Manifest
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json)
Hash identifier: iBxF7Q/fYvebhPLoqdC6ApTay5qPd6bUw0rTzKMxv64=
Subject key identifier: C3:32:9B:C3:68:63:37:AC:6C:DA:86:C6:3A:6C:EA:93:FA:74:78:A7
Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Certificate serial: 0FAF9C602B8D97FE58E04D66E6DD67676C8F535D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
Manifest number: 0146
Signing time: Sat 23 Aug 2025 02:02:55 +0000
Manifest this update: Sat 23 Aug 2025 01:57:55 +0000
Manifest next update: Sun 24 Aug 2025 03:38:55 +0000
Files and hashes: 1: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: 6uX0vUT0VX7++/a1ereEkmsS+RJryLXU4nk9QEUwVDg=)
2: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: mqadfIJnOHBwBW3bzOjsszkG4yNmowPDrD6AKDG5B1Q=)
Validation: OK
Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:38:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:af:9c:60:2b:8d:97:fe:58:e0:4d:66:e6:dd:67:67:6c:8f:53:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Validity
Not Before: Aug 23 01:57:55 2025 GMT
Not After : Aug 24 03:38:55 2025 GMT
Subject: CN=C3329BC3686337AC6CDA86C63A6CEA93FA7478A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a1:4f:82:81:32:e2:8a:94:de:aa:a0:27:e9:
7e:12:01:b1:af:90:6a:97:83:8c:2d:2b:ab:a6:71:
16:b1:99:f1:40:5b:2b:90:5d:e7:f0:df:ef:10:6e:
f7:46:bf:a7:c3:29:ac:6f:ce:e5:e2:16:65:b0:f1:
9a:f9:72:f3:21:4c:9c:a8:21:7c:1f:13:0c:90:ad:
eb:a9:28:05:97:a4:80:d8:e3:60:e1:96:b9:d6:fd:
38:64:87:27:53:09:94:b6:d4:5d:07:04:4e:a1:49:
f2:7a:4c:0c:dc:f7:7d:4c:de:b5:2c:46:e8:4f:bf:
ef:89:35:61:23:fb:bf:0f:bb:a4:7d:5d:8b:b6:4c:
51:32:d9:fb:02:1a:6d:20:31:33:f7:40:e2:1b:67:
e5:db:a9:c7:f9:d3:41:63:25:ae:e3:8d:63:03:75:
5c:40:35:a6:63:c5:17:aa:1e:de:5b:4e:24:37:a7:
66:d0:df:f9:30:48:7f:10:db:f5:1c:3b:1f:76:09:
f6:cc:6f:d8:6f:02:07:41:37:0b:5f:22:c2:c4:d6:
cb:cd:03:6f:d6:0c:ad:6c:4a:c4:1b:9b:7d:29:16:
73:ae:ce:ce:75:07:79:ae:5d:a9:75:15:1a:4d:2e:
d9:47:2a:71:05:2e:61:93:fe:ee:25:36:9b:07:39:
d9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:32:9B:C3:68:63:37:AC:6C:DA:86:C6:3A:6C:EA:93:FA:74:78:A7
X509v3 Authority Key Identifier:
keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:b2:41:6e:b9:c6:71:58:a2:de:c2:a2:5c:6f:2d:98:e8:b7:
96:12:82:95:44:3f:6e:9a:c6:ef:e2:a0:40:60:ad:f6:3d:b2:
37:d0:52:20:b7:ad:61:e8:52:04:e6:d8:e3:b5:ca:56:65:b0:
a6:04:ad:9d:75:f4:4a:20:96:59:90:4a:fc:25:c4:b2:01:dc:
