This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json) Hash identifier: SP8+M2n7bpf7k7Qp+4jBZzseYa0hN5mrJOytyrZbghM= Subject key identifier: AC:5B:80:4B:60:DA:52:AE:03:1A:07:B4:B2:32:C2:8E:27:0A:D5:A9 Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Certificate serial: 6821DC225B6CC6D68096E363597BC7EAF4427E00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft Manifest number: 0221 Signing time: Sun 25 Jan 2026 21:29:29 +0000 Manifest this update: Sun 25 Jan 2026 21:24:29 +0000 Manifest next update: Tue 27 Jan 2026 00:49:29 +0000 Files and hashes: 1: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: 7s5kSYH1DbSfowuVOrG3wfjclNvq71vCWTMKX5SA1NA=) 2: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: 2lUlgn72QumMyHIk9BUfavM7NJ2e27AfLWvd8GHZMQs=) Validation: OK Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:21:dc:22:5b:6c:c6:d6:80:96:e3:63:59:7b:c7:ea:f4:42:7e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4 Validity Not Before: Jan 25 21:24:29 2026 GMT Not After : Jan 27 00:49:29 2026 GMT Subject: CN=AC5B804B60DA52AE031A07B4B232C28E270AD5A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:34:1f:de:26:71:eb:05:4b:0c:39:5f:76:4f: 76:9c:b2:15:cc:e9:f6:4f:54:f1:71:ac:d9:4d:b0: 96:a3:b7:67:be:d1:44:b4:37:dc:93:09:bd:8f:ab: 52:4f:9a:31:46:02:c8:c9:b5:9f:f8:46:b2:8c:63: e8:3e:5d:b3:f4:4d:fb:44:b7:8d:d1:d4:5a:cc:47: 7b:24:04:56:4d:3b:44:93:0a:a2:ed:ec:bf:be:e7: 9e:5e:6e:1d:96:ba:01:7a:79:b9:50:1b:b8:c0:c1: 1d:99:f4:05:03:4d:4d:f9:81:1b:7b:88:5b:05:91: 2c:fd:3e:17:93:65:b0:d6:6b:14:56:da:09:52:b9: 7e:3c:d8:96:db:70:e8:f9:50:6d:7d:da:fa:0e:26: 8e:d9:8b:c8:51:5a:c5:5b:86:50:a2:c2:50:e7:ca: fa:c8:0d:04:21:d2:eb:f3:ce:7c:3a:09:c3:bd:14: 5d:06:14:bf:90:30:47:f5:99:a0:72:a2:2f:82:2e: 44:9a:15:60:57:d4:71:a4:98:7a:0e:e2:5c:31:bd: a0:95:f5:ff:9e:f9:b5:a9:5c:d3:55:b4:79:5b:f6: e2:b7:c8:ba:9f:d9:e9:7b:fd:02:ad:32:b1:e6:2f: b9:f5:ba:7d:bf:59:d6:f7:3c:7f:c3:b9:b0:0f:3b: 61:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5B:80:4B:60:DA:52:AE:03:1A:07:B4:B2:32:C2:8E:27:0A:D5:A9 X509v3 Authority Key Identifier: keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:9a:45:6c:83:94:2b:b9:30:d4:6e:29:71:a4:58:b1:77:ac: 88:f9:0a:9f:04:7a:8c:0b:ba:ea:fe:88:42:b4:8e:28:cb:2f: 2e:4e:50:83:46:44:f6:99:55:d1:52:82:7a:e9:6b:d3:4a:a7: