This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/XKqYLAMXkyYzLWt3CljoeVy4RZ8.cer File: XKqYLAMXkyYzLWt3CljoeVy4RZ8.cer (raw, json) Hash identifier: Ivhrnl0aLa6xOFdPPJqZmNo6mNqWswwjTJ5x7jUDfqU= Subject key identifier: 5C:AA:98:2C:03:17:93:26:33:2D:6B:77:0A:58:E8:79:5C:B8:45:9F Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Certificate serial: 3B0C Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/XKqYLAMXkyYzLWt3CljoeVy4RZ8.mft caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/ Notify URL: https://rrdp.afrinic.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:32:26 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 328633 IP: 102.217.184.0/22 IP: 102.223.104.0/22 IP: 2c0f:e848::/32 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Tue 27 Jan 2026 00:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15116 (0x3b0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFRINIC, serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80 Validity Not Before: Jan 1 02:32:26 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=F3678967AF, serialNumber=5CAA982C03179326332D6B770A58E8795CB8459F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:82:6b:22:64:0a:8a:5c:e8:e1:69:02:e6:1e: 55:78:c7:55:1a:0a:78:98:86:ef:71:53:e7:83:6b: df:ad:b1:26:9f:95:71:7c:c6:da:fa:41:9e:c9:d9: f5:5d:55:e3:e5:4e:ca:81:51:68:96:dc:b2:9b:ea: 10:1b:da:ee:65:5b:f0:c8:29:a3:7e:42:76:f5:74: f7:06:b1:5f:83:b0:02:9b:33:44:a5:46:ef:ad:03: 1d:29:a1:14:35:47:09:d3:09:3a:2c:e0:96:19:b0: 88:f7:45:d7:63:98:24:e1:13:f6:7b:2f:3b:23:88: 20:76:19:85:62:c7:a1:f9:92:8a:44:da:a1:f8:07: 05:9f:2c:9e:51:54:33:21:70:42:c5:b9:1e:1d:71: 29:f4:f2:81:0b:4c:bc:e2:26:9a:0c:b8:0d:46:45: 4a:43:a2:d3:4c:b8:57:f3:a6:0a:50:67:42:a4:82: 38:b5:03:bc:7d:df:27:34:18:08:78:a1:23:6f:b0: b4:4e:93:53:fd:07:b5:79:a9:c7:25:99:1b:d0:2b: 85:68:0c:b3:a3:81:da:f7:db:c8:9c:dd:ee:05:25: 75:af:60:eb:7b:ed:90:78:74:ea:fc:9b:7e:fb:5a: 09:9f:72:aa:fd:7b:3c:15:b9:8c:c3:ef:b9:4a:39: f4:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:AA:98:2C:03:17:93:26:33:2D:6B:77:0A:58:E8:79:5C:B8:45:9F X509v3 Authority Key Identifier: keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/ RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/XKqYLAMXkyYzLWt3CljoeVy4RZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: 328633 sbgp-ipAddrBlock: critical IPv4: 102.217.184.0/22 102.223.104.0/22 IPv6: 2c0f:e848::/32 Signature Algorithm: sha256WithRSAEncryption a8:4b:cf:37:8b:e8:78:3c:9f:b9:70:68:47:ea:bf:e3:a7:07: b0:40:e5:fd:69:32:02:3d:5c:23:fc:26:25:ee:4f:a2:17:c4: 9e:9a:01:5c:65:85:42:a7:af:50:46:5a:3a:3e:ee:ff:40:b4: 18:ab:20:c4:22:0a:55:6a:b2:f1:b9:2d:98:88:ad:a7:ec:ad: 90:63:38:77:35:3a:64:b5:2b:d9:f7:4f:f2:e4:2d:23:fe:4c: ee:8f:3d:5f:be:c7:88:ae:d4:8a:8c:a5:1f:20:5f:5b:2b:8d: 67:1f:e6:7f:36:bf:f1:49:fb:c2:c0:79:e5:da:4c:55:fb:8b: a4:3c:55:fd:76:e5:cb:b4:ff:9d:ec:51:09:b0:ab:e1:d4:23: 84:5d:25:5b:9e:2d:83:04:da:11:f8:b5:44:b1:3a:af:73:97: 11:79:a4:ce:2e:2e:23:6f:ea:1d:e0:fe:00:de:a0:a5:d8:35: c1:d3:f2:13:30:3b:e6:58:93:56:9f:89:76:c2:f6:95:2a:25: 35:06:b2:16:bd:80:2a:02:4b:ea:3d:5b:44:17:16:6a:91:5a: 1d:10:44:af:31:fa:79:d1:77:c8:c1:36:b5:c3:cb:06:8b:bf: 6c:11:06:4c:63:93:6f:6c:a6:65:ba:d5:4e:75:6b:ac:89:9a: 99:db:c8:1a -----BEGIN CERTIFICATE----- MIIGKzCCBROgAwIBAgICOwwwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz NEE5OEY4MDAeFw0yNjAxMDEwMjMyMjZaFw0yNzAzMzEwMDAwMDBaMEgxEzARBgNV BAMTCkYzNjc4OTY3QUYxMTAvBgNVBAUTKDVDQUE5ODJDMDMxNzkzMjYzMzJENkI3 NzBBNThFODc5NUNCODQ1OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIgmsiZAqKXOjhaQLmHlV4x1UaCniYhu9xU+eDa9+tsSaflXF8xtr6QZ7J2fVd VePlTsqBUWiW3LKb6hAb2u5lW/DIKaN+Qnb1dPcGsV+DsAKbM0SlRu+tAx0poRQ1 RwnTCTos4JYZsIj3RddjmCThE/Z7LzsjiCB2GYVix6H5kopE2qH4BwWfLJ5RVDMh cELFuR4dcSn08oELTLziJpoMuA1GRUpDotNMuFfzpgpQZ0Kkgji1A7x93yc0GAh4 oSNvsLROk1P9B7V5qcclmRvQK4VoDLOjgdr328ic3e4FJXWvYOt77ZB4dOr8m377 Wgmfcqr9ezwVuYzD77lKOfSLAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUXKqYLAMX kyYzLWt3CljoeVy4RZ8wHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY3ODk2Ny80QUE0NDJGNDc4RDkx MUVBOUE4MDk1NUNGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2Nzg5NjcvNEFBNDQyRjQ3OEQ5MTFFQTlBODA5NTVDRjhBRUEyMjgvWEtxWUxB TVhreVl6TFd0M0Nsam9lVnk0Ulo4Lm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF AgMFA7kwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAJm2bgDBAJm32gwDQQC AAIwBwMFACwP6EgwDQYJKoZIhvcNAQELBQADggEBAKhLzzeL6Hg8n7lwaEfqv+On B7BA5f1pMgI9XCP8JiXuT6IXxJ6aAVxlhUKnr1BGWjo+7v9AtBirIMQiClVqsvG5 LZiIrafsrZBjOHc1OmS1K9n3T/LkLSP+TO6PPV++x4iu1IqMpR8gX1srjWcf5n82 v/FJ+8LAeeXaTFX7i6Q8Vf125cu0/53sUQmwq+HUI4RdJVueLYME2hH4tUSxOq9z lxF5pM4uLiNv6h3g/gDeoKXYNcHT8hMwO+ZYk1afiXbC9pUqJTUGsha9gCoCS+o9 W0QXFmqRWh0QRK8x+nnRd8jBNrXDywaLv2wRBkxjk29spmW61U51a6yJmpnbyBo= -----END CERTIFICATE-----Generated at Sun Jan 25 09:06:36 2026 by rpki-client