Manifest
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json)
Hash identifier: rmbFzHn4/b0zpvhDgNRMS2cR9vd4MxIzrxK9mEf/hug=
Subject key identifier: E4:C5:0F:94:8C:25:34:B4:16:A7:8D:DC:C7:8E:D9:97:CE:0A:91:CE
Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Certificate serial: 3CC2A58991F919D23B970384D461BA71A7305205
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
Manifest number: 0272
Signing time: Wed 25 Mar 2026 16:59:42 +0000
Manifest this update: Wed 25 Mar 2026 16:54:42 +0000
Manifest next update: Thu 26 Mar 2026 20:58:42 +0000
Files and hashes: 1: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: TGwwTRiyBih4EV3vrl2k/I22QC+inO/a3Y8PKkFZAOc=)
2: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: 7s5kSYH1DbSfowuVOrG3wfjclNvq71vCWTMKX5SA1NA=)
Validation: OK
Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:58:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:c2:a5:89:91:f9:19:d2:3b:97:03:84:d4:61:ba:71:a7:30:52:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Validity
Not Before: Mar 25 16:54:42 2026 GMT
Not After : Mar 26 20:58:42 2026 GMT
Subject: CN=E4C50F948C2534B416A78DDCC78ED997CE0A91CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c6:47:04:50:8b:da:07:7e:38:f1:bc:ac:aa:
61:6c:d9:d0:b1:7c:39:8a:dc:65:73:32:b4:4b:85:
70:88:20:d5:cd:be:65:c5:c0:06:e1:55:36:7f:ca:
96:71:03:07:8d:e7:42:15:f0:27:e6:65:94:8e:d2:
28:72:90:9a:e6:fa:24:fa:fa:57:ca:12:30:ca:e9:
2f:5a:1c:9d:52:ea:be:0f:7f:d4:b4:0f:85:7c:96:
ef:c7:6e:e2:52:ad:69:ca:b8:f9:28:69:93:b5:1e:
e2:99:c8:23:25:ad:f4:f8:26:a4:0f:1f:7d:db:27:
38:92:f2:0b:9a:e7:52:61:bc:cf:7f:9e:f9:62:ff:
0a:16:36:f9:aa:d6:21:1b:9a:5c:9e:56:61:9a:79:
56:be:2d:e3:c4:5a:23:9c:d4:e7:3e:6e:fb:39:67:
df:5d:93:45:bc:a3:52:16:f8:f5:3f:9c:ff:c4:06:
61:20:43:c9:ad:48:57:63:dd:4e:ea:73:1d:6b:4e:
b0:28:3a:69:94:77:da:25:88:62:c1:e6:9f:d7:58:
a0:72:7b:7f:b9:30:ba:52:7e:35:5b:6a:19:18:fd:
d8:17:51:40:0c:7f:72:c5:5a:86:70:4b:1c:94:f2:
36:81:70:d0:78:84:7f:98:98:61:f9:11:23:46:d8:
b5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C5:0F:94:8C:25:34:B4:16:A7:8D:DC:C7:8E:D9:97:CE:0A:91:CE
X509v3 Authority Key Identifier:
keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:06:0b:95:2f:b4:d2:45:31:46:c1:bb:05:a0:f8:6b:b1:4f:
8d:9a:02:65:fb:11:d1:79:bd:2b:e1:e1:d7:ad:39:75:b0:ab:
61:a1:d1:df:fd:70:cf:6e:c9:61:60:24:9f:36:da:33:d2:7e:
22:0c:a7:92:0c:a8:09:d8:d0:e1:02:fb:fe:c4:03:89:58:88:
82:39:0e:06:f2:73:4c:36:86:31:72:66:53:7c:3a:8e:aa:fb:
64:aa:eb:66:ae:bf:c6:3e:1c:a2:e7:e4:c5:94:0a:e7:86:10:
e8:f2:df:a1:e7:76:bc:b1:df:ca:40:f0:0b:a1:59:27:6e:1a:
67:77:1c:67:b3:82:52:c2:ed:8c:a3:01:cd:14:cf:ea:17:80:
0b:62:7c:e0:52:5f:b1:17:11:fa:01:35:91:67:de:6e:4f:40:
bc:e0:9c:fb:c3:a5:20:8e:fc:56:f6:78:e0:8d:63:80:52:4c:
44:0d:97:a7:f3:97:3d:8f:a0:6b:88:3b:80:54:92:be:fe:1b:
85:12:66:0a:8d:eb:b5:0f:db:cc:57:72:08:1e:b5:23:2e:f0:
d8:37:99:7e:de:c3:f9:87:d3:74:57:5f:b4:f1:51:ac:7d:24:
2f:63:ed:57:57:4d:57:a3:85:ef:4e:29:1a:d2:23:05:0e:09:
7a:35:cb:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:02:29 2026 by rpki-client