Manifest
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
File: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft (raw, json)
Hash identifier: l2PrQMFHXBgT+5JI4Adtrxa1IY/1azCbZnhntsRQyzA=
Subject key identifier: BA:6D:F4:79:CA:6A:01:55:34:7D:50:24:E3:2D:E4:3F:39:E2:6D:96
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 4F837E7906BB68260339353A9B6A7F3BD34871BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
Manifest number: 03A0
Signing time: Sat 05 Apr 2025 12:53:51 +0000
Manifest this update: Sat 05 Apr 2025 12:48:51 +0000
Manifest next update: Sun 06 Apr 2025 14:54:51 +0000
Files and hashes: 1: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl (hash: I0lrvxFCoj2cxZ1TNQ+cmNouqyZ1b7zIyLR7MQMaLiY=)
2: AS50555.asa (hash: 6Tb3JWAiG3HB18+QURZTnhnTtpjs1INvbgLT/78hSiM=)
Validation: OK
Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 14:54:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:83:7e:79:06:bb:68:26:03:39:35:3a:9b:6a:7f:3b:d3:48:71:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Apr 5 12:48:51 2025 GMT
Not After : Apr 6 14:54:51 2025 GMT
Subject: CN=BA6DF479CA6A0155347D5024E32DE43F39E26D96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f9:0e:a9:4f:cc:67:00:15:91:a8:f6:be:ea:
50:2b:cc:9f:87:48:b5:c4:ac:e3:9a:3d:e6:89:77:
f0:04:fd:b5:fc:8b:22:6b:71:7c:7b:5f:80:e9:16:
bb:96:10:3c:4e:36:b4:fd:05:b0:0f:a8:c5:c0:9d:
ed:8d:41:04:fc:77:9b:7a:62:d1:c2:0a:7d:d0:09:
7e:10:63:a9:76:58:88:6b:1f:f8:5c:f9:77:e0:3f:
ab:55:e7:f6:22:b1:74:00:76:8a:53:7c:91:02:5d:
b4:b4:46:d6:0a:cb:54:d8:29:79:e2:47:5c:09:92:
84:d7:df:3e:b6:cc:0b:ba:8c:2f:d5:85:ae:04:b7:
6f:ef:fd:56:1a:a5:ca:7b:f4:c6:c1:a2:89:d5:57:
08:99:d2:f1:1f:fd:e0:34:e9:34:6f:85:6e:7c:aa:
7c:f0:07:e1:fa:83:2a:aa:a8:ac:20:de:8c:50:31:
8e:58:ed:f2:a6:fd:a6:7a:0b:a4:53:9a:79:53:db:
7c:a7:d6:5e:ef:07:da:2a:10:2d:24:1c:78:e9:5b:
ba:33:81:d7:45:5f:53:83:8d:3d:7e:73:f1:5a:86:
48:d5:ab:91:06:27:66:a2:66:63:58:ff:77:6a:b0:
9b:8c:d9:f1:cb:ff:32:4f:0d:da:94:13:4e:2b:a9:
53:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6D:F4:79:CA:6A:01:55:34:7D:50:24:E3:2D:E4:3F:39:E2:6D:96
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:0e:1b:e0:d7:2e:13:34:89:1a:42:85:03:42:0f:b2:4b:99:
9a:88:51:84:b2:0f:32:de:75:ef:52:dd:b4:d3:5c:9d:75:2a:
c5:4e:e4:15:fb:aa:da:a0:b2:b5:c2:c5:f5:42:9b:d2:ea:e8:
b5:d1:ce:63:43:e4:09:e6:b2:df:90:94:1e:16:39:c9:5f:6d:
c6:7a:e4:8e:15:4c:40:79:be:03:37:bf:22:07:b6:aa:f5:1a:
45:54:3e:fd:53:5b:3d:b1:ad:96:59:7d:be:71:df:03:a9:f9:
4a:06:b5:aa:5e:5a:f1:77:3c:5d:ae:74:13:76:12:f6:8a:0b:
4a:fe:40:02:78:80:34:64:d3:20:36:d1:1d:26:98:26:69:89:
ff:72:5b:46:d2:e7:8c:93:54:f4:3e:d8:6e:5a:a4:3d:f8:b5:
dc:0c:89:d0:c8:be:82:da:bd:8c:02:07:48:96:34:14:60:37:
55:74:15:e7:06:be:ea:a7:1c:52:79:0f:ac:ea:39:b6:69:91:
63:60:bb:ea:29:fb:76:4c:48:b8:3a:d8:77:8d:25:05:00:04:
e9:a0:f8:75:dd:be:19:da:19:ae:a3:0d:d4:4d:70:3d:74:a1:
9a:a9:64:24:50:f4:9b:76:e8:21:c5:c5:17:73:e4:e3:b3:02:
4e:bc:fe:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:12:00 2025 by rpki-client