Manifest
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
File: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft (raw, json)
Hash identifier: ImK+MTgVIp+BKsruHRasAuTxnJDjHFvUBHO5PwpRxys=
Subject key identifier: AC:76:0C:20:E5:84:DE:7E:B9:12:07:22:95:67:63:9E:D0:11:6D:E5
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 3BF6BF533414571B358A1B520722DD532E8856FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
Manifest number: 03BD
Signing time: Sun 27 Apr 2025 11:31:19 +0000
Manifest this update: Sun 27 Apr 2025 11:26:19 +0000
Manifest next update: Mon 28 Apr 2025 13:51:19 +0000
Files and hashes: 1: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl (hash: D0nRMvKtNOeYAxPJnkFLUSbjR49/aPD+8iJs2XG6fSY=)
2: AS50555.asa (hash: 6Tb3JWAiG3HB18+QURZTnhnTtpjs1INvbgLT/78hSiM=)
Validation: OK
Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 13:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:f6:bf:53:34:14:57:1b:35:8a:1b:52:07:22:dd:53:2e:88:56:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Apr 27 11:26:19 2025 GMT
Not After : Apr 28 13:51:19 2025 GMT
Subject: CN=AC760C20E584DE7EB91207229567639ED0116DE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2d:96:06:c7:09:b2:2c:92:0c:77:ac:92:d8:
b9:05:4d:b0:97:0a:ec:43:5a:5d:f5:97:a8:33:b1:
1e:68:e5:7f:7c:37:3d:60:a6:e2:57:c7:03:00:49:
b4:58:9f:05:b5:b1:56:48:09:32:8f:79:5b:74:16:
2f:77:f2:8a:6b:fd:e4:bb:ac:f2:1e:e7:26:86:24:
ab:5a:7b:22:89:2e:6f:78:48:3e:64:33:f9:54:73:
eb:fb:d1:75:11:7d:00:64:f4:e4:8a:e1:b9:92:c0:
48:c6:1a:94:ed:d8:5c:55:2c:ec:95:a6:e4:46:70:
11:87:7e:27:c9:67:78:1b:dd:e8:95:a4:86:8a:15:
04:fd:f2:bd:9e:1b:cd:9d:92:fc:eb:2e:b8:90:c1:
b2:02:1e:31:43:ce:ca:69:45:63:e6:40:3a:3f:3f:
a6:8c:c1:9b:02:2a:29:93:27:d1:b2:5e:10:15:07:
e3:fe:85:3f:2e:33:0e:eb:aa:63:44:24:2e:a1:21:
77:c4:ca:5e:f7:bf:3b:09:d7:7b:1b:05:e3:fa:67:
b6:3e:f2:b0:8b:82:34:15:5f:44:2d:01:64:3e:e6:
d5:4e:df:b5:a2:d0:23:d3:1e:ee:0f:ef:b0:4a:2a:
81:9e:80:81:e3:3e:d1:96:88:0f:30:19:1e:65:5b:
79:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:76:0C:20:E5:84:DE:7E:B9:12:07:22:95:67:63:9E:D0:11:6D:E5
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:7f:b1:bb:58:8d:46:af:95:7d:9d:58:99:eb:d3:88:ba:4c:
16:ea:c1:68:05:25:b8:90:c9:8d:2e:7a:ef:ee:7a:6d:f8:6f:
c9:29:c3:93:dc:26:c0:5c:d7:45:21:8b:87:95:75:f2:f0:19:
