Manifest
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
File: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft (raw, json)
Hash identifier: tfyUZsG+Glu9dwSmjzRkp1lhWGEbWhwyIojt08A/IGA=
Subject key identifier: 88:BF:3B:F9:FE:78:80:86:74:45:7E:6D:53:64:20:48:D2:D0:A1:89
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 6632DBC285A3D67F653F0C56AA93569DF61DB420
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
Manifest number: 046F
Signing time: Tue 30 Sep 2025 04:21:59 +0000
Manifest this update: Tue 30 Sep 2025 04:16:59 +0000
Manifest next update: Wed 01 Oct 2025 05:23:59 +0000
Files and hashes: 1: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl (hash: J27RtjVLLa/ViYtOwmM/mZYAtjtNyu3qL07zEaIG3p4=)
2: AS50555.asa (hash: LjdwvWRESIW+xX7gFaEDRAOSkbJXZ8dRIBmfTXSbc1w=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:32:db:c2:85:a3:d6:7f:65:3f:0c:56:aa:93:56:9d:f6:1d:b4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Sep 30 04:16:59 2025 GMT
Not After : Oct 1 05:23:59 2025 GMT
Subject: CN=88BF3BF9FE78808674457E6D53642048D2D0A189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:06:a8:9b:35:f0:92:03:e2:fd:15:45:32:7d:
7b:79:fb:76:1f:a7:10:6f:c3:53:3c:db:3b:53:97:
23:42:8f:eb:d7:ae:15:9b:42:fd:d8:b4:18:8c:2a:
43:3f:68:6d:a4:55:39:4c:72:1a:b8:a4:fa:7b:d3:
12:6d:94:b8:0b:45:8e:41:08:01:b4:42:f2:91:7b:
4e:14:09:27:af:3e:7f:65:83:26:c8:67:25:0e:23:
39:e9:54:3c:90:2c:aa:fa:3e:84:25:4a:69:db:6b:
5e:51:a1:86:b8:5b:68:6c:61:5e:7a:1f:59:fa:2e:
69:5b:0e:0f:d9:f7:a1:48:1f:f5:a7:11:21:b6:70:
42:e4:19:ce:45:b5:fa:a4:84:7c:27:f3:f9:a8:63:
37:b0:4d:23:80:3d:9e:33:ab:50:a7:d3:5b:40:a7:
f4:3d:1c:fd:40:b1:aa:4c:33:9c:e8:4e:e0:4d:2e:
30:38:f1:04:ce:ee:41:be:f7:54:ff:58:a4:ab:ea:
a6:c5:40:84:75:01:3d:2b:e8:1b:a7:bb:b0:22:a0:
8d:65:42:a7:13:5d:47:94:57:fc:17:2a:2e:72:cb:
96:25:37:1a:c8:11:84:04:a0:2f:91:3b:14:51:52:
5a:9f:e6:e7:fc:5f:18:8a:f6:1b:76:71:9f:02:c7:
55:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:BF:3B:F9:FE:78:80:86:74:45:7E:6D:53:64:20:48:D2:D0:A1:89
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:4e:65:a3:b3:54:9c:65:38:5e:23:68:ff:cd:41:bf:44:78:
f3:0c:99:74:f8:e7:6b:84:8f:49:05:e4:28:87:ba:d2:5e:78:
2f:82:7b:52:d6:c0:79:26:f5:80:0d:bc:46:49:4b:6d:28:59:
ec:7e:9e:cb:dd:99:a0:a3:99:be:65:eb:99:d0:37:ad:8d:34:
e5:b6:55:5b:f5:9e:d7:59:58:38:75:25:f4:01:38:a3:1f:7a:
7e:0a:08:27:34:04:af:36:11:01:3f:dc:6b:8f:97:74:0a:b5:
c2:b8:74:23:39:56:1c:67:47:5a:b8:00:f3:3a:54:fa:3c:ea:
ac:5d:5a:9d:c5:84:79:64:03:83:b8:fe:94:9e:ef:9c:a2:d4:
c9:ca:e5:35:1e:30:b1:2f:f2:db:7b:f4:29:a8:75:ee:1e:e3:
09:3b:b7:3b:f0:7f:4c:0d:69:e3:0e:9c:59:88:cf:2b:5a:4a:
bf:a3:87:f5:4b:15:38:f0:54:be:ce:07:61:45:46:fa:37:fe:
51:e4:75:95:cd:a6:62:f0:99:0d:14:95:e4:fd:17:45:c9:d9:
fe:68:38:f7:22:d4:48:32:c2:93:08:9f:bf:74:02:f1:11:09:
e0:93:95:1c:74:1b:a3:b4:d5:5b:74:bf:cc:42:f2:b2:9d:b6:
a4:b9:45:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:51:37 2025 by rpki-client