This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer File: PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer (raw, json) Hash identifier: 9D3/YZ7ZsV15MLDztZrQUcobKxzZXW5BUi7NPu6EWWM= Subject key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3BAF Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:55:33 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 33763 AS: 37096 IP: 41.218.64.0/18 IP: 196.1.28.0/22 IP: 196.216.32.0/19 IP: 197.234.64.0/18 IP: 2c0f:f980::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Tue 27 Jan 2026 00:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15279 (0x3baf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 02:55:33 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1c:4d:2e:cd:23:8e:9d:79:53:30:73:21:82: 52:63:6d:9c:e2:92:02:26:f0:96:c5:47:d6:f4:9b: 83:21:61:d8:e8:d9:23:80:83:46:42:c6:55:48:7b: 28:12:bd:2c:65:ee:cb:3a:b5:3e:67:db:0f:e2:9c: 2f:47:63:a3:ca:6e:27:d5:60:be:2d:02:ee:00:e3: 9b:6c:f1:f1:3a:31:53:3b:12:f5:5f:31:d3:96:91: a9:f0:0d:03:32:2b:cf:19:27:25:70:c0:3c:78:93: d7:28:c7:ea:c0:d0:9f:f7:d0:3d:bc:bb:3d:fd:06: 8f:28:d8:02:1e:ce:3d:78:5a:4a:a7:9d:49:51:87: 76:e6:87:c5:90:fa:6c:9e:d5:5d:0c:17:6a:a1:bc: 4c:2d:7d:d2:fb:d9:b4:58:aa:8c:cf:91:e8:b1:8c: 13:c5:6c:fa:20:ae:0d:d9:ac:73:8e:93:36:57:4e: f5:aa:9a:62:c0:30:94:62:71:8d:94:65:7a:ba:3d: 4c:60:e6:42:7b:94:f4:e2:54:6a:30:5f:fd:51:f7: 04:e7:8c:90:43:0a:d5:3f:0f:b9:bd:c0:3a:a3:7f: 22:33:1c:11:b3:7f:2e:d0:19:29:a4:a8:45:62:3f: 01:79:2d:60:54:47:98:30:da:cb:0a:f2:49:46:ee: b8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 33763 37096 sbgp-ipAddrBlock: critical IPv4: 41.218.64.0/18 196.1.28.0/22 196.216.32.0/19 197.234.64.0/18 IPv6: 2c0f:f980::/32 Signature Algorithm: sha256WithRSAEncryption 25:a2:57:48:97:be:b4:75:1c:d2:54:32:90:13:70:7a:59:97: 4a:c4:a3:ca:33:dd:ad:c0:2b:58:8f:ac:a7:2e:4a:5a:28:3b: 6d:85:92:cc:66:69:10:00:6a:05:92:c8:5d:93:fd:24:dd:cb: 49:c5:52:c6:2f:2f:70:02:28:dc:21:01:3a:a7:ec:d2:76:33: db:00:18:f3:e7:92:eb:f3:60:b4:29:7d:45:a5:73:58:b3:57: f9:14:25:d7:50:b7:8b:bd:4f:ae:d8:03:fc:64:c6:3f:ab:43: 78:80:71:27:45:e8:79:04:d0:02:e5:94:ca:2a:ce:c2:98:0a: 1f:d5:0d:f4:b8:33:c2:8d:21:b9:98:55:71:25:ff:7f:55:1c: 55:29:10:d6:c0:25:d4:69:f0:04:f5:e7:d0:8d:23:73:7d:31: cf:67:4f:56:aa:b8:64:82:a9:fc:3c:9d:bb:28:c9:40:ac:eb: be:80:be:12:ca:58:8a:17:ba:25:da:11:8b:8d:5d:8d:c1:e6: 95:45:66:e7:60:e4:80:a3:b6:c3:36:d4:2c:94:93:f4:c8:fa: 5b:9d:72:94:1b:7d:6d:54:05:fc:64:6f:84:a9:7e:75:af:27: 59:8d:1a:51:32:cc:c1:24:dc:19:3d:fc:25:1a:0a:0f:7c:5b: 07:6d:80:aa -----BEGIN CERTIFICATE----- MIIGPDCCBSSgAwIBAgICO68wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMjU1MzNaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNjg4NkIzQUYxMTAvBgNVBAUTKDNENkVEOTA1MDM3QzgzQzU3Mzc4MEIw Q0NEQzcwRDVEOENFRjAzOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyHE0uzSOOnXlTMHMhglJjbZzikgIm8JbFR9b0m4MhYdjo2SOAg0ZCxlVIeygS vSxl7ss6tT5n2w/inC9HY6PKbifVYL4tAu4A45ts8fE6MVM7EvVfMdOWkanwDQMy K88ZJyVwwDx4k9cox+rA0J/30D28uz39Bo8o2AIezj14WkqnnUlRh3bmh8WQ+mye 1V0MF2qhvEwtfdL72bRYqozPkeixjBPFbPogrg3ZrHOOkzZXTvWqmmLAMJRicY2U ZXq6PUxg5kJ7lPTiVGowX/1R9wTnjJBDCtU/D7m9wDqjfyIzHBGzfy7QGSmkqEVi PwF5LWBUR5gw2ssK8klG7rjbAgMBAAGjggMxMIIDLTAdBgNVHQ4EFgQUPW7ZBQN8 g8VzeAsMzccNXYzvA4swHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4ODZCMy8zNTM1Q0ExQUI4RUYx MUVEQTlCMzQxREFGMTIyMjQ2OC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2ODg2QjMvMzUzNUNBMUFCOEVGMTFFREE5QjM0MURBRjEyMjI0NjgvUFc3WkJR TjhnOFZ6ZUFzTXpjY05YWXp2QTRzLm1mdDAfBggrBgEFBQcBCAEB/wQQMA6gDDAK AgMAg+MCAwCQ6DBABggrBgEFBQcBBwEB/wQxMC8wHgQCAAEwGAMEBinaQAMEAsQB HAMEBcTYIAMEBsXqQDANBAIAAjAHAwUALA/5gDANBgkqhkiG9w0BAQsFAAOCAQEA JaJXSJe+tHUc0lQykBNwelmXSsSjyjPdrcArWI+spy5KWig7bYWSzGZpEABqBZLI XZP9JN3LScVSxi8vcAIo3CEBOqfs0nYz2wAY8+eS6/NgtCl9RaVzWLNX+RQl11C3 i71PrtgD/GTGP6tDeIBxJ0XoeQTQAuWUyirOwpgKH9UN9Lgzwo0huZhVcSX/f1Uc VSkQ1sAl1GnwBPXn0I0jc30xz2dPVqq4ZIKp/DyduyjJQKzrvoC+EspYihe6JdoR i41djcHmlUVm52DkgKO2wzbULJST9Mj6W51ylBt9bVQF/GRvhKl+da8nWY0aUTLM wSTcGT38JRoKD3xbB22Aqg== -----END CERTIFICATE-----Generated at Sun Jan 25 09:07:20 2026 by rpki-client