Manifest
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
File: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft (raw, json)
Hash identifier: ycvmyfyWDbENEwTieavymVk7i9UyY7XqundkzcfHfGk=
Subject key identifier: 4E:5B:E9:87:2B:E7:2E:98:E2:7B:0C:A5:7C:72:2F:DB:E1:98:F9:7B
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 45304075E1CC5F7D3E806C3B1C99DC9E4BB2C84B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
Manifest number: 0424
Signing time: Wed 06 Aug 2025 02:56:34 +0000
Manifest this update: Wed 06 Aug 2025 02:51:34 +0000
Manifest next update: Thu 07 Aug 2025 03:45:34 +0000
Files and hashes: 1: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl (hash: XvFhDmQCS3TskQpI/W8hv16c6kb7lZn69IJbGezsZ9Y=)
2: AS50555.asa (hash: 6Tb3JWAiG3HB18+QURZTnhnTtpjs1INvbgLT/78hSiM=)
Validation: OK
Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:30:40:75:e1:cc:5f:7d:3e:80:6c:3b:1c:99:dc:9e:4b:b2:c8:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Aug 6 02:51:34 2025 GMT
Not After : Aug 7 03:45:34 2025 GMT
Subject: CN=4E5BE9872BE72E98E27B0CA57C722FDBE198F97B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a8:db:2a:62:16:1f:c5:8a:bc:26:18:b8:13:
1d:c7:a5:a3:a7:ff:84:77:5c:dd:27:5a:88:26:ff:
60:85:57:85:40:99:c9:ec:58:4d:f3:cb:c3:2e:1c:
02:a2:df:cc:81:06:56:08:91:e6:7a:8c:e8:47:8d:
7d:d2:7d:10:37:cf:2f:63:73:f2:2a:03:ec:a1:44:
d1:b2:f3:4c:97:2b:b4:ac:45:65:11:51:ac:00:af:
41:11:fc:b3:02:71:1a:37:28:9f:b7:05:ae:0a:3f:
80:4b:81:6f:cf:0d:15:25:c7:f7:c7:d6:aa:01:fd:
6f:51:4f:cf:2a:68:bc:5f:93:0f:eb:06:c2:dd:4c:
fc:f8:f5:a5:73:aa:f3:44:63:a0:9f:a8:df:ff:85:
13:7c:8b:37:e3:b0:04:c8:50:45:24:ea:ce:d1:d0:
1b:bc:54:c1:37:e4:0f:69:b1:12:39:d1:a0:85:78:
14:e3:6e:24:20:38:6d:dd:8e:ef:e7:2b:c2:b6:ff:
eb:db:b3:a0:fb:df:39:a8:60:fb:54:78:9c:04:bb:
80:d4:3a:1e:e2:d2:9d:2c:16:d9:1b:8f:85:29:90:
72:57:22:21:0e:a3:28:e4:f3:4c:2b:55:70:3b:cd:
af:8f:ab:ba:72:9b:fb:15:6b:eb:8f:04:06:d7:d7:
cb:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5B:E9:87:2B:E7:2E:98:E2:7B:0C:A5:7C:72:2F:DB:E1:98:F9:7B
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:17:cd:6c:4a:14:cb:91:ed:f6:48:1e:91:15:ca:ae:25:70:
2a:ab:77:35:ae:91:7a:9b:69:7a:fb:eb:96:08:12:d0:f5:39:
84:8c:4b:f5:f7:c7:b2:69:0f:a0:b5:e2:12:ef:6f:74:78:05:
db:83:9b:bc:8c:11:5e:b0:0a:2d:94:ae:7a:2f:b3:2a:19:58:
54:fb:bc:c5:96:2c:b1:d0:9d:5b:81:a5:91:89:b6:f1:e6:4f:
dd:1c:25:92:e6:b6:ad:76:6d:df:c1:ad:1a:47:82:e4:87:ac:
e0:1d:80:b7:c3:5d:28:e4:fd:3f:1b:08:d9:bb:0b:09:3e:a6:
ff:62:c0:25:de:33:90:e1:ca:87:41:7f:37:c4:f4:d6:62:b2:
f4:3e:0d:d7:76:59:61:d0:65:02:a2:6d:24:7e:04:54:ee:45:
1d:d5:f6:3e:5a:fd:4b:fc:32:eb:18:ab:92:55:93:ea:5b:45:
bb:f3:89:a8:c9:40:74:ab:a2:39:d0:b1:3c:0b:06:14:8a:c2:
c9:9a:8b:39:15:f7:1f:6b:b8:8b:75:3a:c8:54:01:ab:34:b7:
cc:eb:cc:1b:c0:45:fb:8e:af:b6:83:47:1e:6b:4a:3f:08:ee:
1a:83:91:65:b4:fe:1f:f8:a4:4d:ba:27:3f:cb:21:26:5f:e1:
bf:63:00:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:14:12 2025 by rpki-client