$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft File: 4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft (raw, json) Hash identifier: iKjBCPUM5DTpaxbUFCq/53oEWAZI2XT4onBxIjeXTck= Subject key identifier: D6:38:27:34:7E:65:1E:3A:DD:10:8D:77:18:FF:F1:90:26:65:41:8D Authority key identifier: 4E:9A:6C:18:F3:49:B3:95:C3:1C:33:BB:7F:9B:9F:58:17:BD:E9:A8 Certificate issuer: /CN=4e9a6c18f349b395c31c33bb7f9b9f5817bde9a8 Certificate serial: 2F0A3E04BA404075DD3A82CC54AF49E77834716D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer Subject info access: rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft Manifest number: 0271 Signing time: Sun 29 Mar 2026 10:34:55 +0000 Manifest this update: Sun 29 Mar 2026 10:29:55 +0000 Manifest next update: Mon 30 Mar 2026 11:34:55 +0000 Files and hashes: 1: 4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl (hash: eL4YYj17VzKD8Rpc/nx0j9v5fVqreQoebSHg7efMBug=) 2: 326130613a663034303a3a2f32392d3239203d3e203631393631.roa (hash: q7WGQJ75bRybHehoGPB487LwawVW780GrlEzs+BTdx4=) 3: 323030313a3637383a3565343a3a2f34382d3438203d3e20343031353531.roa (hash: XAuPoyWgqk/2VSGKnl/UxA3UxeQIFy53PwlvcLnn9Pc=) 4: 323030313a3637383a3565343a3a2f34382d3438203d3e20323034303132.roa (hash: fxsQm1q2pmZhASyGNHE1h8SCDsGuI34aljSVVL+enkQ=) 5: 3138352e3230342e31342e302f32332d3234203d3e20323033393339.roa (hash: JQwkT1z8uimpbN2Jt8jPn0T3yATPeIOHsQosuzjWZdg=) 6: 3138352e3230342e31322e302f32332d3234203d3e203631393631.roa (hash: d3/k+6QX5UseLeqUWTi+l6cD1s9fc/SSlpG2TVD7AKo=) 7: 323030313a3637383a3565343a3a2f34382d3438203d3e203631393631.roa (hash: nbAVFkQiqft9sHl9Hh+TY61io/BSlt5tgmWs0gncRuY=) Validation: OK Signature path: rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Mar 2026 07:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:0a:3e:04:ba:40:40:75:dd:3a:82:cc:54:af:49:e7:78:34:71:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9a6c18f349b395c31c33bb7f9b9f5817bde9a8 Validity Not Before: Mar 29 10:29:55 2026 GMT Not After : Mar 30 11:34:55 2026 GMT Subject: CN=D63827347E651E3ADD108D7718FFF1902665418D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:01:59:ce:17:54:f3:64:1a:a0:9c:c5:ee:d5: 9b:c9:e1:89:3d:ea:91:c0:72:c0:d6:48:b4:9c:4d: 85:63:25:4f:38:05:3b:81:cd:e9:f2:e8:7d:9b:4c: 91:f4:97:e3:b9:ee:af:45:36:6b:b3:f9:34:d7:a6: 64:ed:04:4c:e2:fd:e2:83:3f:77:3c:75:cb:25:ce: 92:03:11:15:53:66:98:07:e9:34:6d:4c:9f:f2:0d: 6e:9b:f8:cc:a5:5f:f0:38:98:0c:2e:32:1f:77:a5: 92:e2:59:b4:fa:06:1d:16:4e:86:e9:33:06:25:95: 52:18:b3:87:ef:7c:07:6f:49:dd:57:8f:e1:65:54: 00:e9:db:18:57:26:a4:2b:12:da:9d:7b:cb:6b:e5: 69:5a:d0:fd:66:38:20:cd:ea:26:78:00:01:97:22: 25:3f:be:24:91:e7:d4:97:97:ae:1d:f4:39:d7:52: 43:e6:01:56:61:73:29:9e:a3:80:cc:61:8f:48:59: dc:96:0b:4f:75:8f:af:da:5c:dc:c5:c5:3d:ba:4e: 5e:8d:9a:3e:9d:6a:d6:86:59:a9:00:a3:03:72:dc: a5:9a:68:1b:fa:13:b3:f3:47:a3:6e:f3:f1:04:0c: ae:bb:d7:4f:7f:88:7a:46:4c:0e:62:a8:0c:dc:7a: fc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:38:27:34:7E:65:1E:3A:DD:10:8D:77:18:FF:F1:90:26:65:41:8D X509v3 Authority Key Identifier: keyid:4E:9A:6C:18:F3:49:B3:95:C3:1C:33:BB:7F:9B:9F:58:17:BD:E9:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer Subject Information Access: Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:10:8e:e5:8d:78:50:a4:c2:12:60:23:86:e3:2a:53:9e:82: 9c:45:fe:b2:30:61:af:01:97:a7:2b:23:c6:3d:7f:a5:6c:8c: 23:17:7b:ee:aa:ca:c4:01:2a:21:21:83:0c:38:1f:0a:33:6b: 6c:eb:4a:2c:15:54:52:13:81:fc:f3:0c:33:e5:21:46:4d:c4: 65:41:f6:70:6f:d5:0d:e7:31:72:27:87:42:4d:6b:b7:7a:f4: de:d7:28:9f:32:15:7f:a7:97:13:3a:bd:a1:50:07:59:04:f9: b2:72:d9:d4:ce:d5:92:0e:36:03:fd:24:d0:15:d6:35:cc:bd: 95:c6:6a:9d:41:ac:c8:60:65:f2:62:87:88:23:ed:b5:da:d3: 52:e0:b7:2a:55:3e:26:1c:1b:ed:4f:f4:1d:6c:24:26:bb:6b: 9e:c8:2c:0f:b8:ae:12:aa:fb:2c:69:c8:81:b1:f2:d9:62:9a: 42:b5:fe:29:e4:df:1a:92:23:a7:50:78:33:ad:4b:b5:fc:9d: ad:bb:5f:13:03:5d:60:37:0e:83:b3:21:9f:80:d2:b9:0b:af: bc:0a:8e:95:f4:b4:81:51:de:3c:99:6a:d6:cc:f5:9b:3d:2a: a0:7e:f5:71:53:c9:5c:a1:87:f4:e3:3c:e3:0d:c1:24:03:a1: 02:f9:5f:19 -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIULwo+BLpAQHXdOoLMVK9J53g0cW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5YTZjMThmMzQ5YjM5NWMzMWMzM2JiN2Y5YjlmNTgx N2JkZTlhODAeFw0yNjAzMjkxMDI5NTVaFw0yNjAzMzAxMTM0NTVaMDMxMTAvBgNV BAMTKEQ2MzgyNzM0N0U2NTFFM0FERDEwOEQ3NzE4RkZGMTkwMjY2NTQxOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeAVnOF1TzZBqgnMXu1ZvJ4Yk9 6pHAcsDWSLScTYVjJU84BTuBzeny6H2bTJH0l+O57q9FNmuz+TTXpmTtBEzi/eKD P3c8dcslzpIDERVTZpgH6TRtTJ/yDW6b+MylX/A4mAwuMh93pZLiWbT6Bh0WTobp MwYllVIYs4fvfAdvSd1Xj+FlVADp2xhXJqQrEtqde8tr5Wla0P1mOCDN6iZ4AAGX IiU/viSR59SXl64d9DnXUkPmAVZhcymeo4DMYY9IWdyWC091j6/aXNzFxT26Tl6N mj6dataGWakAowNy3KWaaBv6E7PzR6Nu8/EEDK67109/iHpGTA5iqAzcevwNAgMB AAGjggHrMIIB5zAdBgNVHQ4EFgQU1jgnNH5lHjrdEI13GP/xkCZlQY0wHwYDVR0j BBgwFoAUTppsGPNJs5XDHDO7f5ufWBe96agwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs aWN1cy8xLzRFOUE2QzE4RjM0OUIzOTVDMzFDMzNCQjdGOUI5RjU4MTdCREU5QTgu Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9UcHBzR1BOSnM1WERIRE83ZjV1ZldC ZTk2YWcuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzEvNEU5QTZDMThGMzQ5QjM5 NUMzMUMzM0JCN0Y5QjlGNTgxN0JERTlBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAGwQjuWNeFCkwhJg I4bjKlOegpxF/rIwYa8Bl6crI8Y9f6VsjCMXe+6qysQBKiEhgww4Hwoza2zrSiwV VFITgfzzDDPlIUZNxGVB9nBv1Q3nMXInh0JNa7d69N7XKJ8yFX+nlxM6vaFQB1kE +bJy2dTO1ZIONgP9JNAV1jXMvZXGap1BrMhgZfJih4gj7bXa01LgtypVPiYcG+1P 9B1sJCa7a57ILA+4rhKq+yxpyIGx8tlimkK1/ink3xqSI6dQeDOtS7X8na27XxMD XWA3DoOzIZ+A0rkLr7wKjpX0tIFR3jyZatbM9Zs9KqB+9XFTyVyhh/TjPOMNwSQD oQL5Xxk= -----END CERTIFICATE-----Generated at Sun Mar 29 14:54:57 2026 by rpki-client