53:43:0b:3b:3a:35:99:1c:fe:fb:c9:07:8e:7c:b3:e1:85:cf:
84:42:f6:54:30:f4:64:dc:70:db:7d:57:21:7f:2a:4e:aa:9d:
70:92:1a:49:96:86:50:c5:84:c8:82:be:0f:cc:45:78:80:54:
22:70:4f:85:f6:68:2a:b2:3a:26:c2:c2:05:43:37:0e:00:b5:
31:7e:4c:f9:2a:22:5d:bf:8c:65:a7:1d:08:ed:0c:df:d4:da:
d4:7a:26:b5:77:63:34:95:c3:42:a9:29:c5:0f:ff:7a:84:07:
22:1f:aa:1a:d0:3c:b7:52:73:99:30:c7:21:24:1d:c7:01:9e:
22:ff:fe:3c:96:05:d9:7b:70:3d:9d:48:91:f9:ed:97:cc:09:
71:c8:b8:1a:2c:74:3c:9b:5a:ca:11:84:a7:07:94:8f:e0:56:
c3:b1:88:24:5f:52:27:0e:17:f5:e1:4e:2b:a2:14:e4:89:dc:
a3:a2:c4:b7
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgIUD6+cYCuNl/5Y4E1m5t1nZ2yPU10wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjYwNTYxZGZmYmZkZTI1NWZlYzE0ZDRkOWYwZTEzZjQz
NzUzNTJlNDAeFw0yNTA4MjMwMTU3NTVaFw0yNTA4MjQwMzM4NTVaMDMxMTAvBgNV
BAMTKEMzMzI5QkMzNjg2MzM3QUM2Q0RBODZDNjNBNkNFQTkzRkE3NDc4QTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUoU+CgTLiipTeqqAn6X4SAbGv
kGqXg4wtK6umcRaxmfFAWyuQXefw3+8QbvdGv6fDKaxvzuXiFmWw8Zr5cvMhTJyo
IXwfEwyQreupKAWXpIDY42DhlrnW/ThkhydTCZS21F0HBE6hSfJ6TAzc931M3rUs
RuhPv++JNWEj+78Pu6R9XYu2TFEy2fsCGm0gMTP3QOIbZ+Xbqcf500FjJa7jjWMD
dVxANaZjxReqHt5bTiQ3p2bQ3/kwSH8Q2/UcOx92CfbMb9hvAgdBNwtfIsLE1svN
A2/WDK1sSsQbm30pFnOuzs51B3muXal1FRpNLtlHKnEFLmGT/u4lNpsHOdl3AgMB
AAGjggHrMIIB5zAdBgNVHQ4EFgQUwzKbw2hjN6xs2obGOmzqk/p0eKcwHwYDVR0j
BBgwFoAUtgVh3/v94lX+wU1Nnw4T9DdTUuQwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud
HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs
aWN1cy8wL0I2MDU2MURGRkJGREUyNTVGRUMxNEQ0RDlGMEUxM0Y0Mzc1MzUyRTQu
Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp
cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC90Z1ZoM192OTRsWC13VTFObnc0VDlE
ZFRVdVEuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y
cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzAvQjYwNTYxREZGQkZERTI1
NUZFQzE0RDREOUYwRTEzRjQzNzUzNTJFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG
AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAKeyQW65xnFYot7C
olxvLZjot5YSgpVEP26axu/ioEBgrfY9sjfQUiC3rWHoUgTm2OO1ylZlsKYErZ11
9EogllmQSvwlxLIB3FNDCzs6NZkc/vvJB458s+GFz4RC9lQw9GTccNt9VyF/Kk6q
nXCSGkmWhlDFhMiCvg/MRXiAVCJwT4X2aCqyOibCwgVDNw4AtTF+TPkqIl2/jGWn
HQjtDN/U2tR6JrV3YzSVw0KpKcUP/3qEByIfqhrQPLdSc5kwxyEkHccBniL//jyW
Bdl7cD2dSJH57ZfMCXHIuBosdDybWsoRhKcHlI/gVsOxiCRfUicOF/XhTiuiFOSJ
3KOixLc=
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:37:12 2025 by rpki-client