Manifest
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
File: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft (raw, json)
Hash identifier: SDC0tV7J7BeoFUENlpCiuCNGF7mlwzt+10E/HE24X08=
Subject key identifier: 43:DF:C7:D9:18:29:1B:59:64:D9:BE:06:3E:49:F7:AE:74:E5:04:66
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 059736B8F35696153A19DE74B4F5210CB985453E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
Manifest number: 043B
Signing time: Sat 23 Aug 2025 08:26:57 +0000
Manifest this update: Sat 23 Aug 2025 08:21:57 +0000
Manifest next update: Sun 24 Aug 2025 09:11:57 +0000
Files and hashes: 1: AS50555.asa (hash: 6Tb3JWAiG3HB18+QURZTnhnTtpjs1INvbgLT/78hSiM=)
2: 0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl (hash: V5oGcl+o17n1wEeLhVRqeGnrud6s6BiEScYtYfYbIyE=)
Validation: OK
Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:97:36:b8:f3:56:96:15:3a:19:de:74:b4:f5:21:0c:b9:85:45:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Aug 23 08:21:57 2025 GMT
Not After : Aug 24 09:11:57 2025 GMT
Subject: CN=43DFC7D918291B5964D9BE063E49F7AE74E50466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:77:f7:00:a4:92:04:99:46:a8:92:d8:36:1f:
69:25:59:c6:3d:bc:f5:36:e1:2a:d6:d9:46:f3:95:
dc:5f:91:8c:c6:65:76:53:53:0c:e6:60:ad:1f:07:
85:99:b7:e4:5e:90:6b:f4:68:3b:a8:a2:cc:6b:a2:
ed:83:f5:48:8f:2a:9a:d8:00:22:dd:eb:fe:84:f0:
11:91:a9:ab:b3:cb:a8:83:c7:ba:64:65:46:df:f0:
39:fc:ae:22:3a:04:84:35:30:c6:61:95:be:f9:9f:
49:20:92:93:f0:11:fd:63:ec:f6:51:e1:c5:d4:13:
d3:f2:bc:6f:96:46:5d:64:30:c9:77:b0:99:f8:1b:
00:53:70:00:05:70:aa:66:39:b8:a0:ff:1a:25:d7:
d7:ac:c3:b1:3e:4e:70:39:13:d5:54:3f:90:68:7d:
df:f0:47:5b:fc:f8:cc:b1:99:1a:2a:80:9e:40:b1:
66:42:f6:ce:f8:6c:22:ce:ca:d1:73:f5:8f:05:23:
35:c2:5f:0f:d6:1c:26:87:76:7b:17:82:08:d4:6a:
fa:de:16:b1:51:02:48:db:08:68:d5:2c:b2:a7:7e:
6d:e1:bd:a7:d2:0c:c0:40:f4:07:80:01:ad:b9:61:
31:24:b7:24:76:70:a9:96:52:c5:24:70:20:d7:2a:
d0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DF:C7:D9:18:29:1B:59:64:D9:BE:06:3E:49:F7:AE:74:E5:04:66
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:12:5a:2e:01:67:0c:8c:b8:a5:54:9a:b3:61:b7:bd:5d:71:
7d:c8:05:60:9a:bb:23:f3:65:a6:a3:5a:e1:01:4a:92:62:71:
0a:5f:19:c5:9a:54:25:06:6c:85:a9:28:42:09:3e:56:a3:45:
82:1b:63:9e:82:cf:7c:f4:06:84:e3:dd:d2:64:d8:15:41:74:
ef:cd:8a:d6:c4:e4:a9:20:fe:7c:7b:e5:4b:96:6d:40:ad:2e:
30:36:8c:ca:ec:81:37:4d:c6:92:8c:cc:dd:4a:89:e8:89:62:
05:6b:30:0a:ba:ee:38:df:67:bf:ed:71:c1:c7:ff:35:8a:27:
71:30:7d:70:0f:6e:28:4f:a8:00:7c:f0:28:b2:d2:1b:a6:39:
20:9b:a2:76:a8:64:ca:48:8b:ff:38:1e:4c:e8:2b:43:1a:bd:
ec:97:ba:28:78:97:b3:03:cc:b2:95:0f:1d:3f:7e:ba:cc:d6:
54:b9:7c:45:b5:da:3b:f9:41:fb:f9:5a:b1:d2:3c:24:ac:28:
73:b0:ce:4e:6e:f5:b4:d9:42:c2:2b:9b:ee:d9:c6:cc:3e:66:
74:3c:fb:01:43:7c:92:a2:3d:88:05:5b:98:53:01:0b:36:78:
62:8a:ff:75:56:03:91:fb:48:1e:87:b1:e4:1e:47:26:96:f1:
9c:21:22:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:45 2025 by rpki-client