$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft File: 7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft (raw, json) Hash identifier: fjs/GpMJCCMjnMZ92LZKkmD+ABe1da495+TAdCD6XvQ= Subject key identifier: 65:8A:B5:F4:AF:AA:8B:F1:3D:7C:BB:AE:D0:F5:1B:F6:B2:0B:00:AC Authority key identifier: 7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED Certificate issuer: /CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Certificate serial: 61CE89BAC56F44F13074602DDA14D17A4577BDF5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft Manifest number: 0436 Signing time: Sat 23 Aug 2025 06:11:57 +0000 Manifest this update: Sat 23 Aug 2025 06:06:57 +0000 Manifest next update: Sun 24 Aug 2025 08:17:57 +0000 Files and hashes: 1: 3130342e33372e34312e302f32342d3234203d3e203231393537.roa (hash: IRTKWsv2EGeDRsQ97JvbtSG0Rc6W53GcEAl3eMmmpqs=) 2: 3130342e33372e34302e302f32322d3232203d3e2030.roa (hash: vHzV9yuwB4p+FXvV7pq6ibofX3Oxg5SwuBjEw2YE3Pg=) 3: AS21957.asa (hash: v9+444bGaAkQtqJOIXn9P1VMcTrlW/WFkfocSw9xo/c=) 4: 3130342e33372e34302e302f32342d3234203d3e20393730.roa (hash: ek8Vg6kOrYHQQyaRN7UOy+nZ8uz9bhWO7ZAUVfTbaRI=) 5: 7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl (hash: MMNd1phM4Cr1VZw4AywnYd5XAeq7360XcA7qANnaEr0=) 6: AS970.asa (hash: uUtIUuFVFE42+T1fqnnQdo7h/4VRg1akAdGbbCnAbEY=) Validation: OK Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 08:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ce:89:ba:c5:6f:44:f1:30:74:60:2d:da:14:d1:7a:45:77:bd:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Validity Not Before: Aug 23 06:06:57 2025 GMT Not After : Aug 24 08:17:57 2025 GMT Subject: CN=658AB5F4AFAA8BF13D7CBBAED0F51BF6B20B00AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7f:18:05:bc:1a:58:b4:9f:bd:31:f0:1c:e9: 59:21:0c:29:8f:8d:fb:f2:e2:0d:79:53:9f:c7:42: f3:4d:5a:64:ba:aa:c2:db:96:c8:13:15:75:db:eb: 74:d0:00:ef:38:12:f2:d5:14:f7:1e:13:e7:99:35: 9d:d0:98:b6:42:ff:c3:ce:45:ee:72:1d:76:63:f7: 71:6b:6f:19:66:70:0f:43:e7:f5:14:46:24:f1:6b: 53:01:40:32:7a:c0:b8:c1:3e:9f:0e:57:04:0e:e1: 8a:c7:85:95:7c:91:88:b9:4d:a0:d5:d7:c0:54:79: 01:65:0e:46:6f:d4:d9:9d:bf:08:64:39:9d:96:09: 7d:8f:81:06:e0:c0:5d:76:0a:1a:04:6d:a2:87:ce: 3e:a9:3a:1d:ee:b3:ae:3c:8a:de:ea:17:5c:cb:0c: 26:b7:74:a3:a1:ee:be:cc:a9:13:b1:7c:d8:f2:e9: 6a:d7:3c:12:f9:68:03:04:95:8a:14:36:3c:f9:01: eb:3c:e7:c0:29:31:c2:6e:3f:8c:06:fc:7e:83:91: 62:2c:ad:0d:85:b0:0e:eb:f9:2a:e7:7b:90:55:90: 21:d8:98:f2:fa:a6:ed:9e:3e:71:c9:96:66:d7:e0: eb:f5:f8:37:ed:93:af:e8:fc:0f:f1:02:10:4c:11: f2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:8A:B5:F4:AF:AA:8B:F1:3D:7C:BB:AE:D0:F5:1B:F6:B2:0B:00:AC X509v3 Authority Key Identifier: keyid:7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject