$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft File: 4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft (raw, json) Hash identifier: WDfRdCn7o7xGtZdpIK91bgJdQ0prztnNVPJ4Xyt2r0o= Subject key identifier: 79:7D:0B:70:F0:34:5C:F9:27:FD:66:97:31:40:CC:13:B4:38:2C:30 Authority key identifier: 4E:9A:6C:18:F3:49:B3:95:C3:1C:33:BB:7F:9B:9F:58:17:BD:E9:A8 Certificate issuer: /CN=4e9a6c18f349b395c31c33bb7f9b9f5817bde9a8 Certificate serial: 7FB759A19CB7B89B6C5FD8808F66A6FF4C26C44D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer Subject info access: rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft Manifest number: 01A7 Signing time: Sat 08 Nov 2025 11:21:10 +0000 Manifest this update: Sat 08 Nov 2025 11:16:10 +0000 Manifest next update: Sun 09 Nov 2025 15:20:10 +0000 Files and hashes: 1: 323030313a3637383a3565343a3a2f34382d3438203d3e20323034303132.roa (hash: aQtSJ+DrPdjI6tdPjH35DjDz8hbObLwmapnYguKW8IE=) 2: 4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl (hash: /CygmYR1HLCsZQ7TpdyCYjy7d+qc/wlG6WHePPf/Gjs=) 3: 323030313a3637383a3565343a3a2f34382d3438203d3e20343031353531.roa (hash: 4UYrDw3R1HMApdgBpMB/GcyfbyVxIeygboeA0NGcRKA=) 4: 3138352e3230342e31342e302f32332d3233203d3e20323033393339.roa (hash: 0iU1VE4oIBeR0g+kEvaxFQYjnK8h1fW0reMHFIiSAYk=) 5: 3138352e3230342e31322e302f32332d3233203d3e203631393631.roa (hash: 05KBv20ho05+9nNhARljl3KvN1w1xbUcP6YBmhidjZI=) 6: 326130613a663034303a3a2f32392d3239203d3e203631393631.roa (hash: n9oD82N/Oc74KjefJWuXbdniXyTRuYdzVFV6P1uLFxM=) 7: 323030313a3637383a3565343a3a2f34382d3438203d3e203631393631.roa (hash: 9lXsRq2vH27QU6oONZHHcOI2KgKrR7I1qDb4jmPN0NI=) Validation: OK Signature path: rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 09 Nov 2025 15:20:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b7:59:a1:9c:b7:b8:9b:6c:5f:d8:80:8f:66:a6:ff:4c:26:c4:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9a6c18f349b395c31c33bb7f9b9f5817bde9a8 Validity Not Before: Nov 8 11:16:10 2025 GMT Not After : Nov 9 15:20:10 2025 GMT Subject: CN=797D0B70F0345CF927FD66973140CC13B4382C30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c4:89:92:85:8d:a9:2d:5a:62:ad:07:ba:02: 5b:54:03:0e:cd:8d:ec:5f:7d:d6:d4:7b:34:2a:e4: 3a:bf:5f:0c:32:d8:d7:90:c9:25:b3:7c:4e:1d:b1: 0d:79:40:93:7a:de:34:f0:5f:03:1d:73:43:1c:11: a3:18:99:d4:f1:52:9f:00:75:f2:ca:b0:a9:23:83: 23:80:47:45:65:e4:a3:b5:b3:8e:0e:f7:83:1c:86: db:e1:2b:ee:e2:ac:48:4d:af:af:f2:f3:fa:b5:fc: b3:96:71:55:17:ef:71:b5:b2:be:14:2e:8f:e5:3d: 29:47:db:20:37:2d:ad:ee:21:c1:f3:b3:f6:d3:e4: 12:ac:22:b5:2f:55:ad:94:4b:95:45:2e:4a:0e:fd: 1b:db:70:64:8c:3e:d8:2e:da:65:87:c4:77:33:72: 99:97:82:9f:62:1a:d4:c3:46:d7:66:9e:13:a1:6c: 26:03:ae:04:f5:4d:37:30:a1:7e:f8:5a:e6:ec:e5: bb:a0:55:64:df:ad:85:9a:6a:bc:d4:53:69:02:43: d9:63:c9:4a:df:a4:4b:0b:02:09:ea:78:bb:0f:0a: b6:b2:95:af:dc:9e:75:99:57:84:cd:73:9b:ec:3e: a2:2e:c2:4f:07:21:7e:c3:87:43:49:23:a4:51:e0: d9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:7D:0B:70:F0:34:5C:F9:27:FD:66:97:31:40:CC:13:B4:38:2C:30 X509v3 Authority Key Identifier: keyid:4E:9A:6C:18:F3:49:B3:95:C3:1C:33:BB:7F:9B:9F:58:17:BD:E9:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer Subject Information Access: Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:4d:d8:54:95:bd:39:9c:2a:0a:71:d6:d3:a8:9a:af:77:98: 43:92:e9:11:b3:32:33:b6:da:d0:61:f5:e1:4b:b5:e5:10:bf: 33:bf:c3:31:e7:fe:be:5e:a3:07:17:85:9a:1b:96:5b:1d:5c: 45:55:58:86:9c:1b:71:f1:32:96:e5:ba:54:fb:de:5e:fa:4f: 54:b9:09:42:7c:fc:57:34:07:28:de:5c:87:dd:2a:00:2a:62: c4:57:93:3a:75:70:58:7f:8f:97:7e:ba:70:25:bb:3b:9f:32: 1a:6f:c4:bb:4e:8e:f9:36:81:e4:55:bb:3d:67:29:54:ee:78: fc:ab:a9:14:10:69:8c:d8:5b:ef:b3:96:f5:61:a6:f8:18:51: 4b:06:a8:e1:93:e9:9e:9d:75:cc:8c:85:5b:fa:b9:d6:06:0a: bb:f0:49:c0:53:45:67:53:9a:73:65:25:22:fd:fa:be:da:5e: e6:be:82:dc:36:d5:d0:59:2b:5e:c0:76:db:c3:de:63:70:c6: 2e:21:22:80:cf:33:94:08:39:c3:20:26:29:a8:15:ec:6e:08: 56:b5:5f:1e:63:33:33:68:67:f4:a1:91:4d:97:a2:dd:dc:09: bd:13:ea:0a:b8:cc:46:24:06:71:78:70:80:10:57:85:e2:3f: cc:11:e9:4f -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUf7dZoZy3uJtsX9iAj2am/0wmxE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5YTZjMThmMzQ5YjM5NWMzMWMzM2JiN2Y5YjlmNTgx N2JkZTlhODAeFw0yNTExMDgxMTE2MTBaFw0yNTExMDkxNTIwMTBaMDMxMTAvBgNV BAMTKDc5N0QwQjcwRjAzNDVDRjkyN0ZENjY5NzMxNDBDQzEzQjQzODJDMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtxImShY2pLVpirQe6AltUAw7N jexffdbUezQq5Dq/Xwwy2NeQySWzfE4dsQ15QJN63jTwXwMdc0McEaMYmdTxUp8A dfLKsKkjgyOAR0Vl5KO1s44O94MchtvhK+7irEhNr6/y8/q1/LOWcVUX73G1sr4U Lo/lPSlH2yA3La3uIcHzs/bT5BKsIrUvVa2US5VFLkoO/RvbcGSMPtgu2mWHxHcz cpmXgp9iGtTDRtdmnhOhbCYDrgT1TTcwoX74Wubs5bugVWTfrYWaarzUU2kCQ9lj yUrfpEsLAgnqeLsPCrayla/cnnWZV4TNc5vsPqIuwk8HIX7Dh0NJI6RR4Nn5AgMB AAGjggHrMIIB5zAdBgNVHQ4EFgQUeX0LcPA0XPkn/WaXMUDME7Q4LDAwHwYDVR0j BBgwFoAUTppsGPNJs5XDHDO7f5ufWBe96agwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs aWN1cy8xLzRFOUE2QzE4RjM0OUIzOTVDMzFDMzNCQjdGOUI5RjU4MTdCREU5QTgu Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9UcHBzR1BOSnM1WERIRE83ZjV1ZldC ZTk2YWcuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzEvNEU5QTZDMThGMzQ5QjM5 NUMzMUMzM0JCN0Y5QjlGNTgxN0JERTlBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAI5N2FSVvTmcKgpx 1tOomq93mEOS6RGzMjO22tBh9eFLteUQvzO/wzHn/r5eowcXhZobllsdXEVVWIac G3HxMpblulT73l76T1S5CUJ8/Fc0ByjeXIfdKgAqYsRXkzp1cFh/j5d+unAluzuf MhpvxLtOjvk2geRVuz1nKVTuePyrqRQQaYzYW++zlvVhpvgYUUsGqOGT6Z6ddcyM hVv6udYGCrvwScBTRWdTmnNlJSL9+r7aXua+gtw21dBZK17AdtvD3mNwxi4hIoDP M5QIOcMgJimoFexuCFa1Xx5jMzNoZ/ShkU2Xot3cCb0T6gq4zEYkBnF4cIAQV4Xi P8wR6U8= -----END CERTIFICATE-----Generated at Sun Nov 9 00:50:38 2025 by rpki-client