Manifest
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json)
Hash identifier: Acufo0VBNA+Rb2WYzC89gQ1yTg+HLxTyYkz1OLl4eVc=
Subject key identifier: A0:91:6A:B2:C5:E4:8F:2C:57:77:47:32:72:C2:34:56:48:89:E5:6A
Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Certificate serial: 5F3B6DDB0101CDBD5240AE87D63E7873C8A4C928
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
Manifest number: 02DD
Signing time: Sat 13 Jun 2026 14:19:40 +0000
Manifest this update: Sat 13 Jun 2026 14:14:40 +0000
Manifest next update: Sun 14 Jun 2026 17:42:40 +0000
Files and hashes: 1: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: 7s5kSYH1DbSfowuVOrG3wfjclNvq71vCWTMKX5SA1NA=)
2: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: lMvqzKx9+v8sK/PyQ0NVsBusERWAEqp3gs6v94JgDuU=)
Validation: OK
Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:3b:6d:db:01:01:cd:bd:52:40:ae:87:d6:3e:78:73:c8:a4:c9:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Validity
Not Before: Jun 13 14:14:40 2026 GMT
Not After : Jun 14 17:42:40 2026 GMT
Subject: CN=A0916AB2C5E48F2C5777473272C234564889E56A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:7f:47:34:92:95:2c:49:2a:e3:18:3f:8c:
34:0e:58:d6:5d:2d:6c:8c:1c:db:f5:0e:14:ca:df:
25:62:7f:15:4f:61:ee:1d:83:32:02:70:55:a6:ab:
eb:85:c2:60:90:3f:5d:97:ee:e2:63:ba:d2:9a:45:
45:96:4e:ea:f1:95:8a:eb:80:80:55:0b:49:f7:2f:
05:f7:0b:68:ae:c4:af:61:b1:6d:9e:d0:84:e1:85:
c2:22:13:83:83:71:95:01:fa:9e:8c:0a:af:4a:61:
4a:4b:eb:5d:17:3e:77:0a:90:ca:f4:60:a0:1e:e4:
9c:3e:80:b7:0d:85:33:8e:9d:51:70:a9:26:98:39:
9b:11:19:47:a5:f5:50:84:4e:91:98:80:e3:fd:72:
67:20:a1:f6:6e:31:c7:6d:21:2b:56:2d:9c:65:7a:
05:b8:67:e3:ea:f4:a6:00:69:58:2a:61:0a:58:41:
bf:a5:6d:ed:05:f8:20:7e:40:03:d4:4a:cc:17:ba:
d1:b7:5b:7e:e2:c1:c3:26:3f:e8:1d:dd:4c:f9:bb:
b2:8d:86:e6:f2:81:d0:17:79:05:81:67:6f:2f:68:
68:d8:de:3e:33:21:49:b4:e8:ef:9b:2e:e9:8a:94:
71:e9:3b:f7:9e:e9:81:6d:4e:bb:b0:c7:b0:d8:d7:
ef:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:91:6A:B2:C5:E4:8F:2C:57:77:47:32:72:C2:34:56:48:89:E5:6A
X509v3 Authority Key Identifier:
keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:37:d9:34:02:53:ab:10:e9:c9:a6:fd:54:73:01:95:be:d2:
79:40:68:11:f5:51:ff:7f:d9:c1:4d:83:b4:ea:76:eb:66:14:
23:de:12:16:e0:b1:7f:aa:41:12:99:c0:7d:a6:9d:9c:6d:7c:
be:81:9f:e5:71:b1:7c:e7:0c:ad:5b:8f:dd:2f:e5:e6:f5:da:
92:50:3c:34:a1:9e:c4:a1:90:24:3a:4b:dd:5d:61:18:de:d6:
96:1b:b6:4a:15:91:7d:b7:95:a3:0f:b5:7e:ff:04:44:2d:19:
cb:f8:ed:d5:08:1a:8d:3f:e4:03:46:50:18:91:a4:11:75:82:
ff:a1:37:1f:f6:65:77:33:5c:bd:b7:4d:a1:6e:01:e9:65:25:
d2:69:77:7d:a4:80:6c:2c:17:a6:69:b8:cf:76:81:02:f2:57:
31:77:b0:8e:e5:22:b3:d2:1b:db:4c:2a:32:8f:d9:63:69:93:
72:dc:38:81:28:db:8f:58:6c:4a:d3:d4:04:b1:87:32:54:ef:
18:4a:41:e9:3c:47:2d:ff:e9:a9:9b:9c:a3:8d:13:c6:2d:d0:
b5:11:2d:e9:9d:0c:ff:9e:17:1a:ad:81:51:14:d8:a7:2e:bf:
41:49:be:eb:53:2e:81:7e:07:01:de:b0:81:ea:8c:5e:99:ee:
08:3a:aa:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:56:55 2026 by rpki-client