Manifest
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
File: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft (raw, json)
Hash identifier: UNhDXLxV/wJukBoNQJjZAtn7HtFutmkd09PtIlyyIPc=
Subject key identifier: 82:B3:08:5C:AC:83:1D:E8:B2:6B:87:A5:0B:89:CE:3C:65:1A:E2:2F
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 09797C28A8CE90E879E933C5C6CEBD93E558BB7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
Manifest number: 01EC
Signing time: Tue 23 Apr 2024 19:15:25 +0000
Manifest this update: Tue 23 Apr 2024 19:10:25 +0000
Manifest next update: Wed 24 Apr 2024 21:45:25 +0000
Files and hashes: 1: AS50555.asa (hash: ePbN1DlpdRtTCyHy7vKgv2r+VmvNe3gE71pPOx01D1U=)
2: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl (hash: Qj6g9ICQtiko6FaNqlKejSttz6I7n2fH/y6wmbclh9M=)
Validation: OK
Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Apr 2024 14:24:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:79:7c:28:a8:ce:90:e8:79:e9:33:c5:c6:ce:bd:93:e5:58:bb:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Apr 23 19:10:25 2024 GMT
Not After : Apr 24 21:45:25 2024 GMT
Subject: CN=82B3085CAC831DE8B26B87A50B89CE3C651AE22F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:65:58:2d:22:19:30:91:bc:0a:0d:3b:b0:56:
a2:5d:48:07:14:3b:d0:74:c0:80:e3:2d:2e:dc:bf:
68:d6:92:21:59:ca:a6:fd:e6:38:89:7e:05:8a:f4:
38:23:63:77:dc:86:95:fb:4a:06:b1:90:46:ba:48:
cf:f0:aa:1a:86:0c:b7:6b:6f:bc:e4:d1:f4:a1:c5:
36:aa:70:83:e4:19:e8:5f:49:22:13:9e:b2:e5:5c:
fd:8c:d2:a6:65:6a:29:ea:d2:94:ab:ce:34:01:2f:
81:4c:6b:b0:02:29:90:3d:fa:b9:78:84:67:6c:bc:
03:81:99:0d:15:e8:d2:9d:f9:ad:a9:9f:74:6f:ac:
0e:7d:a1:bd:fe:6f:88:39:4b:fb:4f:4c:f8:35:7e:
99:75:ef:3d:d9:00:ef:50:98:a3:8a:3f:9f:eb:8a:
56:94:ce:80:67:ed:48:34:f3:ec:49:c5:2d:8e:8c:
5f:a7:e2:07:16:a9:de:12:10:a7:38:8b:55:9d:b5:
c0:a4:fa:82:e3:06:e6:6c:28:75:44:62:83:b2:3a:
a4:ff:be:e9:cc:bc:02:ae:b5:58:74:61:78:05:70:
59:8c:51:87:32:83:18:a7:6f:10:3e:4d:b6:90:81:
c6:3d:6f:3a:ee:6a:0a:3e:a2:93:bb:ee:2d:73:f9:
2c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:B3:08:5C:AC:83:1D:E8:B2:6B:87:A5:0B:89:CE:3C:65:1A:E2:2F
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a0:b2:f4:ea:d2:d3:16:17:35:df:44:72:8a:b8:7e:97:90:
1f:cc:ee:47:5f:1a:31:74:bd:d2:16:0c:28:70:24:dc:ca:66:
2e:1c:ee:00:af:bb:8d:2b:77:52:7e:a4:a2:a3:dd:78:f7:c1:
07:2f:22:ac:e6:b4:33:c1:a8:09:21:23:00:71:96:77:af:e5:
41:e7:eb:c0:d3:09:10:4b:6f:7f:3f:b6:ab:ff:39:2c:3d:6b:
dd:17:86:94:c5:81:b0:64:84:04:35:f8:0f:02:d8:07:88:4d:
39:8f:2c:3f:b0:2c:5d:71:4d:d0:20:b2:b7:9a:6d:96:a9:91:
d4:97:30:54:b4:56:a2:1c:e7:62:14:20:2b:e2:4f:9c:76:3e:
ca:fa:b2:04:6d:9b:2a:c6:4d:67:7b:02:92:78:04:d6:5e:4a:
ff:f5:ad:fc:c6:32:c1:c5:c4:49:4b:c0:ed:f8:db:31:a2:ab:
e5:96:57:a1:0b:c9:98:b9:b3:37:ca:d8:ce:3c:e2:41:e8:26:
93:0d:3f:5d:90:90:48:d6:87:5d:f6:b3:b7:2f:95:06:4d:82:
5a:66:f2:1a:b0:7b:0c:79:2b:b8:6a:7e:db:d2:21:e0:5a:1c:
ad:28:9c:39:29:69:d0:a2:52:52:27:b8:c9:60:64:d9:0b:6b:
61:09:2a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 21:39:54 2024 by rpki-client on console-ams.rpki-client.org