This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/U8Hm1J_Vpk57YAHyLj-kLHDbo04.cer File: U8Hm1J_Vpk57YAHyLj-kLHDbo04.cer (raw, json) Hash identifier: FvUimpVdCg+opV+vVcy4Gy9CLqk70dk6MAZMdMJQaDQ= Subject key identifier: 53:C1:E6:D4:9F:D5:A6:4E:7B:60:01:F2:2E:3F:A4:2C:70:DB:A3:4E Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3B58 Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3680B36/F5EDFAE6DFD611F09ABD8DD4DAE4EC9C/U8Hm1J_Vpk57YAHyLj-kLHDbo04.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3680B36/F5EDFAE6DFD611F09ABD8DD4DAE4EC9C/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:43:43 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 36926 IP: 41.223.56.0/22 IP: 102.0.0.0/13 IP: 102.216.68.0/22 IP: 105.230.0.0/15 IP: 154.76.0.0/14 IP: 154.152.0.0/13 IP: 2c0f:e9c8::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Tue 27 Jan 2026 00:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15192 (0x3b58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 02:43:43 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F3680B36AF, serialNumber=53C1E6D49FD5A64E7B6001F22E3FA42C70DBA34E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3d:43:1c:d8:a2:c7:c6:24:ad:72:fb:7b:20: be:f1:73:13:9a:51:32:02:a2:84:03:5a:1e:a8:cd: 8a:e4:20:2d:61:f6:8b:85:ec:35:20:b6:e0:d1:99: 9e:1b:99:29:62:db:c6:f3:5a:48:5b:36:0a:1f:0a: 58:b8:7d:eb:4f:e5:35:81:ed:92:0f:10:90:a9:d0: 31:0b:06:95:37:3d:66:6d:9d:50:28:e5:6f:44:93: bd:08:b1:51:41:e9:3c:e4:12:64:fe:36:14:e5:b4: 35:db:6b:b1:c5:e9:59:0b:ae:a0:19:d0:a0:ee:24: 2c:e6:f4:77:87:d9:39:ec:56:df:6e:8b:47:9f:0e: 82:73:e4:c4:64:c6:3c:ed:55:9d:7c:0f:e5:0a:26: f4:28:73:7e:f7:e6:aa:6d:21:07:78:9a:66:e5:e6: 0a:eb:e9:5c:0a:44:b3:96:06:85:bf:3d:0d:d0:de: e5:10:38:58:df:3f:41:1e:6b:b0:b5:f6:60:46:94: ac:f8:db:75:ee:62:a7:92:17:5b:a6:a1:c9:ba:03: 0a:70:97:a3:24:7d:c0:d7:41:f4:a6:02:c5:b8:cd: 01:31:10:7b:2d:04:7f:6a:a1:45:ac:2b:69:ed:13: 7a:0a:8b:84:3b:37:8c:79:8b:53:4b:ae:e3:de:39: ce:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C1:E6:D4:9F:D5:A6:4E:7B:60:01:F2:2E:3F:A4:2C:70:DB:A3:4E X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3680B36/F5EDFAE6DFD611F09ABD8DD4DAE4EC9C/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3680B36/F5EDFAE6DFD611F09ABD8DD4DAE4EC9C/U8Hm1J_Vpk57YAHyLj-kLHDbo04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 36926 sbgp-ipAddrBlock: critical IPv4: 41.223.56.0/22 102.0.0.0/13 102.216.68.0/22 105.230.0.0/15 