$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft File: 4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft (raw, json) Hash identifier: jxigCF7/tLkna9o+idMfJqPbF8PiKUigfwXBd9x2L4M= Subject key identifier: 5A:0D:BC:72:86:2E:A7:3A:38:FD:7E:2C:98:DC:79:53:B0:23:53:82 Authority key identifier: 4E:9A:6C:18:F3:49:B3:95:C3:1C:33:BB:7F:9B:9F:58:17:BD:E9:A8 Certificate issuer: /CN=4e9a6c18f349b395c31c33bb7f9b9f5817bde9a8 Certificate serial: 1CB5EBCA891EB18137A1CCF52AFC4E52E6D2A366 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer Subject info access: rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft Manifest number: 0161 Signing time: Wed 17 Sep 2025 11:38:15 +0000 Manifest this update: Wed 17 Sep 2025 11:33:15 +0000 Manifest next update: Thu 18 Sep 2025 12:51:15 +0000 Files and hashes: 1: 3138352e3230342e31322e302f32332d3233203d3e203631393631.roa (hash: 05KBv20ho05+9nNhARljl3KvN1w1xbUcP6YBmhidjZI=) 2: 323030313a3637383a3565343a3a2f34382d3438203d3e203631393631.roa (hash: 9lXsRq2vH27QU6oONZHHcOI2KgKrR7I1qDb4jmPN0NI=) 3: 4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl (hash: A8PZFoF2FJjWi4tjOO9KLBFSUdagWjk4hrRkb3Ja6Wc=) 4: 326130613a663034303a3a2f32392d3239203d3e203631393631.roa (hash: n9oD82N/Oc74KjefJWuXbdniXyTRuYdzVFV6P1uLFxM=) 5: 3138352e3230342e31342e302f32332d3233203d3e20323033393339.roa (hash: 0iU1VE4oIBeR0g+kEvaxFQYjnK8h1fW0reMHFIiSAYk=) 6: 323030313a3637383a3565343a3a2f34382d3438203d3e20323034303132.roa (hash: aQtSJ+DrPdjI6tdPjH35DjDz8hbObLwmapnYguKW8IE=) 7: 323030313a3637383a3565343a3a2f34382d3438203d3e20343031353531.roa (hash: 4UYrDw3R1HMApdgBpMB/GcyfbyVxIeygboeA0NGcRKA=) Validation: OK Signature path: rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Sep 2025 12:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b5:eb:ca:89:1e:b1:81:37:a1:cc:f5:2a:fc:4e:52:e6:d2:a3:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9a6c18f349b395c31c33bb7f9b9f5817bde9a8 Validity Not Before: Sep 17 11:33:15 2025 GMT Not After : Sep 18 12:51:15 2025 GMT Subject: CN=5A0DBC72862EA73A38FD7E2C98DC7953B0235382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:46:8c:1d:39:81:35:c1:b4:57:46:26:e1:3f: 0d:93:7f:5b:60:27:25:fc:9d:af:1b:d4:40:f8:df: 22:3f:c1:8f:05:1e:67:04:b7:97:52:68:f8:ca:41: 52:41:ec:5b:29:87:e6:de:cf:91:26:bf:d5:bd:a6: 09:bf:41:9a:60:d2:38:f5:bb:5b:3e:b3:de:ac:5c: af:5b:50:99:e8:fa:35:0b:71:d4:2c:93:d5:59:b3: eb:24:df:61:6a:8c:99:a8:78:d2:42:8b:85:96:51: 74:4b:7a:4f:ce:33:45:26:40:79:94:bc:c9:41:75: 47:de:1d:bb:40:ef:99:8c:7e:c9:f2:be:1c:4d:43: 5f:ae:38:d9:a4:d1:e6:b5:20:97:7e:e3:e9:ae:4f: e0:17:92:77:37:bc:b5:42:45:91:1f:a8:da:9c:e1: 7a:78:f5:0c:ea:63:34:6f:ef:ee:84:12:30:3d:42: 17:7f:da:d7:7d:dc:60:ea:4a:01:85:66:ee:50:38: eb:df:ad:86:e5:59:8e:a2:f2:ce:f7:08:a0:af:df: 71:20:67:05:f4:0c:57:cf:b6:25:c3:2e:eb:79:ca: 