Manifest
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json)
Hash identifier: XQkPQeRFzlPb3hoAT03LRtARgKP6DG5rNCWCrdjUG4A=
Subject key identifier: 0B:6C:AB:36:1B:3D:91:C9:A6:A4:12:FD:47:32:2E:24:63:9B:76:01
Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Certificate serial: 3C845785B49BA390D15AD6388EA988D379EF1A33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
Manifest number: 02EC
Signing time: Thu 25 Jun 2026 05:57:21 +0000
Manifest this update: Thu 25 Jun 2026 05:52:21 +0000
Manifest next update: Fri 26 Jun 2026 09:31:21 +0000
Files and hashes: 1: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: 7s5kSYH1DbSfowuVOrG3wfjclNvq71vCWTMKX5SA1NA=)
2: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: Tt1olnKQo5W2nAn7AITVAuR+bz16qLv+rk8ECpU8ikM=)
Validation: OK
Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Jun 2026 08:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:84:57:85:b4:9b:a3:90:d1:5a:d6:38:8e:a9:88:d3:79:ef:1a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Validity
Not Before: Jun 25 05:52:21 2026 GMT
Not After : Jun 26 09:31:21 2026 GMT
Subject: CN=0B6CAB361B3D91C9A6A412FD47322E24639B7601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:33:df:90:ca:08:0d:5c:fe:5c:3f:e7:85:19:
86:18:fa:48:e9:f3:3b:b9:87:6d:fb:b1:93:31:eb:
bf:6b:80:ec:01:b3:4d:b1:ea:13:2d:ae:2d:28:fe:
c5:0e:ba:e7:8e:bc:52:df:14:d1:46:fb:ee:94:da:
ef:2c:df:c4:c0:60:94:5a:7f:58:2a:8f:2b:29:3e:
66:db:a2:b6:e3:79:32:84:22:45:52:b9:60:61:35:
9a:64:11:ca:b8:30:25:5e:41:ed:3d:78:12:b4:00:
af:b2:8d:d9:b1:56:bb:b1:26:4f:01:25:e8:9b:7b:
18:70:35:e6:f2:23:f4:be:d5:e8:f1:f6:38:66:99:
2c:f0:2f:b4:fa:29:56:7f:14:6f:91:c2:c8:d9:eb:
75:81:2c:9b:1a:b2:2a:7e:ad:7e:fa:10:b5:47:af:
4d:d7:99:a2:9d:76:e6:40:81:d7:0b:29:52:2a:3a:
21:8d:3d:e4:b6:a5:c9:ab:04:dc:82:65:bc:42:ba:
7a:a1:51:7d:93:cd:6b:d1:a2:9e:ce:d5:78:d2:5f:
a4:93:66:e2:e9:c4:62:0c:41:76:9c:d9:5e:e3:f7:
40:bf:0a:e3:27:58:79:6b:8f:b4:f9:e7:ac:d6:17:
48:3c:07:39:73:ed:7d:3c:7d:cb:12:94:8a:b6:97:
47:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:6C:AB:36:1B:3D:91:C9:A6:A4:12:FD:47:32:2E:24:63:9B:76:01
X509v3 Authority Key Identifier:
keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:d4:7a:1e:84:60:0a:e9:64:a9:03:07:d5:33:d1:fe:38:27:
fc:a4:83:3c:fe:ae:66:d7:17:db:37:25:af:d3:19:7c:75:7e:
75:28:06:48:c2:a2:72:34:a2:67:28:47:f8:96:b1:50:6f:fa:
d6:84:c6:b2:e8:23:fb:72:3a:72:4f:6b:46:1e:4f:98:08:30:
be:a3:cf:ad:0f:7b:48:47:57:69:d5:e3:35:6b:d6:07:63:63:
bc:54:40:a3:60:01:d0:00:4c:40:86:59:0e:1d:d6:55:93:1c:
ae:78:b0:d2:3e:aa:c2:3c:d7:6d:4a:03:e7:ca:6b:37:0f:dd:
68:f0:ef:a4:86:1c:6f:34:2e:9e:2f:15:ce:0d:d3:ea:7e:3d:
18:d8:31:b1:21:ec:58:33:fd:87:ca:74:86:b6:b5:8c:d9:08:
1a:7b:41:65:49:d9:58:15:9e:d5:60:42:ca:b3:a9:9f:f0:8c:
81:88:0d:b2:6e:2a:79:4d:9a:83:da:91:84:37:2b:59:7a:61:
fa:89:36:2e:9a:04:27:69:9a:00:b8:f2:53:9e:b7:60:dd:12:
10:98:81:f9:ad:17:d8:98:45:b9:ed:ba:48:7e:83:0e:0a:21:
b2:d1:82:46:c2:f6:8c:77:27:62:90:7b:ef:6c:80:89:d0:80:
7d:24:0d:2e
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgIUPIRXhbSbo5DRWtY4jqmI03nvGjMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjYwNTYxZGZmYmZkZTI1NWZlYzE0ZDRkOWYwZTEzZjQz
NzUzNTJlNDAeFw0yNjA2MjUwNTUyMjFaFw0yNjA2MjYwOTMxMjFaMDMxMTAvBgNV
BAMTKDBCNkNBQjM2MUIzRDkxQzlBNkE0MTJGRDQ3MzIyRTI0NjM5Qjc2MDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwM9+QyggNXP5cP+eFGYYY+kjp
8zu5h237sZMx679rgOwBs02x6hMtri0o/sUOuueOvFLfFNFG++6U2u8s38TAYJRa
f1gqjyspPmbborbjeTKEIkVSuWBhNZpkEcq4MCVeQe09eBK0AK+yjdmxVruxJk8B
JeibexhwNebyI/S+1ejx9jhmmSzwL7T6KVZ/FG+RwsjZ63WBLJsasip+rX76ELVH
r03XmaKdduZAgdcLKVIqOiGNPeS2pcmrBNyCZbxCunqhUX2TzWvRop7O1XjSX6ST
ZuLpxGIMQXac2V7j90C/CuMnWHlrj7T556zWF0g8Bzlz7X08fcsSlIq2l0eZAgMB
AAGjggHrMIIB5zAdBgNVHQ4EFgQUC2yrNhs9kcmmpBL9RzIuJGObdgEwHwYDVR0j
BBgwFoAUtgVh3/v94lX+wU1Nnw4T9DdTUuQwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud
HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs
aWN1cy8wL0I2MDU2MURGRkJGREUyNTVGRUMxNEQ0RDlGMEUxM0Y0Mzc1MzUyRTQu
Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp
cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC90Z1ZoM192OTRsWC13VTFObnc0VDlE
ZFRVdVEuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y
cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzAvQjYwNTYxREZGQkZERTI1
NUZFQzE0RDREOUYwRTEzRjQzNzUzNTJFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG
AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAF/Ueh6EYArpZKkD
B9Uz0f44J/ykgzz+rmbXF9s3Ja/TGXx1fnUoBkjConI0omcoR/iWsVBv+taExrLo
I/tyOnJPa0YeT5gIML6jz60Pe0hHV2nV4zVr1gdjY7xUQKNgAdAATECGWQ4d1lWT
HK54sNI+qsI8121KA+fKazcP3Wjw76SGHG80Lp4vFc4N0+p+PRjYMbEh7Fgz/YfK
dIa2tYzZCBp7QWVJ2VgVntVgQsqzqZ/wjIGIDbJuKnlNmoPakYQ3K1l6YfqJNi6a
BCdpmgC48lOet2DdEhCYgfmtF9iYRbntukh+gw4KIbLRgkbC9ox3J2KQe+9sgInQ
gH0kDS4=
-----END CERTIFICATE-----
Generated at Thu Jun 25 14:45:02 2026 by rpki-client