154.76.0.0/14 154.152.0.0/13 IPv6: 2c0f:e9c8::/32 Signature Algorithm: sha256WithRSAEncryption 54:71:20:65:17:d0:07:03:9f:74:20:83:0f:c7:72:ef:38:ed: 02:e5:29:38:03:da:53:d8:00:d8:55:8d:23:6b:93:f6:84:2a: 5d:48:2a:f5:29:f6:fa:ee:93:bc:19:40:f9:14:37:ee:eb:ed: 66:a3:62:0b:ae:02:3d:e2:f4:f0:0d:bc:28:c2:08:e3:6a:84: bd:c2:41:69:63:ee:ef:ea:68:2c:b5:05:5f:40:7d:66:1e:a4: ab:63:68:0f:77:9a:23:2d:5f:7b:f5:8a:42:a6:00:2a:8c:cc: 29:cd:e2:e0:77:05:0f:0c:32:e1:ac:c7:7b:30:1e:98:5c:8d: e8:8d:ad:4f:18:37:31:4e:f1:29:c5:2b:72:43:29:7b:16:1c: a1:20:c6:e1:fd:bc:53:b5:02:6f:05:5c:52:bf:d1:36:a9:d1: bb:16:84:d0:dc:e8:79:f8:9e:a1:db:e0:23:e5:5f:d5:f6:c1: 1c:7b:a1:f1:dd:d6:6d:cd:7c:41:03:0d:bf:3f:e9:6f:36:7e: a2:9b:39:a6:8a:a9:1a:0b:72:db:bc:81:98:82:a8:80:83:8f: 2e:33:7b:1d:04:75:2d:f7:61:bb:79:94:05:c2:36:32:4c:94: 6f:1b:1c:82:80:85:d2:6d:1b:2f:36:c5:24:f2:d6:f0:e3:35: 99:a0:77:ec -----BEGIN CERTIFICATE----- MIIGPzCCBSegAwIBAgICO1gwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMjQzNDNaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNjgwQjM2QUYxMTAvBgNVBAUTKDUzQzFFNkQ0OUZENUE2NEU3QjYwMDFG MjJFM0ZBNDJDNzBEQkEzNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEPUMc2KLHxiStcvt7IL7xcxOaUTICooQDWh6ozYrkIC1h9ouF7DUgtuDRmZ4b mSli28bzWkhbNgofCli4fetP5TWB7ZIPEJCp0DELBpU3PWZtnVAo5W9Ek70IsVFB 6TzkEmT+NhTltDXba7HF6VkLrqAZ0KDuJCzm9HeH2TnsVt9ui0efDoJz5MRkxjzt VZ18D+UKJvQoc3735qptIQd4mmbl5grr6VwKRLOWBoW/PQ3Q3uUQOFjfP0Eea7C1 9mBGlKz423XuYqeSF1umocm6Awpwl6MkfcDXQfSmAsW4zQExEHstBH9qoUWsK2nt E3oKi4Q7N4x5i1NLruPeOc6zAgMBAAGjggM0MIIDMDAdBgNVHQ4EFgQUU8Hm1J/V pk57YAHyLj+kLHDbo04wHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4MEIzNi9GNUVERkFFNkRGRDYx MUYwOUFCRDhERDREQUU0RUM5Qy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2ODBCMzYvRjVFREZBRTZERkQ2MTFGMDlBQkQ4REQ0REFFNEVDOUMvVThIbTFK X1ZwazU3WUFIeUxqLWtMSERibzA0Lm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF AgMAkD4wSAYIKwYBBQUHAQcBAf8EOTA3MCYEAgABMCADBAIp3zgDAwNmAAMEAmbY RAMDAWnmAwMCmkwDAwOamDANBAIAAjAHAwUALA/pyDANBgkqhkiG9w0BAQsFAAOC AQEAVHEgZRfQBwOfdCCDD8dy7zjtAuUpOAPaU9gA2FWNI2uT9oQqXUgq9Sn2+u6T vBlA+RQ37uvtZqNiC64CPeL08A28KMII42qEvcJBaWPu7+poLLUFX0B9Zh6kq2No D3eaIy1fe/WKQqYAKozMKc3i4HcFDwwy4azHezAemFyN6I2tTxg3MU7xKcUrckMp exYcoSDG4f28U7UCbwVcUr/RNqnRuxaE0NzoefieodvgI+Vf1fbBHHuh8d3Wbc18 QQMNvz/pbzZ+ops5poqpGgty27yBmIKogIOPLjN7HQR1Lfdhu3mUBcI2MkyUbxsc goCF0m0bLzbFJPLW8OM1maB37A== -----END CERTIFICATE-----Generated at Sun Jan 25 04:16:33 2026 by rpki-client