Manifest
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json)
Hash identifier: olvVEN+GPP4VuCXeItwmvnr99vIwaJRrlvMo2sYGJBY=
Subject key identifier: 75:71:BA:01:25:BE:8F:00:46:8F:7E:5E:B3:ED:3F:9D:FA:7F:05:CD
Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Certificate serial: 13109B80C91ABA9CB36B07E193A666BADD6FDF3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
Manifest number: AD
Signing time: Tue 29 Apr 2025 23:19:48 +0000
Manifest this update: Tue 29 Apr 2025 23:14:48 +0000
Manifest next update: Thu 01 May 2025 00:34:48 +0000
Files and hashes: 1: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: mqadfIJnOHBwBW3bzOjsszkG4yNmowPDrD6AKDG5B1Q=)
2: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: 5luYeH4xSBhXxXMssefsQu6CcEEPaX3Nr63byAVjn7g=)
Validation: OK
Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:10:9b:80:c9:1a:ba:9c:b3:6b:07:e1:93:a6:66:ba:dd:6f:df:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Validity
Not Before: Apr 29 23:14:48 2025 GMT
Not After : May 1 00:34:48 2025 GMT
Subject: CN=7571BA0125BE8F00468F7E5EB3ED3F9DFA7F05CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:39:58:65:2d:23:8a:86:52:44:0a:eb:86:c3:
f0:5e:04:c6:ec:69:13:44:d6:02:33:78:7e:cd:c1:
d5:f3:fa:2a:7a:ba:02:83:74:6a:7d:39:8f:ae:fa:
9c:f1:69:1c:02:5d:5a:ab:fe:13:61:43:b9:da:9e:
35:e2:5b:01:ce:68:6b:0a:cd:75:e1:10:3f:8b:19:
18:ce:2d:ba:67:b7:5a:87:08:b8:5a:82:98:3d:4b:
f2:b0:d5:91:09:e5:54:38:30:2d:45:b2:55:56:f2:
14:56:1d:38:f8:02:59:56:6f:72:01:50:cd:01:01:
85:66:5f:3a:c1:97:74:5d:f7:3e:32:52:2f:3b:e2:
00:65:ec:35:30:9a:bd:82:ab:77:b4:0c:07:1a:af:
ac:20:ca:d3:01:d8:9d:89:61:cd:aa:a4:56:21:c2:
0e:89:d8:9b:63:cd:30:70:b3:65:d0:d1:57:6b:87:
cd:3f:db:d7:b0:93:9d:f6:47:8c:55:05:26:53:39:
87:ef:87:ff:0b:52:3d:ff:90:77:dc:f9:6f:26:5b:
eb:1a:8d:1c:fa:08:4a:61:19:7e:ca:be:1c:a4:55:
71:ff:8c:eb:6c:12:c7:62:4c:57:bc:89:53:3b:73:
7e:e9:3c:8f:64:fd:62:97:79:b4:60:19:6f:9c:e0:
5b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:71:BA:01:25:BE:8F:00:46:8F:7E:5E:B3:ED:3F:9D:FA:7F:05:CD
X509v3 Authority Key Identifier:
keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:6c:0b:48:43:d8:ff:33:b9:97:11:88:00:13:18:e0:d1:67:
d7:a3:e8:55:c6:3c:ea:b5:9d:bd:0b:e5:94:05:f0:84:40:7c:
a9:af:c9:df:a8:72:83:94:7c:df:2f:3b:d0:31:fe:24:e3:b5:
88:ba:b7:19:b3:10:46:29:72:11:34:c5:1e:33:3e:2d:53:f4:
e9:1f:a4:2e:f9:af:1b:7f:cd:f2:4a:e3:5d:47:67:9c:e4:5d:
67:06:6a:2c:04:90:35:2f:93:c3:36:de:4c:5e:95:69:ab:ef:
a0:4b:01:d4:90:b3:ff:3c:fa:77:9f:a4:5f:72:bb:20:a5:09:
03:31:7c:8b:e3:e5:0c:8d:14:25:e1:11:49:8d:aa:d4:32:ea:
c5:0a:a7:5d:f7:b3:7d:25:97:74:f3:8b:84:9a:36:9b:cf:1f:
1d:79:d4:57:77:d7:b6:b2:cf:85:d8:d9:f4:22:c5:c9:9a:5f:
12:26:c5:b5:f1:3b:c7:3b:26:14:33:42:2b:9a:91:00:66:2a:
65:51:fc:65:27:69:dd:4f:1d:07:1c:86:b6:45:f7:fd:87:d1:
88:fd:6a:cb:b6:d4:53:e9:9f:e3:e4:ee:05:24:10:fe:5d:a7:
5f:0e:fc:2a:8e:c2:6e:f4:a6:44:4d:6e:3c:81:4b:8a:ca:fc:
1d:10:f1:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 12:33:14 2025 by rpki-client