This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json) Hash identifier: VGOtY1op/ih0RP3kZyfXwF/4Apes5hkvrobxZBeHQMA= Subject key identifier: 5B:5D:B9:63:7E:33:B8:2F:64:B0:CF:DF:F9:6E:A9:31:9C:C6:39:EB Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Certificate serial: 79E11B6769B7CCDAAEBACD6758CFB718A44D8B45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft Manifest number: 01DF Signing time: Sat 13 Dec 2025 21:54:27 +0000 Manifest this update: Sat 13 Dec 2025 21:49:27 +0000 Manifest next update: Mon 15 Dec 2025 00:54:27 +0000 Files and hashes: 1: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: Y3n7xNVcHx0aXj9QjKRo/mtjbcljgSvgHv7hI94dFpU=) 2: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: 7s5kSYH1DbSfowuVOrG3wfjclNvq71vCWTMKX5SA1NA=) Validation: OK Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:e1:1b:67:69:b7:cc:da:ae:ba:cd:67:58:cf:b7:18:a4:4d:8b:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Validity Not Before: Dec 13 21:49:27 2025 GMT Not After : Dec 15 00:54:27 2025 GMT Subject: CN=5B5DB9637E33B82F64B0CFDFF96EA9319CC639EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3e:90:c5:54:91:cb:4d:0a:de:b8:5c:7e:1a: 3e:dc:ac:fd:10:dd:55:cf:3f:7d:4e:44:83:de:4b: b4:82:f0:c4:24:4d:dd:73:7e:41:d0:10:78:2b:8b: 0a:8a:7d:0b:91:b6:13:4c:27:95:4b:6a:22:9c:80: 3c:dd:7c:0c:cf:e0:88:81:6e:ac:98:4c:d3:5e:bb: 1d:42:25:29:f6:c4:4f:ee:76:af:06:3f:1e:cb:b2: 03:30:20:15:df:7c:99:0b:63:ec:13:9f:59:4b:94: 3c:c5:99:be:5f:70:1f:1f:d7:74:82:a5:0a:51:2b: 6a:0c:80:82:de:be:78:d7:2c:c4:26:db:67:8b:d9: 50:89:a0:8a:60:89:cd:07:ea:1b:41:60:86:cc:02: fe:d8:26:32:78:83:d8:17:dd:db:14:c8:bc:a8:70: 02:c8:47:4a:ff:1f:4a:8c:98:ff:ea:48:66:bc:6d: 4d:52:0d:44:6f:83:c0:f8:b7:c3:07:2d:16:d2:36: c7:83:0b:22:4c:b9:41:64:b7:00:db:f2:82:5a:7f: d7:7a:63:d3:6f:9c:93:67:95:10:46:c3:fe:f1:02: b0:dd:42:68:54:ce:c0:97:15:09:97:6f:49:7a:12: c4:ad:96:fa:53:cf:ae:47:a1:b3:d0:ee:72:88:de: 9f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:5D:B9:63:7E:33:B8:2F:64:B0:CF:DF:F9:6E:A9:31:9C:C6:39:EB X509v3 Authority Key Identifier: keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:3b:05:6e:ea:46:72:a8:65:b6:e1:56:28:dc:14:a3:8b:f3: 81:f2:b7:ca:73:ab:a9:ed:fa:29:45:8d:24:4c:c2:52:3c:ff: fa:be:77:3d:e8:f2:ce:45:47:8d:2b:9f:7f:e2:96:a1:e9:49: a3:76:33:2f:47:80:1c:4d:51:e3:01:62:f5:7c:a1:97:6f:4a: cf:18:af:c8:dd:87:44:72:92:c0:81:74:86:26:3b:3a:2a:91: 6a:e0:43:ef:60:42:49:3c:28:c8:fc:74:ad:3a:58:68:1e:f6: 00:f1:51:96:76:5e:bc:28:2c:f9:c3:98:08:e6:96:e4:56:ce: f5:8f:d2:9a:df:f2:09:82:b1:fc:d4:4b:79:0b:d9:72:67:77: d6:7f:ba:3d:d6:38:ed:7e:c7:a7:d9:51:a0:c1:61:04:cc:9d: 22:54:79:b6:bd:20:fc:ed:c4:1a:c1:ee:41:db:15:a2:0e:33: aa:fe:4f:5f:8e:8b:10:7f:bd:f0:c7:67:29:5d:39:26:f2:8e: 06:40:e9:06:5a:65:74:38:d0:0d:ca:47:aa:b6:98:46:bc:fd: 22:3e:27:27:0d:1a:45:dc:31:61:11:07:2f:c0:28:f8:15:d2: 62:98:86:f2:32:03:ef:69:1b:8b:7f:eb:69:6a:d3:cf:6b:12: 67:4f:1c:f1 -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUeeEbZ2m3zNquus1nWM+3GKRNi0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjYwNTYxZGZmYmZkZTI1NWZlYzE0ZDRkOWYwZTEzZjQz NzUzNTJlNDAeFw0yNTEyMTMyMTQ5MjdaFw0yNTEyMTUwMDU0MjdaMDMxMTAvBgNV BAMTKDVCNURCOTYzN0UzM0I4MkY2NEIwQ0ZERkY5NkVBOTMxOUNDNjM5RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBPpDFVJHLTQreuFx+Gj7crP0Q 3VXPP31ORIPeS7SC8MQkTd1zfkHQEHgriwqKfQuRthNMJ5VLaiKcgDzdfAzP4IiB bqyYTNNeux1CJSn2xE/udq8GPx7LsgMwIBXffJkLY+wTn1lLlDzFmb5fcB8f13SC pQpRK2oMgILevnjXLMQm22eL2VCJoIpgic0H6htBYIbMAv7YJjJ4g9gX3dsUyLyo cALIR0r/H0qMmP/qSGa8bU1SDURvg8D4t8MHLRbSNseDCyJMuUFktwDb8oJaf9d6 Y9NvnJNnlRBGw/7xArDdQmhUzsCXFQmXb0l6EsStlvpTz65HobPQ7nKI3p/5AgMB AAGjggHrMIIB5zAdBgNVHQ4EFgQUW125Y34zuC9ksM/f+W6pMZzGOeswHwYDVR0j BBgwFoAUtgVh3/v94lX+wU1Nnw4T9DdTUuQwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs aWN1cy8wL0I2MDU2MURGRkJGREUyNTVGRUMxNEQ0RDlGMEUxM0Y0Mzc1MzUyRTQu Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC90Z1ZoM192OTRsWC13VTFObnc0VDlE ZFRVdVEuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzAvQjYwNTYxREZGQkZERTI1 NUZFQzE0RDREOUYwRTEzRjQzNzUzNTJFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAAc7BW7qRnKoZbbh VijcFKOL84Hyt8pzq6nt+ilFjSRMwlI8//q+dz3o8s5FR40rn3/ilqHpSaN2My9H gBxNUeMBYvV8oZdvSs8Yr8jdh0RyksCBdIYmOzoqkWrgQ+9gQkk8KMj8dK06WGge 9gDxUZZ2XrwoLPnDmAjmluRWzvWP0prf8gmCsfzUS3kL2XJnd9Z/uj3WOO1+x6fZ UaDBYQTMnSJUeba9IPztxBrB7kHbFaIOM6r+T1+OixB/vfDHZyldOSbyjgZA6QZa ZXQ40A3KR6q2mEa8/SI+JycNGkXcMWERBy/AKPgV0mKYhvIyA+9pG4t/62lq089r EmdPHPE= -----END CERTIFICATE-----Generated at Sun Dec 14 01:54:03 2025 by rpki-client