Manifest
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
File: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft (raw, json)
Hash identifier: cnmDOhORw7UYLtm+sJaIWRCB4ExoY68PYCGBh/oGSrY=
Subject key identifier: EB:58:BF:73:C9:D6:C5:4D:18:8A:EE:08:25:47:B9:83:8E:52:6A:4A
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 4B2FF58440CAE647235C18A63736F035226E0219
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
Manifest number: 03DA
Signing time: Tue 03 Jun 2025 18:53:37 +0000
Manifest this update: Tue 03 Jun 2025 18:48:37 +0000
Manifest next update: Wed 04 Jun 2025 22:33:37 +0000
Files and hashes: 1: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl (hash: S16iaUvbq8VR72A1jMVr0v0OkBcQorPTrstpr+iBNqE=)
2: AS50555.asa (hash: 6Tb3JWAiG3HB18+QURZTnhnTtpjs1INvbgLT/78hSiM=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:2f:f5:84:40:ca:e6:47:23:5c:18:a6:37:36:f0:35:22:6e:02:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Jun 3 18:48:37 2025 GMT
Not After : Jun 4 22:33:37 2025 GMT
Subject: CN=EB58BF73C9D6C54D188AEE082547B9838E526A4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:32:bf:66:80:04:59:75:2a:af:c2:9c:77:d4:
01:27:9a:2c:05:30:91:ab:6b:5c:2b:94:ad:10:67:
3c:a4:0c:79:dc:5a:88:29:40:a7:64:3d:c5:4e:31:
68:ec:2c:cc:a2:32:cd:e3:cb:af:c0:2d:93:63:1c:
9d:17:59:a0:42:17:ed:4e:7b:da:4e:c6:bd:48:30:
6c:46:53:7c:2b:72:f8:59:f5:ad:87:80:f4:5a:85:
76:63:9d:11:0e:8e:b1:66:97:79:74:27:9a:9e:12:
cd:eb:fc:08:69:4d:1f:62:aa:ca:75:32:8f:66:9e:
2c:21:6f:a0:f5:8b:c0:bf:90:c8:c6:07:bc:52:ae:
4e:1c:02:d4:6b:07:91:12:32:2c:dc:01:3b:6e:2a:
d9:21:fd:f3:d1:66:fa:5b:81:f5:b9:7c:2c:a8:7d:
57:ed:7a:78:e6:af:a0:12:a4:80:9d:b0:be:c5:d2:
a6:f9:bf:a5:76:67:e7:ce:05:d3:26:cd:b2:0e:c2:
07:b4:35:c1:ab:12:90:f0:06:c5:64:b4:8c:2a:96:
bd:c7:44:3a:40:20:88:2c:27:b0:7d:c6:e1:ea:c2:
77:a0:af:ff:f8:ef:0c:a2:c0:d6:bf:48:76:79:32:
92:96:b7:78:6e:4d:a1:ce:9d:e5:85:d5:3f:ae:8d:
d8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:58:BF:73:C9:D6:C5:4D:18:8A:EE:08:25:47:B9:83:8E:52:6A:4A
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:9b:a4:63:47:05:3f:d2:eb:c8:4f:38:a8:61:9f:1a:1e:20:
73:d8:7e:01:81:53:b5:af:d7:f3:c2:b6:10:60:94:99:d1:ba:
18:36:38:06:a6:d6:36:88:95:83:7b:f3:42:2c:55:5e:8b:40:
77:21:aa:e7:c4:b8:f6:94:55:0d:bf:a5:75:cf:6c:4e:5c:b1:
