This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json) Hash identifier: MkjewFzjGBbS6yGP5yX1fpYno25lP+GzUWkcHd7D9xg= Subject key identifier: BB:88:FF:EE:50:BD:C1:2B:9F:6E:1A:04:CC:10:2E:A5:08:FA:B0:C6 Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Certificate serial: 4D59ED64F4A951FA4B453C0DB49E7064B8005875 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft Manifest number: 0234 Signing time: Mon 09 Feb 2026 14:29:31 +0000 Manifest this update: Mon 09 Feb 2026 14:24:31 +0000 Manifest next update: Tue 10 Feb 2026 15:05:31 +0000 Files and hashes: 1: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: YnGDN+42fdKi9z2f28VmrpKedH+NbdNEISmTWYFn1dY=) 2: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: 7s5kSYH1DbSfowuVOrG3wfjclNvq71vCWTMKX5SA1NA=) Validation: OK Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:59:ed:64:f4:a9:51:fa:4b:45:3c:0d:b4:9e:70:64:b8:00:58:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Validity Not Before: Feb 9 14:24:31 2026 GMT Not After : Feb 10 15:05:31 2026 GMT Subject: CN=BB88FFEE50BDC12B9F6E1A04CC102EA508FAB0C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4d:8e:ac:83:77:e3:9e:b3:13:3f:d0:48:a1: 2d:d6:a4:32:92:6f:fc:8b:25:96:f0:fc:bf:37:ee: 13:95:08:93:26:14:db:fd:b0:85:8f:4b:d4:2c:88: 29:b1:58:f4:68:7f:b6:87:e8:e7:77:91:a5:c2:e6: 98:e9:78:b0:85:f4:9f:57:12:ec:89:db:c8:9e:b7: b6:e9:10:66:f5:fc:da:57:82:16:9b:f2:fb:ea:61: fd:72:8c:35:96:36:79:b1:75:83:74:34:ea:7f:d9: d2:53:9e:4a:67:41:03:f5:4d:a5:f9:9e:42:fe:80: da:0e:74:bc:30:d2:85:39:1a:ed:8f:7b:ac:37:a9: 3a:a9:39:eb:f0:3b:fb:48:32:2c:fb:94:ff:07:39: 1a:75:14:3a:8b:8a:75:0a:dd:2d:e8:73:bb:09:36: 3d:fd:21:ec:49:9e:50:b6:58:ed:86:fe:d6:f9:41: 0b:f1:ff:93:1b:86:13:6f:84:fb:88:ab:a7:23:f7: fe:2d:b9:77:13:0b:0e:81:3a:5c:49:da:2b:81:88: 74:c4:99:3e:72:e2:2a:7a:65:e2:2b:d3:84:84:3d: f5:51:78:2a:97:38:6b:72:5b:b9:c6:81:ce:7d:18: 1f:35:9d:39:bb:e7:28:ba:f4:d7:f1:9d:f3:35:05: 43:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:88:FF:EE:50:BD:C1:2B:9F:6E:1A:04:CC:10:2E:A5:08:FA:B0:C6 X509v3 Authority Key Identifier: keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:11:f0:66:43:18:a0:f4:c5:67:21:43:11:97:d6:ea:a5:33: df:e7:65:cb:58:d0:33:1c:04:82:32:50:36:1f:e7:fb:57:b6: 40:2f:9c:e8:d3:16:1c:99:e0:96:3e:7b:0f:53:96:63:1c:7a: c3:6a:38:b9:85:77:a4:9c:34:1a:67:12:d3:ec:14:03:f6:12: 78:7f:4a:06:53:f6:02:f0:f0:26:66:22:92:1f:0e:0b:a8:00: 11:6c:23:ee:69:87:13:8f:12:37:55:ef:d7:19:93:c3:6c:98: 7e:da:67:9e:74:23:8e:df:29:ad:8b:fb:1b:ec:32:60:44:83: 40:6f:4b:cd:8d:2a:22:be:0f:54:e9:01:28:f2:fc:97:86:a3: 61:ea:0b:3d:18:8a:81:fb:80:df:4f:ed:17:1f:ad:96:51:a4: 90:2d:f4:af:d8:34:c3:5e:50:3d:fa:c7:7d:13:34:8a:2a:27: 18:1e:34:a8:4d:0a:4f:8a:ab:b5:8f:1e:a2:1d:bd:6f:20:ce: 8e:8f:65:dc:c5:b2:65:7b:a5:07:ab:5e:26:48:b2:bb:9a:10: 0f:fe:f6:cd:6f:4a:93:7e:44:97:0e:48:51:e1:03:50:86:6f: f5:30:8e:7e:9b:12:c9:f2:8b:b2:4e:66:5a:75:94:26:88:24: f2:14:a4:2b -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUTVntZPSpUfpLRTwNtJ5wZLgAWHUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjYwNTYxZGZmYmZkZTI1NWZlYzE0ZDRkOWYwZTEzZjQz NzUzNTJlNDAeFw0yNjAyMDkxNDI0MzFaFw0yNjAyMTAxNTA1MzFaMDMxMTAvBgNV BAMTKEJCODhGRkVFNTBCREMxMkI5RjZFMUEwNENDMTAyRUE1MDhGQUIwQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBTY6sg3fjnrMTP9BIoS3WpDKS b/yLJZbw/L837hOVCJMmFNv9sIWPS9QsiCmxWPRof7aH6Od3kaXC5pjpeLCF9J9X EuyJ28iet7bpEGb1/NpXghab8vvqYf1yjDWWNnmxdYN0NOp/2dJTnkpnQQP1TaX5 nkL+gNoOdLww0oU5Gu2Pe6w3qTqpOevwO/tIMiz7lP8HORp1FDqLinUK3S3oc7sJ Nj39IexJnlC2WO2G/tb5QQvx/5MbhhNvhPuIq6cj9/4tuXcTCw6BOlxJ2iuBiHTE mT5y4ip6ZeIr04SEPfVReCqXOGtyW7nGgc59GB81nTm75yi69NfxnfM1BUNbAgMB AAGjggHrMIIB5zAdBgNVHQ4EFgQUu4j/7lC9wSufbhoEzBAupQj6sMYwHwYDVR0j BBgwFoAUtgVh3/v94lX+wU1Nnw4T9DdTUuQwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs aWN1cy8wL0I2MDU2MURGRkJGREUyNTVGRUMxNEQ0RDlGMEUxM0Y0Mzc1MzUyRTQu Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC90Z1ZoM192OTRsWC13VTFObnc0VDlE ZFRVdVEuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzAvQjYwNTYxREZGQkZERTI1 NUZFQzE0RDREOUYwRTEzRjQzNzUzNTJFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBABcR8GZDGKD0xWch QxGX1uqlM9/nZctY0DMcBIIyUDYf5/tXtkAvnOjTFhyZ4JY+ew9TlmMcesNqOLmF d6ScNBpnEtPsFAP2Enh/SgZT9gLw8CZmIpIfDguoABFsI+5phxOPEjdV79cZk8Ns mH7aZ550I47fKa2L+xvsMmBEg0BvS82NKiK+D1TpASjy/JeGo2HqCz0YioH7gN9P 7RcfrZZRpJAt9K/YNMNeUD36x30TNIoqJxgeNKhNCk+Kq7WPHqIdvW8gzo6PZdzF smV7pQerXiZIsruaEA/+9s1vSpN+RJcOSFHhA1CGb/Uwjn6bEsnyi7JOZlp1lCaI JPIUpCs= -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:35 2026 by rpki-client