25:d3:f0:b6:0f:14:93:06:d0:f2:4b:3b:7e:03:74: 94:4a:35:8a:21:0e:50:1f:5b:af:c5:c6:e9:a2:c0: b9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0D:BC:72:86:2E:A7:3A:38:FD:7E:2C:98:DC:79:53:B0:23:53:82 X509v3 Authority Key Identifier: keyid:4E:9A:6C:18:F3:49:B3:95:C3:1C:33:BB:7F:9B:9F:58:17:BD:E9:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer Subject Information Access: Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:d6:15:96:d6:eb:ff:01:5e:0f:55:ee:27:87:90:32:34:14: f5:b0:58:be:72:9a:17:8c:be:12:7b:b2:d9:d6:33:0e:59:4d: 45:d0:c1:ee:8e:57:c3:c9:bd:56:0f:34:b8:27:4a:01:5d:d8: b3:cb:30:a8:ca:38:86:fe:fb:10:9a:a9:de:37:11:60:f4:2a: cf:29:eb:d7:ff:e2:30:d7:66:ae:14:22:5d:c4:76:73:78:2c: 8b:fe:ea:d0:a1:fd:b5:a5:03:8a:4d:c2:43:72:05:09:7a:fc: d9:0a:1f:03:47:d7:3c:cf:6e:5b:00:4b:24:a7:43:f9:5d:c0: d5:78:bf:91:b5:4b:c0:5b:98:f7:3a:76:04:d3:f2:31:6e:b0: 12:ec:3f:a4:b7:71:2c:b3:2f:7c:46:49:c4:79:61:f9:59:0a: 68:1e:5e:65:9d:81:89:29:9f:5a:7e:ed:e3:05:c9:a7:d9:98: a7:c9:31:0e:c9:00:e3:da:b9:08:04:23:5e:38:f4:de:79:be: bf:89:1f:ea:23:90:6e:a7:bd:dc:0e:a6:34:55:d6:29:8f:d1: ce:8c:e6:84:90:e2:b4:44:cd:83:50:31:de:eb:27:54:2c:13: aa:10:dd:58:60:d0:a2:70:ed:21:63:e3:b8:53:4b:90:a9:7c: 67:ec:39:7e -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUHLXryokesYE3ocz1KvxOUubSo2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5YTZjMThmMzQ5YjM5NWMzMWMzM2JiN2Y5YjlmNTgx N2JkZTlhODAeFw0yNTA5MTcxMTMzMTVaFw0yNTA5MTgxMjUxMTVaMDMxMTAvBgNV BAMTKDVBMERCQzcyODYyRUE3M0EzOEZEN0UyQzk4REM3OTUzQjAyMzUzODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2RowdOYE1wbRXRibhPw2Tf1tg JyX8na8b1ED43yI/wY8FHmcEt5dSaPjKQVJB7Fsph+bez5Emv9W9pgm/QZpg0jj1 u1s+s96sXK9bUJno+jULcdQsk9VZs+sk32FqjJmoeNJCi4WWUXRLek/OM0UmQHmU vMlBdUfeHbtA75mMfsnyvhxNQ1+uONmk0ea1IJd+4+muT+AXknc3vLVCRZEfqNqc 4Xp49QzqYzRv7+6EEjA9Qhd/2td93GDqSgGFZu5QOOvfrYblWY6i8s73CKCv33Eg ZwX0DFfPtiXDLut5yiXT8LYPFJMG0PJLO34DdJRKNYohDlAfW6/FxumiwLl3AgMB AAGjggHrMIIB5zAdBgNVHQ4EFgQUWg28coYupzo4/X4smNx5U7AjU4IwHwYDVR0j BBgwFoAUTppsGPNJs5XDHDO7f5ufWBe96agwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs aWN1cy8xLzRFOUE2QzE4RjM0OUIzOTVDMzFDMzNCQjdGOUI5RjU4MTdCREU5QTgu Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9UcHBzR1BOSnM1WERIRE83ZjV1ZldC ZTk2YWcuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzEvNEU5QTZDMThGMzQ5QjM5 NUMzMUMzM0JCN0Y5QjlGNTgxN0JERTlBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBADvWFZbW6/8BXg9V 7ieHkDI0FPWwWL5ymheMvhJ7stnWMw5ZTUXQwe6OV8PJvVYPNLgnSgFd2LPLMKjK OIb++xCaqd43EWD0Ks8p69f/4jDXZq4UIl3EdnN4LIv+6tCh/bWlA4pNwkNyBQl6 /NkKHwNH1zzPblsASySnQ/ldwNV4v5G1S8BbmPc6dgTT8jFusBLsP6S3cSyzL3xG ScR5YflZCmgeXmWdgYkpn1p+7eMFyafZmKfJMQ7JAOPauQgEI1449N55vr+JH+oj kG6nvdwOpjRV1imP0c6M5oSQ4rREzYNQMd7rJ1QsE6oQ3Vhg0KJw7SFj47hTS5Cp fGfsOX4= -----END CERTIFICATE-----Generated at Thu Sep 18 05:43:23 2025 by rpki-client