Manifest
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
File: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft (raw, json)
Hash identifier: xuBRvf9MRDiDzjI4T7z6lOCkqL7YEYZkuNCvcOZKG4w=
Subject key identifier: 13:15:C7:D6:38:DC:E9:EF:D5:05:23:02:78:22:F6:B9:48:20:02:23
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 437CCFD89940BE169D6029FE901E32CCCD3F5328
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
Manifest number: 03DB
Signing time: Wed 04 Jun 2025 14:34:22 +0000
Manifest this update: Wed 04 Jun 2025 14:29:22 +0000
Manifest next update: Thu 05 Jun 2025 14:35:22 +0000
Files and hashes: 1: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl (hash: YibfVTvuSql5ol6MJfEswIAlsxAv9GtHAgYxwn80zIw=)
2: AS50555.asa (hash: 6Tb3JWAiG3HB18+QURZTnhnTtpjs1INvbgLT/78hSiM=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:7c:cf:d8:99:40:be:16:9d:60:29:fe:90:1e:32:cc:cd:3f:53:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Jun 4 14:29:22 2025 GMT
Not After : Jun 5 14:35:22 2025 GMT
Subject: CN=1315C7D638DCE9EFD50523027822F6B948200223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b4:0d:0a:0e:95:7e:3f:4b:b8:ca:18:ed:96:
70:d0:49:20:b5:88:7b:fd:8f:8e:e1:a5:f1:28:26:
67:ea:92:09:43:73:25:88:34:98:49:36:9c:3f:87:
28:22:2e:eb:35:6c:af:00:0a:1b:13:b4:4e:e3:9a:
8e:63:6a:cd:e6:d8:ce:bd:d7:f4:53:86:93:f9:9a:
1f:c8:23:15:fc:1c:11:d5:40:ac:02:07:ef:18:97:
37:b4:29:45:cf:1f:08:f8:b2:bd:85:97:51:12:65:
ac:9a:05:95:e4:98:56:10:71:f9:3f:11:07:c4:2f:
f1:68:ed:8c:2a:9c:5d:4d:1f:54:b4:7a:8d:29:76:
63:85:08:7c:1e:d6:45:43:e9:be:ae:4a:42:5c:1b:
25:7a:56:79:0b:5e:9e:b3:97:86:17:db:6d:43:d1:
7d:ad:3c:30:4c:aa:44:17:58:9e:0a:df:be:05:4a:
c1:5d:fe:fa:ed:60:33:33:b6:03:9d:9b:83:47:fd:
93:46:4b:9c:cb:b8:9a:4e:a8:76:24:17:20:fb:ff:
83:3b:46:48:0e:01:88:fe:5b:4b:da:17:90:33:bd:
4d:61:1d:7a:c9:3b:ea:c0:da:bd:41:5d:5c:30:fc:
46:77:69:3d:35:b5:dc:96:be:dc:d7:10:dc:1c:2d:
4c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:15:C7:D6:38:DC:E9:EF:D5:05:23:02:78:22:F6:B9:48:20:02:23
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:95:eb:f2:93:44:90:82:50:d7:2b:54:e0:7b:ca:05:ea:86:
2f:b8:76:9c:b4:fb:0f:05:e3:f4:94:98:7c:f6:c3:8b:75:02:
6e:e7:08:53:3b:ef:ac:9c:a7:79:81:1b:b6:36:dc:a3:10:70:
b3:d6:82:83:82:03:31:cf:4e:1e:71:61:c1:79:66:0f:6a:f7:
9a:fa:51:03:30:44:1e:a8:44:37:54:e0:6e:a3:36:a4:d4:b7:
84:cf:39:9e:74:3f:3a:49:af:cc:5d:23:3c:23:23:81:df:46:
59:56:c8:2f:cd:ed:6d:81:a6:0e:1e:df:d3:bb:94:72:a8:5d:
e0:d2:d4:bd:d8:78:a5:83:a3:59:a4:23:74:8e:1c:8c:33:7d:
f9:9a:df:c7:c5:a2:af:31:2a:6b:8e:8e:f9:8c:c5:61:ae:3b:
43:75:51:6b:45:aa:97:fa:94:77:bc:c5:20:cb:01:19:9f:56:
90:90:0e:43:23:b3:93:f7:38:70:fc:df:cf:69:5c:e9:10:03:
ee:e6:dd:c0:47:47:39:8c:8b:e3:8f:43:52:b1:a2:1f:88:08:
62:9e:0d:11:4f:d2:03:37:18:21:65:d8:8d:14:c7:21:37:b5:
20:52:bd:dc:35:78:33:bb:2e:24:43:aa:f3:88:12:12:a7:97:
88:11:d2:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:19:00 2025 by rpki-client