This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json) Hash identifier: 1qE6W1ZN2sPXFJiv50QWqEAUpI2oA4bKG2KP3SbSy7I= Subject key identifier: 9A:B7:88:E1:71:D4:73:92:5F:C6:B2:2F:FD:F3:69:E7:FB:4F:6D:7F Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Certificate serial: 16CE03EE6C292A24D7928CC79A0D37DDF5E437F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft Manifest number: 0209 Signing time: Mon 12 Jan 2026 12:49:27 +0000 Manifest this update: Mon 12 Jan 2026 12:44:27 +0000 Manifest next update: Tue 13 Jan 2026 15:17:27 +0000 Files and hashes: 1: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: 7s5kSYH1DbSfowuVOrG3wfjclNvq71vCWTMKX5SA1NA=) 2: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: 8KY1FbmDFX/xEPc5AqOfntQQGcpTaW1VeKgLwb5v9Rk=) Validation: OK Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 15:17:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ce:03:ee:6c:29:2a:24:d7:92:8c:c7:9a:0d:37:dd:f5:e4:37:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Validity Not Before: Jan 12 12:44:27 2026 GMT Not After : Jan 13 15:17:27 2026 GMT Subject: CN=9AB788E171D473925FC6B22FFDF369E7FB4F6D7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:56:1b:ab:39:1e:73:a7:d0:66:f2:90:1f:5b: e2:1c:0e:f1:14:f4:ec:16:db:df:7e:47:c4:89:62: ff:51:d8:fa:aa:51:1c:21:4e:96:b8:2d:1c:f7:30: a5:b8:0a:e3:a4:26:10:f7:06:be:b5:b0:e5:8f:33: e7:2e:05:3f:58:29:ba:65:83:07:02:c7:04:fd:ab: 28:3d:1b:44:6c:b1:ec:2e:89:66:41:68:30:0f:1b: 4d:6c:3f:47:85:52:19:24:72:33:9c:e9:3d:19:1b: 95:fd:95:0f:b5:e6:97:a3:e4:18:27:f2:5f:e6:e4: 15:cc:71:70:ff:73:69:98:ba:1e:2f:d6:26:87:0d: 26:39:05:e2:a8:e6:b9:da:cf:9a:e3:01:24:21:54: 5b:a8:26:d4:f3:97:1f:0b:af:ac:ab:f9:19:4a:43: 8d:01:51:59:31:31:00:c3:1c:76:23:e0:9d:76:b1: 8b:92:bf:ec:d6:ce:fb:c2:71:38:f1:80:c0:e2:8a: e0:12:80:7f:3b:05:f8:cb:72:fd:cf:53:55:e1:bf: cb:d4:88:e0:f0:20:76:44:0b:21:40:4a:8f:f9:39: 53:f3:24:9e:f8:95:dc:6b:d4:5c:71:be:a2:76:ea: 5d:c7:f8:e7:8c:42:af:ca:11:ae:63:1b:08:90:86: 3e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B7:88:E1:71:D4:73:92:5F:C6:B2:2F:FD:F3:69:E7:FB:4F:6D:7F X509v3 Authority Key Identifier: keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:6c:59:f3:bf:1f:ae:ff:00:14:0d:64:a0:02:ac:e1:17:4d: fe:ad:19:73:dd:20:32:b9:3d:1c:ea:ff:16:57:05:bb:33:8c: 37:8c:3c:6f:57:ff:f2:58:aa:60:74:b4:67:12:37:45:de:99: 23:59:d5:77:86:21:77:d7:5d:0b:4a:49:0f:31:06:31:27:a3: e2:55:5d:62:5e:32:b9:23:e9:4d:e1:9a:ea:63:2e:04:19:ac: 36:58:c4:36:f2:84:84:f5:79:5f:50:34:79:d1:7d:34:5b:73: 33:68:74:07:95:c2:fa:04:02:29:b3:65:a8:e6:ef:3e:94:8e: 4d:3b:ba:ad:f9:a6:15:7b:4f:52:63:11:e3:10:f7:32:c2:3d: 84:79:d0:b2:e0:d1:7b:f4:17:ee:aa:ba:37:c0:f2:24:25:05: e4:78:e1:81:1e:28:6f:7c:ca:e6:4d:46:30:0e:08:e5:bc:62: fa:7f:b7:8f:af:e4:fe:32:94:0c:fc:6c:ab:78:28:72:a1:75: a1:c5:9a:42:9a:40:4d:d7:c5:7e:71:91:2f:3a:74:10:82:4d: a8:29:e1:85:80:7e:3b:74:01:89:3a:1c:19:74:25:bc:d3:5a: ba:3f:b6:a5:aa:2f:2c:2c:20:50:33:d5:2e:c2:b0:bc:bf:f1: cf:2c:ab:b5 -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUFs4D7mwpKiTXkozHmg033fXkN/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjYwNTYxZGZmYmZkZTI1NWZlYzE0ZDRkOWYwZTEzZjQz NzUzNTJlNDAeFw0yNjAxMTIxMjQ0MjdaFw0yNjAxMTMxNTE3MjdaMDMxMTAvBgNV BAMTKDlBQjc4OEUxNzFENDczOTI1RkM2QjIyRkZERjM2OUU3RkI0RjZEN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0VhurOR5zp9Bm8pAfW+IcDvEU 9OwW299+R8SJYv9R2PqqURwhTpa4LRz3MKW4CuOkJhD3Br61sOWPM+cuBT9YKbpl gwcCxwT9qyg9G0RssewuiWZBaDAPG01sP0eFUhkkcjOc6T0ZG5X9lQ+15pej5Bgn 8l/m5BXMcXD/c2mYuh4v1iaHDSY5BeKo5rnaz5rjASQhVFuoJtTzlx8Lr6yr+RlK Q40BUVkxMQDDHHYj4J12sYuSv+zWzvvCcTjxgMDiiuASgH87BfjLcv3PU1Xhv8vU iODwIHZECyFASo/5OVPzJJ74ldxr1FxxvqJ26l3H+OeMQq/KEa5jGwiQhj5FAgMB AAGjggHrMIIB5zAdBgNVHQ4EFgQUmreI4XHUc5JfxrIv/fNp5/tPbX8wHwYDVR0j BBgwFoAUtgVh3/v94lX+wU1Nnw4T9DdTUuQwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs aWN1cy8wL0I2MDU2MURGRkJGREUyNTVGRUMxNEQ0RDlGMEUxM0Y0Mzc1MzUyRTQu Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC90Z1ZoM192OTRsWC13VTFObnc0VDlE ZFRVdVEuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzAvQjYwNTYxREZGQkZERTI1 NUZFQzE0RDREOUYwRTEzRjQzNzUzNTJFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAJdsWfO/H67/ABQN ZKACrOEXTf6tGXPdIDK5PRzq/xZXBbszjDeMPG9X//JYqmB0tGcSN0XemSNZ1XeG IXfXXQtKSQ8xBjEno+JVXWJeMrkj6U3hmupjLgQZrDZYxDbyhIT1eV9QNHnRfTRb czNodAeVwvoEAimzZajm7z6Ujk07uq35phV7T1JjEeMQ9zLCPYR50LLg0Xv0F+6q ujfA8iQlBeR44YEeKG98yuZNRjAOCOW8Yvp/t4+v5P4ylAz8bKt4KHKhdaHFmkKa QE3XxX5xkS86dBCCTagp4YWAfjt0AYk6HBl0JbzTWro/tqWqLywsIFAz1S7CsLy/ 8c8sq7U= -----END CERTIFICATE-----Generated at Mon Jan 12 22:24:13 2026 by rpki-client