Information Access: Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:d7:ff:c2:76:5c:27:92:63:52:9b:39:b8:63:0a:43:5e:82: 9f:5a:89:af:9a:37:f2:56:dd:52:11:8c:c0:33:28:23:6d:2d: e6:4d:e2:6f:7e:dd:c9:c6:a5:4c:37:37:62:3e:94:0c:ed:b5: 07:27:8d:1a:45:99:6c:18:d4:b3:5c:b7:5c:1e:f6:c6:99:43: 6a:0a:ce:0c:64:e3:88:bb:d9:68:68:41:55:3c:e4:84:0f:df: 40:44:7a:2e:83:6e:d6:f6:8d:4a:51:0a:95:44:ba:52:72:3a: 94:f1:97:b4:64:1a:63:5e:ad:03:97:2a:6e:5c:20:1b:0c:1c: 7b:7f:21:d7:5d:10:45:b3:da:2c:0c:5e:8a:2b:b4:e8:d4:db: 3a:18:64:70:a3:66:d1:52:a7:7a:9e:2d:3b:e2:16:a8:7c:e6: 0d:62:32:ac:97:43:04:ad:03:3a:79:83:9b:48:89:e4:69:da: 2c:e2:14:e8:b3:52:21:41:ae:c0:7c:e8:8c:2f:6e:bf:fc:1c: d9:26:e5:f5:39:6a:15:c9:c8:a0:98:d9:de:61:82:b3:39:13: 8b:62:70:45:24:c1:31:8b:1c:ba:01:19:d4:cf:e9:9d:ef:c6: 9b:6d:18:47:be:be:8d:a7:0e:80:0b:8a:2c:e5:35:fb:96:c2: a8:1e:5c:c6 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUYc6JusVvRPEwdGAt2hTRekV3vfUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5 YzA1ODliOTk1NmM1MWUzNTEwHhcNMjUwODIzMDYwNjU3WhcNMjUwODI0MDgxNzU3 WjAzMTEwLwYDVQQDEyg2NThBQjVGNEFGQUE4QkYxM0Q3Q0JCQUVEMEY1MUJGNkIy MEIwMEFDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp38YBbwaWLSf vTHwHOlZIQwpj4378uINeVOfx0LzTVpkuqrC25bIExV12+t00ADvOBLy1RT3HhPn mTWd0Ji2Qv/DzkXuch12Y/dxa28ZZnAPQ+f1FEYk8WtTAUAyesC4wT6fDlcEDuGK x4WVfJGIuU2g1dfAVHkBZQ5Gb9TZnb8IZDmdlgl9j4EG4MBddgoaBG2ih84+qTod 7rOuPIre6hdcywwmt3Sjoe6+zKkTsXzY8ulq1zwS+WgDBJWKFDY8+QHrPOfAKTHC bj+MBvx+g5FiLK0NhbAO6/kq53uQVZAh2Jjy+qbtnj5xyZZm1+Dr9fg37ZOv6PwP 8QIQTBHyFQIDAQABo4ICeTCCAnUwHQYDVR0OBBYEFGWKtfSvqovxPXy7rtD1G/ay CwCsMB8GA1UdIwQYMBaAFH7JtdIlCMAjHBXava9RNZkLZr/tMA4GA1UdDwEB/wQE AwIHgDBmBgNVHR8EXzBdMFugWaBXhlVyc3luYzovL3JlcG8ua2FnbC5tZS9ycGtp L0tlYXRvbkFHTGFpci8wLzdFQzlCNUQyMjUwOEMwMjMxQzE1REFCREFGNTEzNTk5 MEI2NkJGRUQuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEt NDViZi05NTg2LTkyZGQ0OWVmMzIyMy8zOTA2NWFjYy1iZWVkLTQxMTUtYmM2Yy02 M2RlMjMyZjJhMDQvMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5YzA1 ODliOTk1NmM1MWUzNTEuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZV cnN5bmM6Ly9yZXBvLmthZ2wubWUvcnBraS9LZWF0b25BR0xhaXIvMC83RUM5QjVE MjI1MDhDMDIzMUMxNURBQkRBRjUxMzU5OTBCNjZCRkVELm1mdDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbdf/ wnZcJ5JjUps5uGMKQ16Cn1qJr5o38lbdUhGMwDMoI20t5k3ib37dycalTDc3Yj6U DO21ByeNGkWZbBjUs1y3XB72xplDagrODGTjiLvZaGhBVTzkhA/fQER6LoNu1vaN SlEKlUS6UnI6lPGXtGQaY16tA5cqblwgGwwce38h110QRbPaLAxeiiu06NTbOhhk cKNm0VKnep4tO+IWqHzmDWIyrJdDBK0DOnmDm0iJ5GnaLOIU6LNSIUGuwHzojC9u v/wc2Sbl9TlqFcnIoJjZ3mGCszkTi2JwRSTBMYscugEZ1M/pne/Gm20YR76+jacO gAuKLOU1+5bCqB5cxg== -----END CERTIFICATE-----Generated at Sat Aug 23 15:36:31 2025 by rpki-client