99:3c:e4:35:65: ab:b3:8d:c1:39:fe:1f:6c:49:72:eb:2b:0e:ce:b5: 0f:ef:bd:0a:2c:4b:73:97:09:4e:36:bc:c8:8d:74: 47:05:76:73:a5:3d:a1:20:8a:78:1e:52:09:1b:02: 93:32:4a:80:c9:60:ab:59:45:36:18:29:a5:6a:a4: fa:9d:08:0f:12:ba:30:7f:b7:0a:b9:bb:25:fc:2a: f6:ec:fa:14:7e:60:29:ae:1e:6e:d1:90:05:13:98: 55:a0:30:bb:c3:dc:5c:6b:2c:46:13:1f:2b:c0:e4: 39:b5:47:0a:f9:59:53:c1:aa:cc:15:d7:ac:2a:11: 92:b4:a7:51:b9:2f:3f:0f:66:c1:9f:01:ea:b4:ef: 46:22:fd:bc:40:9f:92:3d:a5:2b:02:e1:6a:28:a9: 3f:ec:4b:10:72:f9:03:99:36:4e:5a:ed:e9:9c:d0: 93:12:b8:fa:72:e7:2e:b0:1f:4e:35:d4:6c:72:1b: b1:5e:c0:2b:5d:6f:9b:6f:6b:68:0f:2a:84:23:d9: b0:68:f6:15:fc:50:a3:1c:7b:0d:d9:e7:a6:ea:85: 9c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:91:C9:F2:55:C0:98:34:74:A4:D4:C6:0E:8F:E0:EC:31:EE:B7:EA X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/LZHJ8lXAmDR0pNTGDo_g7DHut-o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 37228 327755 sbgp-ipAddrBlock: critical IPv4: 105.178.0.0/17 105.179.0.0/19 IPv6: 2c0f:3880::/32 Signature Algorithm: sha256WithRSAEncryption 87:40:ac:b6:37:e7:cf:73:10:2a:09:f6:b8:fe:1a:81:15:45: bf:96:55:15:a3:c7:ae:b8:f2:dc:82:67:d4:fc:4f:28:15:1d: 47:c7:dd:c3:2f:08:31:8e:54:f3:34:cd:8a:12:b5:b5:3d:bf: 30:fb:44:a0:e4:63:66:c4:39:ac:60:30:8e:0a:b7:b2:a0:5f: be:4a:b3:e5:e5:36:98:56:54:2d:27:97:20:38:97:01:bc:2f: 6d:b0:f4:3d:3b:22:0d:d3:ba:e3:2c:fa:c1:5f:dc:02:9f:da: 60:84:50:1c:67:ee:50:8c:db:27:d5:9e:65:09:66:e1:bd:ab: 05:22:90:02:8a:4a:cb:9b:2e:c9:7f:6f:26:08:73:e8:17:ea: a3:41:49:d0:8c:1b:cc:b4:57:10:5e:8f:bf:a9:aa:d2:31:96: ad:88:09:da:65:1f:3e:86:57:ed:d3:93:b0:0c:2e:56:b1:9b: 10:d6:72:dd:9b:8e:06:8e:b0:80:ff:3e:5e:20:2b:67:ae:0a: 61:e6:51:8e:de:87:cb:e3:ce:98:77:cd:1f:c6:b8:13:49:16: 20:fc:68:6b:b3:ad:d1:67:dd:e9:1f:f9:14:ac:2d:17:f4:28: 84:11:6e:38:dd:12:55:45:b7:90:01:ed:8b:ec:11:45:3c:b2: 03:2a:8d:bd -----BEGIN CERTIFICATE----- MIIGMDCCBRigAwIBAgICOvMwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMjI5MDVaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNjc1QzJCQUYxMTAvBgNVBAUTKDJEOTFDOUYyNTVDMDk4MzQ3NEE0RDRD NjBFOEZFMEVDMzFFRUI3RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3egU8UtevwDgbD4KAFtruEWVNs9cPBCdBbNRl10pD/iV0kPDAKyeZPOQ1Zauz jcE5/h9sSXLrKw7OtQ/vvQosS3OXCU42vMiNdEcFdnOlPaEgingeUgkbApMySoDJ YKtZRTYYKaVqpPqdCA8SujB/twq5uyX8Kvbs+hR+YCmuHm7RkAUTmFWgMLvD3Fxr LEYTHyvA5Dm1Rwr5WVPBqswV16wqEZK0p1G5Lz8PZsGfAeq070Yi/bxAn5I9pSsC 4WooqT/sSxBy+QOZNk5a7emc0JMSuPpy5y6wH0411GxyG7FewCtdb5tva2gPKoQj 2bBo9hX8UKMcew3Z56bqhZzrAgMBAAGjggMlMIIDITAdBgNVHQ4EFgQULZHJ8lXA mDR0pNTGDo/g7DHut+owHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY3NUMyQi9DNjE5NTRBQUI4Mzgx MUVEQjE3MTdCQjFGMTIyMjQ2OC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2NzVDMkIvQzYxOTU0QUFCODM4MTFFREIxNzE3QkIxRjEyMjI0NjgvTFpISjhs WEFtRFIwcE5UR0RvX2c3REh1dC1vLm1mdDAfBggrBgEFBQcBCAEB/wQQMA6gDDAK AgMAkWwCAwUASzA0BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEB2myAAMEBWmz ADANBAIAAjAHAwUALA84gDANBgkqhkiG9w0BAQsFAAOCAQEAh0Cstjfnz3MQKgn2 uP4agRVFv5ZVFaPHrrjy3IJn1PxPKBUdR8fdwy8IMY5U8zTNihK1tT2/MPtEoORj ZsQ5rGAwjgq3sqBfvkqz5eU2mFZULSeXIDiXAbwvbbD0PTsiDdO64yz6wV/cAp/a YIRQHGfuUIzbJ9WeZQlm4b2rBSKQAopKy5suyX9vJghz6Bfqo0FJ0IwbzLRXEF6P v6mq0jGWrYgJ2mUfPoZX7dOTsAwuVrGbENZy3ZuOBo6wgP8+XiArZ64KYeZRjt6H y+POmHfNH8a4E0kWIPxoa7Ot0Wfd6R/5FKwtF/QohBFuON0SVUW3kAHti+wRRTyy AyqNvQ== -----END CERTIFICATE-----Generated at Sun Jan 25 14:06:43 2026 by rpki-client