0a:67:86:aa:77:ba:d3:70:d4:41:44:fb:b1:ae:26:f5:6a:41:
1e:36:49:c7:1a:44:59:7b:85:2b:7c:a9:01:b3:c7:86:b0:8e:
52:ff:9b:09:5e:b1:1c:45:df:8f:35:de:79:9a:bd:86:e9:ac:
ca:df:d0:f2:2a:af:fb:1d:1d:a7:5e:91:ba:a9:98:88:7d:e5:
f6:3d:02:b4:fd:92:e3:9b:56:18:96:6d:17:74:28:ec:56:96:
26:f7:9e:07:02:e9:c0:a8:80:15:8e:17:48:e8:98:f5:a7:73:
4a:82:da:ec:c2:e0:81:88:29:a0:38:e5:1d:a7:6e:d1:56:54:
a6:5e:74:c0:d0:0a:b8:d9:3d:af:23:d2:94:76:a4:f2:f0:fc:
3e:6b:fe:6b:0d:9e:95:57:10:5d:b8:7c:90:f0:56:bc:78:ee:
45:90:f6:88:7b:79:9d:8b:fa:95:ea:65:3f:27:29:b0:4d:8f:
6c:ef:bf:fa
-----BEGIN CERTIFICATE-----
MIIE6TCCA9GgAwIBAgIUSy/1hEDK5kcjXBimNzbwNSJuAhkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGQxMGU4YTc2M2JmOGJhYmU5NmJlN2FiNDdmOWRiNTlk
OWQ5NTIzMjAeFw0yNTA2MDMxODQ4MzdaFw0yNTA2MDQyMjMzMzdaMDMxMTAvBgNV
BAMTKEVCNThCRjczQzlENkM1NEQxODhBRUUwODI1NDdCOTgzOEU1MjZBNEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsMr9mgARZdSqvwpx31AEnmiwF
MJGra1wrlK0QZzykDHncWogpQKdkPcVOMWjsLMyiMs3jy6/ALZNjHJ0XWaBCF+1O
e9pOxr1IMGxGU3wrcvhZ9a2HgPRahXZjnREOjrFml3l0J5qeEs3r/AhpTR9iqsp1
Mo9mniwhb6D1i8C/kMjGB7xSrk4cAtRrB5ESMizcATtuKtkh/fPRZvpbgfW5fCyo
fVftenjmr6ASpICdsL7F0qb5v6V2Z+fOBdMmzbIOwge0NcGrEpDwBsVktIwqlr3H
RDpAIIgsJ7B9xuHqwnegr//47wyiwNa/SHZ5MpKWt3huTaHOneWF1T+ujdi3AgMB
AAGjggHzMIIB7zAdBgNVHQ4EFgQU61i/c8nWxU0Yiu4IJUe5g45SakowHwYDVR0j
BBgwFoAUDRDop2O/i6vpa+erR/nbWdnZUjIwDgYDVR0PAQH/BAQDAgeAMGsGA1Ud
HwRkMGIwYKBeoFyGWnJzeW5jOi8vcmVwby5rYWdsLm1lL3Jwa2kvS2VhdG9uQUdM
YWlyLVRFU1QvMC8wRDEwRThBNzYzQkY4QkFCRTk2QkU3QUI0N0Y5REI1OUQ5RDk1
MjMyLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvRFJEb3AyT19pNnZwYS1lclJf
bmJXZG5aVWpJLmNlcjB2BggrBgEFBQcBCwRqMGgwZgYIKwYBBQUHMAuGWnJzeW5j
Oi8vcmVwby5rYWdsLm1lL3Jwa2kvS2VhdG9uQUdMYWlyLVRFU1QvMC8wRDEwRThB
NzYzQkY4QkFCRTk2QkU3QUI0N0Y5REI1OUQ5RDk1MjMyLm1mdDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANZuk
Y0cFP9LryE84qGGfGh4gc9h+AYFTta/X88K2EGCUmdG6GDY4BqbWNoiVg3vzQixV
XotAdyGq58S49pRVDb+ldc9sTlyxCmeGqne603DUQUT7sa4m9WpBHjZJxxpEWXuF
K3ypAbPHhrCOUv+bCV6xHEXfjzXeeZq9humsyt/Q8iqv+x0dp16RuqmYiH3l9j0C
tP2S45tWGJZtF3Qo7FaWJveeBwLpwKiAFY4XSOiY9adzSoLa7MLggYgpoDjlHadu
0VZUpl50wNAKuNk9ryPSlHak8vD8Pmv+aw2elVcQXbh8kPBWvHjuRZD2iHt5nYv6
leplPycpsE2PbO+/+g==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:55:45 2025 by rpki-client