This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json) Hash identifier: e3xW+LlgF1yRhLs0R0dfLxKxhHubSk0GjZFxNMOkwRY= Subject key identifier: A0:B1:F4:7A:33:F1:38:C3:F1:93:82:87:A9:64:7A:53:16:1D:6E:C6 Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Certificate serial: 460E342A73018BA0057C39D31E4756F0DB9826B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft Manifest number: 01D5 Signing time: Sat 06 Dec 2025 07:39:54 +0000 Manifest this update: Sat 06 Dec 2025 07:34:54 +0000 Manifest next update: Sun 07 Dec 2025 09:56:54 +0000 Files and hashes: 1: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: 7s5kSYH1DbSfowuVOrG3wfjclNvq71vCWTMKX5SA1NA=) 2: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: dGNQCna9ODWHfgPjSs3M++GDyt13FbbkGthkT0ugHzw=) Validation: OK Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 09:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:0e:34:2a:73:01:8b:a0:05:7c:39:d3:1e:47:56:f0:db:98:26:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Validity Not Before: Dec 6 07:34:54 2025 GMT Not After : Dec 7 09:56:54 2025 GMT Subject: CN=A0B1F47A33F138C3F1938287A9647A53161D6EC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:36:36:12:79:d4:a7:b1:2b:14:04:b7:d8:40: f0:20:9a:10:6d:9d:d9:a0:e3:0e:0e:af:ee:15:fa: ee:38:7e:b4:1b:7b:c0:ec:fb:51:13:d5:f0:e9:fc: 76:f7:9e:cf:fa:c8:21:d5:70:f5:3f:ac:8f:3a:07: fd:6a:25:2e:2b:92:54:48:cd:90:c5:57:b7:5d:55: c0:55:b7:99:17:98:ec:20:bb:cb:f7:0c:ad:14:54: 65:db:39:6c:86:c7:d3:da:99:60:6f:ec:a5:86:09: b5:ed:a8:9b:b9:1d:cb:5f:1b:a6:31:77:2e:0d:6a: 1b:fc:80:05:10:ab:af:da:75:cb:6e:ed:ce:af:35: fd:26:40:1c:9d:1a:8e:0b:9c:d1:d3:44:64:59:b2: 1a:0a:b7:62:9d:12:ff:b3:84:8f:50:e7:d5:35:15: 90:a8:79:21:8e:f7:f4:ba:8a:aa:97:79:30:2b:79: 44:73:13:e5:d9:4a:98:9d:a9:f8:e8:4d:09:0e:ee: 6f:81:f1:c3:1a:6f:fa:f3:74:74:61:23:0d:d5:43: 6f:84:54:64:56:49:a7:a9:99:67:51:d1:91:12:ac: bc:a8:48:cf:b6:dd:af:4b:25:c0:74:38:09:7a:be: a7:d7:25:19:1d:ad:8e:dc:01:67:7d:d9:54:5a:17: a5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B1:F4:7A:33:F1:38:C3:F1:93:82:87:A9:64:7A:53:16:1D:6E:C6 X509v3 Authority Key Identifier: keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:9e:43:b9:53:75:1f:94:7e:2c:5e:52:9f:08:49:bf:c1:d2: 2c:eb:2b:92:3a:27:0d:3e:86:0c:65:30:ca:31:0a:fd:3b:24: 03:2a:9b:6a:17:bc:11:52:f8:dc:19:8b:7d:c0:92:70:90:d1: a2:74:5b:db:4a:b7:1c:52:25:82:69:eb:ac:ea:c1:f3:f6:38: eb:40:22:d3:5e:ca:87:e0:e1:6b:70:2f:d8:4f:4a:79:f6:a1: dd:ff:4b:58:8a:55:ec:de:b1:98:64:dd:08:2e:77:82:7d:15: 32:6b:45:55:6d:23:4b:c3:2c:25:d3:75:b0:90:7f:98:f3:79: d8:8d:2e:6d:f5:0b:4f:e6:d6:6d:7d:fe:dd:cf:07:94:0c:ae: 0a:53:ff:8a:5b:d3:58:37:ec:27:11:f3:df:1e:fa:30:02:6b: ea:33:ce:ba:8a:42:5e:07:1b:1d:e4:b2:1c:27:d0:f4:d0:f7: aa:ad:a5:27:59:fe:95:4d:0f:26:48:83:36:dd:a0:cb:92:82: 0e:26:75:97:7a:69:62:6e:c5:61:6d:f7:73:04:a5:91:6a:54: 2d:e6:2b:0c:98:5c:a1:e7:54:2a:3f:20:0c:06:29:ef:5a:c4: 8c:66:21:fe:eb:04:c0:a2:1a:3b:d2:5b:63:04:e1:09:29:4b: 17:06:97:39 -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIURg40KnMBi6AFfDnTHkdW8NuYJrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjYwNTYxZGZmYmZkZTI1NWZlYzE0ZDRkOWYwZTEzZjQz NzUzNTJlNDAeFw0yNTEyMDYwNzM0NTRaFw0yNTEyMDcwOTU2NTRaMDMxMTAvBgNV BAMTKEEwQjFGNDdBMzNGMTM4QzNGMTkzODI4N0E5NjQ3QTUzMTYxRDZFQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNjYSedSnsSsUBLfYQPAgmhBt ndmg4w4Or+4V+u44frQbe8Ds+1ET1fDp/Hb3ns/6yCHVcPU/rI86B/1qJS4rklRI zZDFV7ddVcBVt5kXmOwgu8v3DK0UVGXbOWyGx9PamWBv7KWGCbXtqJu5HctfG6Yx dy4Nahv8gAUQq6/adctu7c6vNf0mQBydGo4LnNHTRGRZshoKt2KdEv+zhI9Q59U1 FZCoeSGO9/S6iqqXeTAreURzE+XZSpidqfjoTQkO7m+B8cMab/rzdHRhIw3VQ2+E VGRWSaepmWdR0ZESrLyoSM+23a9LJcB0OAl6vqfXJRkdrY7cAWd92VRaF6W/AgMB AAGjggHrMIIB5zAdBgNVHQ4EFgQUoLH0ejPxOMPxk4KHqWR6UxYdbsYwHwYDVR0j BBgwFoAUtgVh3/v94lX+wU1Nnw4T9DdTUuQwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs aWN1cy8wL0I2MDU2MURGRkJGREUyNTVGRUMxNEQ0RDlGMEUxM0Y0Mzc1MzUyRTQu Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC90Z1ZoM192OTRsWC13VTFObnc0VDlE ZFRVdVEuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzAvQjYwNTYxREZGQkZERTI1 NUZFQzE0RDREOUYwRTEzRjQzNzUzNTJFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAHGeQ7lTdR+Ufixe Up8ISb/B0izrK5I6Jw0+hgxlMMoxCv07JAMqm2oXvBFS+NwZi33AknCQ0aJ0W9tK txxSJYJp66zqwfP2OOtAItNeyofg4WtwL9hPSnn2od3/S1iKVezesZhk3Qgud4J9 FTJrRVVtI0vDLCXTdbCQf5jzediNLm31C0/m1m19/t3PB5QMrgpT/4pb01g37CcR 898e+jACa+ozzrqKQl4HGx3kshwn0PTQ96qtpSdZ/pVNDyZIgzbdoMuSgg4mdZd6 aWJuxWFt93MEpZFqVC3mKwyYXKHnVCo/IAwGKe9axIxmIf7rBMCiGjvSW2ME4Qkp SxcGlzk= -----END CERTIFICATE-----Generated at Sat Dec 6 20:49:29 2025 by rpki-client