$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft File: 7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft (raw, json) Hash identifier: 4ra9e6uBHr2IbuD2M78O7T+3NqIh9O+K90959ijsHKI= Subject key identifier: EE:41:96:AD:62:C9:7F:D9:42:F4:D1:D8:8A:DC:4B:3F:28:55:8F:F4 Authority key identifier: 7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED Certificate issuer: /CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Certificate serial: 5F69D015DB572FE7FF04F04757A312FD79F162A6 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft Manifest number: 03F7 Signing time: Sat 28 Jun 2025 23:18:02 +0000 Manifest this update: Sat 28 Jun 2025 23:13:02 +0000 Manifest next update: Mon 30 Jun 2025 00:51:02 +0000 Files and hashes: 1: 7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl (hash: 4jjCo0NDIXlAJyVclCMpF7EgWY7lwq5dL4YoqUBnkyw=) 2: 3130342e33372e34312e302f32342d3234203d3e203231393537.roa (hash: IRTKWsv2EGeDRsQ97JvbtSG0Rc6W53GcEAl3eMmmpqs=) 3: AS21957.asa (hash: v9+444bGaAkQtqJOIXn9P1VMcTrlW/WFkfocSw9xo/c=) 4: 3130342e33372e34302e302f32322d3232203d3e2030.roa (hash: vHzV9yuwB4p+FXvV7pq6ibofX3Oxg5SwuBjEw2YE3Pg=) 5: 3130342e33372e34302e302f32342d3234203d3e20393730.roa (hash: ek8Vg6kOrYHQQyaRN7UOy+nZ8uz9bhWO7ZAUVfTbaRI=) 6: AS970.asa (hash: uUtIUuFVFE42+T1fqnnQdo7h/4VRg1akAdGbbCnAbEY=) Validation: OK Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 00:51:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:69:d0:15:db:57:2f:e7:ff:04:f0:47:57:a3:12:fd:79:f1:62:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Validity Not Before: Jun 28 23:13:02 2025 GMT Not After : Jun 30 00:51:02 2025 GMT Subject: CN=EE4196AD62C97FD942F4D1D88ADC4B3F28558FF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ed:2b:41:77:32:d6:80:9c:54:25:07:d6:5e: 19:9d:3f:10:51:0b:34:59:92:f7:36:4d:c2:78:84: c1:e8:00:1e:84:e5:11:d0:16:65:12:14:c0:17:3b: a5:44:c1:70:c1:d3:5b:18:14:38:ec:ee:43:f9:84: bf:93:d1:08:b3:7b:e7:e7:6a:f0:d9:31:5e:a0:4f: 8f:be:56:32:32:eb:59:38:63:31:bc:5f:b1:e1:3a: 41:c1:85:3c:55:1e:e7:56:15:b7:4f:77:54:a9:03: c8:b3:49:dc:f2:1f:f3:11:ac:3d:21:b9:7a:de:6f: 18:f2:ed:5c:71:91:b0:78:01:60:74:20:5a:91:f5: 48:48:a8:a1:04:7f:d0:33:2d:f9:71:81:8d:a8:1c: e0:29:ad:97:1c:5f:67:5e:08:07:bb:31:26:cd:d3: 5a:f7:97:b2:48:f4:4f:40:b6:b2:5b:70:a6:cd:48: 77:0d:f8:83:95:f2:30:9c:5e:fe:cd:27:34:9a:43: 4a:2c:84:6e:20:af:6f:30:b0:40:64:e5:fa:2f:7e: 07:85:0b:d7:2e:20:ca:71:9b:b9:9c:e1:e6:32:42: 66:3c:6c:9c:71:49:c5:b5:99:68:90:05:f9:a9:5e: 10:03:fa:ab:c5:b4:76:c7:9d:5b:3b:04:06:fe:2e: 30:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:41:96:AD:62:C9:7F:D9:42:F4:D1:D8:8A:DC:4B:3F:28:55:8F:F4 X509v3 Authority Key Identifier: keyid:7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject Information Access: Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:43:d3:17:b6:ec:9b:7d:bf:61:49:a2:7d:e7:d6:1b:8c:62: 68:54:86:5e:1f:0e:ee:91:92:f9:eb:c5:19:50:1f:d3:24:17: 10:b7:f2:db:0d:bf:bb:4f:e0:77:96:e8:3a:e6:f2:ce:fe:e4: 48:14:74:99:04:dc:18:76:cf:01:0e:61:39:cf:ea:ee:46:9f: 34:3f:14:9f:ad:3b:4c:98:cf:b5:56:5d:f0:13:c8:b2:52:c0: 0f:61:b1:39:10:85:cc:35:fd:f4:57:24:c5:cd:fc:7f:28:02: f8:ff:41:b7:68:64:1d:55:a1:d2:32:a7:17:8d:9a:9f:ac:05: fe:6d:7e:32:b0:65:a3:eb:26:7f:93:67:a1:76:df:87:f0:2e: 10:34:df:b8:f0:5a:e3:10:60:37:85:4a:c3:e1:9b:84:e4:98: 1c:df:ba:38:32:23:ce:0d:c8:7b:eb:27:37:96:c7:04:5a:da: 47:b5:2e:7c:98:b2:a6:2c:e1:07:31:7b:cb:23:fe:35:84:67: ae:b0:2a:dd:20:69:ab:7e:4d:c1:bb:a7:51:d9:ef:49:c2:3d: 3c:aa:9e:c0:bc:14:78:6c:6f:50:76:52:e1:16:83:9a:8f:80: 8b:6f:eb:71:f2:23:10:d8:60:28:71:7a:82:f1:ac:c3:7d:11: 80:64:59:c6 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUX2nQFdtXL+f/BPBHV6MS/XnxYqYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5 YzA1ODliOTk1NmM1MWUzNTEwHhcNMjUwNjI4MjMxMzAyWhcNMjUwNjMwMDA1MTAy WjAzMTEwLwYDVQQDEyhFRTQxOTZBRDYyQzk3RkQ5NDJGNEQxRDg4QURDNEIzRjI4 NTU4RkY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAre0rQXcy1oCc VCUH1l4ZnT8QUQs0WZL3Nk3CeITB6AAehOUR0BZlEhTAFzulRMFwwdNbGBQ47O5D +YS/k9EIs3vn52rw2TFeoE+PvlYyMutZOGMxvF+x4TpBwYU8VR7nVhW3T3dUqQPI s0nc8h/zEaw9Ibl63m8Y8u1ccZGweAFgdCBakfVISKihBH/QMy35cYGNqBzgKa2X HF9nXggHuzEmzdNa95eySPRPQLayW3CmzUh3DfiDlfIwnF7+zSc0mkNKLIRuIK9v MLBAZOX6L34HhQvXLiDKcZu5nOHmMkJmPGyccUnFtZlokAX5qV4QA/qrxbR2x51b OwQG/i4wYwIDAQABo4ICeTCCAnUwHQYDVR0OBBYEFO5Blq1iyX/ZQvTR2IrcSz8o VY/0MB8GA1UdIwQYMBaAFH7JtdIlCMAjHBXava9RNZkLZr/tMA4GA1UdDwEB/wQE AwIHgDBmBgNVHR8EXzBdMFugWaBXhlVyc3luYzovL3JlcG8ua2FnbC5tZS9ycGtp L0tlYXRvbkFHTGFpci8wLzdFQzlCNUQyMjUwOEMwMjMxQzE1REFCREFGNTEzNTk5 MEI2NkJGRUQuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEt NDViZi05NTg2LTkyZGQ0OWVmMzIyMy8zOTA2NWFjYy1iZWVkLTQxMTUtYmM2Yy02 M2RlMjMyZjJhMDQvMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5YzA1 ODliOTk1NmM1MWUzNTEuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZV cnN5bmM6Ly9yZXBvLmthZ2wubWUvcnBraS9LZWF0b25BR0xhaXIvMC83RUM5QjVE MjI1MDhDMDIzMUMxNURBQkRBRjUxMzU5OTBCNjZCRkVELm1mdDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbUPT F7bsm32/YUmifefWG4xiaFSGXh8O7pGS+evFGVAf0yQXELfy2w2/u0/gd5boOuby zv7kSBR0mQTcGHbPAQ5hOc/q7kafND8Un607TJjPtVZd8BPIslLAD2GxORCFzDX9 9Fckxc38fygC+P9Bt2hkHVWh0jKnF42an6wF/m1+MrBlo+smf5NnoXbfh/AuEDTf uPBa4xBgN4VKw+GbhOSYHN+6ODIjzg3Ie+snN5bHBFraR7UufJiypizhBzF7yyP+ NYRnrrAq3SBpq35NwbunUdnvScI9PKqewLwUeGxvUHZS4RaDmo+Ai2/rcfIjENhg KHF6gvGsw30RgGRZxg== -----END CERTIFICATE-----Generated at Sun Jun 29 07:51:51 2025 by rpki-client