e6:ff:f1:4c:f1:e3:3e:8d:3a:64:e6:53:fb:66:0b:c8:a4:4b: c6:25:1d:d7:a1:6a:72:ee:b4:de:bf:e9:ee:81:ad:a5:5c:4d: 66:ad:70:7c:a7:56:67:d3:74:0d:fd:d6:67:8e:76:8a:90:70: 1e:d7:30:d5:66:38:d3:63:12:06:19:32:0e:d2:61:51:34:20: 27:10:7b:53:97:63:4c:ba:5c:e2:69:92:e7:33:60:c5:b3:7c: ab:35:4e:1b:0e:f2:ce:33:89:e4:6b:f1:c9:74:4f:bc:93:64: 0a:8e:39:68:7e:32:16:b3:4d:f6:0e:1d:2e:04:ee:5a:d0:f6: 20:19:c4:40:d7:05:1b:e5:f3:f3:dd:24:31:4a:a1:60:fa:de: c1:fd:27:a4:f6:5a:f1:8b:2f:ba:27:3c:31:e6:a7:d7:92:24: 6f:30:44:c0:25:c6:98:33:43:3f:d5:e2:db:ab:d0:7a:73:76: 21:f1:91:a7:4e:eb:9d:92:de:6b:14:39:20:c4:6c:70:7c:f0: f6:fd:32:3b -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUaCHcIltsxtaAluNjWXvH6vRCfgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjYwNTYxZGZmYmZkZTI1NWZlYzE0ZDRkOWYwZTEzZjQz NzUzNTJlNDAeFw0yNjAxMjUyMTI0MjlaFw0yNjAxMjcwMDQ5MjlaMDMxMTAvBgNV BAMTKEFDNUI4MDRCNjBEQTUyQUUwMzFBMDdCNEIyMzJDMjhFMjcwQUQ1QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5NB/eJnHrBUsMOV92T3acshXM 6fZPVPFxrNlNsJajt2e+0US0N9yTCb2Pq1JPmjFGAsjJtZ/4RrKMY+g+XbP0TftE t43R1FrMR3skBFZNO0STCqLt7L++555ebh2WugF6eblQG7jAwR2Z9AUDTU35gRt7 iFsFkSz9PheTZbDWaxRW2glSuX482JbbcOj5UG192voOJo7Zi8hRWsVbhlCiwlDn yvrIDQQh0uvzznw6CcO9FF0GFL+QMEf1maByoi+CLkSaFWBX1HGkmHoO4lwxvaCV 9f+e+bWpXNNVtHlb9uK3yLqf2el7/QKtMrHmL7n1un2/Wdb3PH/DubAPO2HdAgMB AAGjggHrMIIB5zAdBgNVHQ4EFgQUrFuAS2DaUq4DGge0sjLCjicK1akwHwYDVR0j BBgwFoAUtgVh3/v94lX+wU1Nnw4T9DdTUuQwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxs aWN1cy8wL0I2MDU2MURGRkJGREUyNTVGRUMxNEQ0RDlGMEUxM0Y0Mzc1MzUyRTQu Y3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC90Z1ZoM192OTRsWC13VTFObnc0VDlE ZFRVdVEuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9y cGtpLm5lbGxpY3VzLm5ldC9yZXBvL25lbGxpY3VzLzAvQjYwNTYxREZGQkZERTI1 NUZFQzE0RDREOUYwRTEzRjQzNzUzNTJFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsG AQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBACaaRWyDlCu5MNRu KXGkWLF3rIj5Cp8EeowLuur+iEK0jijLLy5OUINGRPaZVdFSgnrpa9NKp+b/8Uzx 4z6NOmTmU/tmC8ikS8YlHdehanLutN6/6e6BraVcTWatcHynVmfTdA391meOdoqQ cB7XMNVmONNjEgYZMg7SYVE0ICcQe1OXY0y6XOJpkuczYMWzfKs1ThsO8s4zieRr 8cl0T7yTZAqOOWh+MhazTfYOHS4E7lrQ9iAZxEDXBRvl8/PdJDFKoWD63sH9J6T2 WvGLL7onPDHmp9eSJG8wRMAlxpgzQz/V4tur0HpzdiHxkadO652S3msUOSDEbHB8 8Pb9Mjs= -----END CERTIFICATE-----Generated at Mon Jan 26 13:17:28 2026 by rpki-client