aa:cf:65:de:8a:03:e6:36:08:01:69:f3:d6:cc:9c:71:3b:c7:
bf:b2:18:f3:2c:88:e3:e8:66:01:10:aa:05:0d:7b:63:8e:4b:
00:f4:96:bc:0a:94:a0:f1:cb:b6:7b:76:61:a4:af:4c:ef:d6:
89:a6:c7:a7:04:6a:74:a3:5a:69:b1:65:1a:b4:03:19:93:92:
e8:98:0b:ad:40:11:6b:dd:2e:24:7a:db:55:1d:c6:51:af:8d:
f2:61:12:ce:ad:ad:34:37:c0:36:f1:27:0d:72:d0:c2:55:55:
cc:be:e7:09:a0:06:06:44:4d:1c:8b:cc:d3:1e:50:4b:07:61:
dc:9d:15:19:23:8b:ec:01:8d:a4:b5:a6:b9:ef:99:8f:02:c1:
f5:60:6c:db:e9:40:f5:2a:47:d0:8f:4d:4c:d7:5d:21:6e:25:
a4:6d:6f:3d:59:e4:eb:f5:c5:21:20:f5:75:ec:2b:ab:51:d2:
6f:18:16:3e:09:a0:84:19:b7:d9:0a:24:dc:8f:9c:59:ed:a5:
c7:a1:97:02
-----BEGIN CERTIFICATE-----
MIIE6TCCA9GgAwIBAgIUO/a/UzQUVxs1ihtSByLdUy6IVvswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGQxMGU4YTc2M2JmOGJhYmU5NmJlN2FiNDdmOWRiNTlk
OWQ5NTIzMjAeFw0yNTA0MjcxMTI2MTlaFw0yNTA0MjgxMzUxMTlaMDMxMTAvBgNV
BAMTKEFDNzYwQzIwRTU4NERFN0VCOTEyMDcyMjk1Njc2MzlFRDAxMTZERTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4LZYGxwmyLJIMd6yS2LkFTbCX
CuxDWl31l6gzsR5o5X98Nz1gpuJXxwMASbRYnwW1sVZICTKPeVt0Fi938opr/eS7
rPIe5yaGJKtaeyKJLm94SD5kM/lUc+v70XURfQBk9OSK4bmSwEjGGpTt2FxVLOyV
puRGcBGHfifJZ3gb3eiVpIaKFQT98r2eG82dkvzrLriQwbICHjFDzsppRWPmQDo/
P6aMwZsCKimTJ9GyXhAVB+P+hT8uMw7rqmNEJC6hIXfEyl73vzsJ13sbBeP6Z7Y+
8rCLgjQVX0QtAWQ+5tVO37Wi0CPTHu4P77BKKoGegIHjPtGWiA8wGR5lW3nrAgMB
AAGjggHzMIIB7zAdBgNVHQ4EFgQUrHYMIOWE3n65EgcilWdjntARbeUwHwYDVR0j
BBgwFoAUDRDop2O/i6vpa+erR/nbWdnZUjIwDgYDVR0PAQH/BAQDAgeAMGsGA1Ud
HwRkMGIwYKBeoFyGWnJzeW5jOi8vcmVwby5rYWdsLm1lL3Jwa2kvS2VhdG9uQUdM
YWlyLVRFU1QvMC8wRDEwRThBNzYzQkY4QkFCRTk2QkU3QUI0N0Y5REI1OUQ5RDk1
MjMyLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvRFJEb3AyT19pNnZwYS1lclJf
bmJXZG5aVWpJLmNlcjB2BggrBgEFBQcBCwRqMGgwZgYIKwYBBQUHMAuGWnJzeW5j
Oi8vcmVwby5rYWdsLm1lL3Jwa2kvS2VhdG9uQUdMYWlyLVRFU1QvMC8wRDEwRThB
NzYzQkY4QkFCRTk2QkU3QUI0N0Y5REI1OUQ5RDk1MjMyLm1mdDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAan+x
u1iNRq+VfZ1YmevTiLpMFurBaAUluJDJjS567+56bfhvySnDk9wmwFzXRSGLh5V1
8vAZqs9l3ooD5jYIAWnz1syccTvHv7IY8yyI4+hmARCqBQ17Y45LAPSWvAqUoPHL
tnt2YaSvTO/WiabHpwRqdKNaabFlGrQDGZOS6JgLrUARa90uJHrbVR3GUa+N8mES
zq2tNDfANvEnDXLQwlVVzL7nCaAGBkRNHIvM0x5QSwdh3J0VGSOL7AGNpLWmue+Z
jwLB9WBs2+lA9SpH0I9NTNddIW4lpG1vPVnk6/XFISD1dewrq1HSbxgWPgmghBm3
2Qok3I+cWe2lx6GXAg==
-----END CERTIFICATE-----
Generated at Mon Apr 28 01:05:23 2025 by rpki-client