This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Py4lhz-TCj4vdaXCxhVisCIN5ls.cer File: Py4lhz-TCj4vdaXCxhVisCIN5ls.cer (raw, json) Hash identifier: rur3mQTXAyRHbFnQb+UZWxjVVathp2OvzsoiT6Lsov0= Subject key identifier: 3F:2E:25:87:3F:93:0A:3E:2F:75:A5:C2:C6:15:62:B0:22:0D:E6:5B Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3A1F Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/Py4lhz-TCj4vdaXCxhVisCIN5ls.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 01:58:56 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 37718 AS: 328091 IP: 196.49.38.0/24 IP: 196.60.6.0/23 IP: 2001:43f8:d70::/47 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Tue 27 Jan 2026 00:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14879 (0x3a1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 01:58:56 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F365F31BAF, serialNumber=3F2E25873F930A3E2F75A5C2C61562B0220DE65B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8a:0a:4f:4f:76:e4:ba:39:b3:55:f6:c9:74: a4:33:1c:43:96:e3:9e:f9:fe:2b:83:5a:98:f5:63: 31:48:c6:1b:b9:6c:57:b7:33:33:d6:96:18:99:38: 54:b5:18:8f:3d:59:4f:cf:e6:22:78:e8:fc:a3:e3: 58:19:d0:59:76:98:4e:4b:52:c3:1f:40:34:1c:a4: 8b:86:44:9c:be:33:b7:5c:c6:3f:6d:75:c3:0e:7c: 51:b7:42:3d:5a:af:5a:c9:9d:a4:ca:ca:a4:25:11: b3:d0:d5:5d:03:e7:f9:9b:da:a5:a0:47:ee:24:37: 9a:01:e8:99:69:42:cd:29:05:dc:a8:b3:41:75:11: 7c:09:74:8a:a0:bf:2e:92:a2:11:7e:e7:dc:1c:c9: ad:18:76:21:9c:97:1b:c6:75:10:29:b7:06:d6:4c: df:d9:42:4a:ac:4e:61:d1:76:5d:6c:67:81:b1:90: 2a:fe:b8:72:b5:48:2a:21:21:ae:66:a6:f6:4a:bc: 1b:6f:06:37:d5:ad:ba:68:32:a1:69:e0:90:d5:b3: 7f:b4:90:a7:09:98:e1:6b:6b:e8:78:28:db:d8:df: bc:91:68:50:bf:8d:95:c1:d6:17:a3:f7:38:bc:01: 74:ef:28:3b:88:3b:a0:d1:10:ab:6f:69:57:42:09: 7f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2E:25:87:3F:93:0A:3E:2F:75:A5:C2:C6:15:62:B0:22:0D:E6:5B X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/Py4lhz-TCj4vdaXCxhVisCIN5ls.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 37718 328091 sbgp-ipAddrBlock: critical IPv4: 196.49.38.0/24 196.60.6.0/23 IPv6: 2001:43f8:d70::/47 Signature Algorithm: sha256WithRSAEncryption a5:36:c2:af:58:7d:54:35:14:8d:db:7c:c5:09:23:af:72:16: a6:80:1b:c2:4a:1d:94:15:c6:a5:c4:f9:cf:29:9a:58:6e:a1: 48:7f:a1:3e:8e:2b:04:fa:b8:ce:1d:35:4f:6e:6c:42:12:bb: c8:2f:d7:99:07:92:e7:cf:38:94:fa:20:1b:7b:61:87:7d:38: 0f:54:a7:b3:68:c4:69:1b:05:64:7e:d0:2c:c0:c0:89:16:70: be:8b:9c:a4:00:6f:76:db:3d:f2:ac:56:7f:f2:70:4a:6a:66: 7e:7b:44:75:72:5a:ba:ba:d6:59:7b:39:81:66:12:0b:e4:f3: 97:ff:02:a3:47:7b:75:3c:1e:13:21:5a:94:d8:7d:1d:90:0f: f9:cc:65:ea:9b:e0:52:f5:81:6f:c9:d3:80:d2:9f:d1:f3:28: fe:7c:97:89:6a:dd:fa:17:fc:0c:37:c7:43:12:f4:49:c6:d7: 43:77:7c:27:4b:46:1b:9b:ff:e2:24:a8:4e:22:37:61:a6:2b: 94:ab:4d:8a:88:5c:4d:8c:25:2f:93:74:8f:2e:90:ec:ae:fd: 7d:e4:b7:38:d0:b6:f9:87:a7:75:a6:f7:13:80:b3:a0:91:70: ef:f4:80:28:62:d1:c2:ac:09:13:50:39:49:ff:d4:1f:81:2a: 88:68:00:83 -----BEGIN CERTIFICATE----- MIIGMjCCBRqgAwIBAgICOh8wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMTU4NTZaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNjVGMzFCQUYxMTAvBgNVBAUTKDNGMkUyNTg3M0Y5MzBBM0UyRjc1QTVD MkM2MTU2MkIwMjIwREU2NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrigpPT3bkujmzVfbJdKQzHEOW4575/iuDWpj1YzFIxhu5bFe3MzPWlhiZOFS1 GI89WU/P5iJ46Pyj41gZ0Fl2mE5LUsMfQDQcpIuGRJy+M7dcxj9tdcMOfFG3Qj1a r1rJnaTKyqQlEbPQ1V0D5/mb2qWgR+4kN5oB6JlpQs0pBdyos0F1EXwJdIqgvy6S ohF+59wcya0YdiGclxvGdRAptwbWTN/ZQkqsTmHRdl1sZ4GxkCr+uHK1SCohIa5m pvZKvBtvBjfVrbpoMqFp4JDVs3+0kKcJmOFra+h4KNvY37yRaFC/jZXB1hej9zi8 AXTvKDuIO6DREKtvaVdCCX+zAgMBAAGjggMnMIIDIzAdBgNVHQ4EFgQUPy4lhz+T Cj4vdaXCxhVisCIN5lswHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY1RjMxQi9ENTJDMTg0QTk3MzMx MUVEQjQyMzQ0OERGMTIyMjQ2OC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2NUYzMUIvRDUyQzE4NEE5NzMzMTFFREI0MjM0NDhERjEyMjI0NjgvUHk0bGh6 LVRDajR2ZGFYQ3hoVmlzQ0lONWxzLm1mdDAfBggrBgEFBQcBCAEB/wQQMA6gDDAK AgMAk1YCAwUBmzA2BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEAMQxJgMEAcQ8 BjAPBAIAAjAJAwcBIAFD+A1wMA0GCSqGSIb3DQEBCwUAA4IBAQClNsKvWH1UNRSN 23zFCSOvchamgBvCSh2UFcalxPnPKZpYbqFIf6E+jisE+rjOHTVPbmxCErvIL9eZ B5LnzziU+iAbe2GHfTgPVKezaMRpGwVkftAswMCJFnC+i5ykAG922z3yrFZ/8nBK amZ+e0R1clq6utZZezmBZhIL5POX/wKjR3t1PB4TIVqU2H0dkA/5zGXqm+BS9YFv ydOA0p/R8yj+fJeJat36F/wMN8dDEvRJxtdDd3wnS0Ybm//iJKhOIjdhpiuUq02K iFxNjCUvk3SPLpDsrv195Lc40Lb5h6d1pvcTgLOgkXDv9IAoYtHCrAkTUDlJ/9Qf gSqIaACD -----END CERTIFICATE-----Generated at Sun Jan 25 07:28:06 2026 by rpki-client