Manifest
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json)
Hash identifier: doGSIsY/VvWJ+vfuqHe+xCmvjI+WBaSR9fW/NUDMwkI=
Subject key identifier: D3:CE:4B:4A:AA:5C:DF:08:8C:85:C3:FC:C9:16:84:B6:9E:15:BD:75
Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Certificate serial: 1DC320CADDEA32760A41ED0E08FB3E1D85A69DA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
Manifest number: BF
Signing time: Tue 13 May 2025 13:55:11 +0000
Manifest this update: Tue 13 May 2025 13:50:11 +0000
Manifest next update: Wed 14 May 2025 15:27:11 +0000
Files and hashes: 1: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: ZgUr2qpE2qPaXR+Tz76JM02MW3V7lvzWqkncrriqlm4=)
2: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: mqadfIJnOHBwBW3bzOjsszkG4yNmowPDrD6AKDG5B1Q=)
Validation: OK
Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 13:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:c3:20:ca:dd:ea:32:76:0a:41:ed:0e:08:fb:3e:1d:85:a6:9d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Validity
Not Before: May 13 13:50:11 2025 GMT
Not After : May 14 15:27:11 2025 GMT
Subject: CN=D3CE4B4AAA5CDF088C85C3FCC91684B69E15BD75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:83:a7:dc:ba:fa:36:3c:14:e0:60:59:48:a5:
46:e5:3c:5f:3a:62:b2:52:01:8a:b0:13:78:5e:f9:
e8:1c:d8:8f:6b:76:49:0a:85:55:69:bf:96:58:88:
c2:1d:1b:b6:5a:50:35:46:b1:f5:ef:50:c8:45:cb:
50:69:8e:2c:66:fc:df:3c:fc:1b:f2:71:a9:d9:b6:
ee:72:96:75:5d:b3:32:c1:5d:ec:98:fa:3e:36:5e:
c7:cc:2b:f0:ae:f4:a4:20:3c:0a:de:91:ff:d1:a9:
80:6e:b1:76:4f:99:d1:48:33:84:e8:46:08:25:28:
85:7a:40:83:fc:a5:8f:cd:87:15:e1:9b:db:dd:80:
d1:dc:97:46:64:84:72:7d:8a:13:a9:85:88:74:ca:
ec:97:d6:d6:08:31:d5:eb:a6:93:75:32:49:5a:3b:
61:e1:e3:a3:e1:20:46:02:6d:24:56:cb:8e:1d:21:
71:d6:a9:c6:70:4e:1f:98:89:02:b8:2a:af:85:07:
67:20:6d:65:b4:36:d5:a7:a1:c3:3e:10:d3:10:84:
99:60:74:14:d0:44:07:49:f0:f5:75:e1:8a:ad:7e:
d1:9b:16:1c:8a:70:52:70:b9:40:6a:8d:f5:9f:4b:
08:21:d6:41:a2:3c:d0:84:a3:dc:df:f4:43:ec:b7:
de:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:CE:4B:4A:AA:5C:DF:08:8C:85:C3:FC:C9:16:84:B6:9E:15:BD:75
X509v3 Authority Key Identifier:
keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:2f:36:e6:61:e9:a6:93:e1:cf:b7:82:ad:36:6e:e5:ce:9f:
07:2b:08:ca:22:a4:fb:ba:8d:2e:84:1f:85:25:72:cf:dc:85:
18:02:96:d6:e5:ec:c2:69:b4:c9:55:af:52:7b:4f:e7:6d:53:
79:c6:cd:10:f0:78:d7:b4:a9:80:fa:33:af:bb:e4:95:8b:ae:
1d:3f:df:7f:4d:e1:6d:eb:58:84:59:3f:b7:fe:f5:aa:2a:14:
72:dd:3c:f2:3f:68:a1:c7:f6:0c:a4:56:2e:24:36:61:13:4e:
90:21:97:07:c8:a6:91:ac:d9:f0:7a:68:ef:79:cc:2d:2a:bc:
b8:54:a8:8d:fa:b8:85:7b:89:fb:df:53:1d:84:53:b0:6d:ae:
3f:f8:dc:9e:66:5f:90:90:45:fe:09:0e:13:15:11:0c:48:68:
5f:55:e5:cf:f7:84:7c:82:84:f4:51:30:ae:a3:50:68:1a:80:
83:ad:30:e1:90:0b:06:ee:fa:28:00:0a:1c:5a:fb:63:4c:7c:
44:20:b2:2a:d5:79:00:cd:87:3f:fa:ca:5d:ec:62:64:d1:73:
70:05:f9:60:66:3a:b1:84:10:4a:b3:95:65:4d:0d:48:e4:88:
6c:2d:21:c0:66:48:f4:22:3b:13:bc:1f:9e:b3:fe:55:ce:ef:
56:21:d3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 16:18:43 2025 by rpki-client