ftp.mpdl.mpg.de
- Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V. -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number ba:b0:ff:07:0c:4e:75:cd:e4:21:af:7a:ea:9c:1b:3c was issued on by GEANT Vereniging.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V.
Organization:
Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V.
State / Province:
Bayern
Country: DE
Country: DE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate will expire on
Certificate Details
Serial Number (hex): ba:b0:ff:07:0c:4e:75:cd:e4:21:af:7a:ea:9c:1b:3cSerial Number (int): 248155424035951223445223676086580943676
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 17:5e:4f:6e:1a:d9:be:3a:d3:04:ba:fa:f4:1a:b4:13:7d:4f:da:ee
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 12:a4:5b:ea:19:8e:ba:78:8d:7a:bf:be:73:1a:a1:7b:a9:9d:57:aa
Fingerprint (sha256): 01:a3:a0:f1:59:31:d7:84:77:25:92:ce:40:34:01:7b:35:ff:ea:a3:7b:c3:6d:6b:e0:86:e2:a1:7d:ec:f7:85
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate ftp.mpdl.mpg.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ftp.mpdl.mpg.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ftp.mpdl.mpg.de
Other certificates including the domain name mpg.de
(limited to 100 certificates)
vweb14.gwdg.de
reem.mpiwg-berlin.mpg.de
calc.init.mpg.de
gitlab.pks.mpg.de
mpicc.csl.mpg.de
srzadrest-e01.vw.iame.mpg.de
porta.bgc-jena.mpg.de
gitlab.intranet.mpl.mpg.de
kanboard.mpimp-golm.mpg.de
ex-mcsrv1.mpe.mpg.de
www.mpl.mpg.de
s2000-proxmox2.mpibpc.mpg.de
tickets.mpl.mpg.de
shibb-staging.mpcdf.mpg.de
www-legacy.csl.mpg.de
idp.bpcentral.biophys.mpg.de
gv-events.mpg.de
matomo.mpdl.mpg.de
labfolder.mpdl.mpg.de
krapiwa.mpipz.mpg.de
*.mpib-berlin.mpg.de
caramba.bgc-jena.mpg.de
gc-ticket.mpipz.mpg.de
aruba-master.mpikg.mpg.de
nc.molgen.mpg.de
aircapdata.is.tue.mpg.de
common-objective.is.tuebingen.mpg.de
public.web.mpg.de
travel-magic.aesthetics.mpg.de
bcw19.sf.mpg.de
helpdesk.mpimp-golm.mpg.de
ccp-cn01.eva.mpg.de
chlorobox.mpimp-golm.mpg.de
svn.test.mpi-klsb.mpg.de
nagiosext.biochem.mpg.de
vpngv.vw.mpg.de
srzsysmanage1.vw.mpg.de
deepspace.ice.mpg.de
bfish.neuro.mpg.de
sally.molgen.mpg.de
musawwaratgraffiti.mpiwg-berlin.mpg.de
rubin.cbs.mpg.de
knb.mpiwg-berlin.mpg.de
voipgwgefo1.vw.mpg.de
vweb14.gwdg.de
srvgvexp-c02.vw.mpg.de
rubinul.tuebingen.mpg.de
mph.tuebingen.mpg.de
colloquia.mpifr-bonn.mpg.de
pubweb.mpi-inf.mpg.de
gc-web.mpipz.mpg.de.mpipz.mpg.de
sslvpn1.mis.mpg.de
lp-bookings.age.mpg.de
lnxsrv-0.mpa-garching.mpg.de
stories.mmg.mpg.de
mail.mucam.mpg.de
fhi-fpr-02-chassis.gnz.mpg.de
proton-vle2.pc.linmpi.mpg.de
atlas-innovations.de
vweb14.gwdg.de
arc-lin-cpt04.mpib-berlin.mpg.de
ftp.mpdl.mpg.de
ncatmaid.tuebingen.mpg.de
db1.aei.mpg.de
csl.mpg.de
desktop.ipp-hgw.mpg.de
intranet.age.mpg.de
www.cbs.mpg.de
prometheus.mpi-inf.mpg.de
resourcespace.mpiwg-berlin.mpg.de
s1020-dc3.d200.bpc.mpg.de
oc.rz-berlin.mpg.de
wiki-virgo.esc.rzg.mpg.de
erebos02.demogr.mpg.de
cvpn01.mis.mpg.de
voucher2.mis.mpg.de
db.arevir.de
npsw-www.mpg.de
ecocn04.eva.mpg.de
kyblab.tuebingen.mpg.de
pc-t6-166.mpipz.mpg.de
voip.ice.mpg.de
scinote.molgen.mpg.de
imap.mis.mpg.de
oak.mpipz.mpg.de
hlltwiki.hll.mpg.de
mail.ip.mpg.de
wints1.pc.linmpi.mpg.de
ds11g-dps2.zmaw.de
typo3-01.mpp.mpg.de
sciform.fkf.mpg.de
wiki.hest.brain.mpg.de
messaging.evolbio.mpg.de
auth-services.vw.mpg.de
extlyncweb.neuro.mpg.de
npsw-xedit.mpg.de
neuro.rzg.mpg.de
hilprecht.mpiwg-berlin.mpg.de
voipgwgv1.vw.mpg.de
stage.mpp.mpg.de
reem.mpiwg-berlin.mpg.de
calc.init.mpg.de
gitlab.pks.mpg.de
mpicc.csl.mpg.de
srzadrest-e01.vw.iame.mpg.de
porta.bgc-jena.mpg.de
gitlab.intranet.mpl.mpg.de
kanboard.mpimp-golm.mpg.de
ex-mcsrv1.mpe.mpg.de
www.mpl.mpg.de
s2000-proxmox2.mpibpc.mpg.de
tickets.mpl.mpg.de
shibb-staging.mpcdf.mpg.de
www-legacy.csl.mpg.de
idp.bpcentral.biophys.mpg.de
gv-events.mpg.de
matomo.mpdl.mpg.de
labfolder.mpdl.mpg.de
krapiwa.mpipz.mpg.de
*.mpib-berlin.mpg.de
caramba.bgc-jena.mpg.de
gc-ticket.mpipz.mpg.de
aruba-master.mpikg.mpg.de
nc.molgen.mpg.de
aircapdata.is.tue.mpg.de
common-objective.is.tuebingen.mpg.de
public.web.mpg.de
travel-magic.aesthetics.mpg.de
bcw19.sf.mpg.de
helpdesk.mpimp-golm.mpg.de
ccp-cn01.eva.mpg.de
chlorobox.mpimp-golm.mpg.de
svn.test.mpi-klsb.mpg.de
nagiosext.biochem.mpg.de
vpngv.vw.mpg.de
srzsysmanage1.vw.mpg.de
deepspace.ice.mpg.de
bfish.neuro.mpg.de
sally.molgen.mpg.de
musawwaratgraffiti.mpiwg-berlin.mpg.de
rubin.cbs.mpg.de
knb.mpiwg-berlin.mpg.de
voipgwgefo1.vw.mpg.de
vweb14.gwdg.de
srvgvexp-c02.vw.mpg.de
rubinul.tuebingen.mpg.de
mph.tuebingen.mpg.de
colloquia.mpifr-bonn.mpg.de
pubweb.mpi-inf.mpg.de
gc-web.mpipz.mpg.de.mpipz.mpg.de
sslvpn1.mis.mpg.de
lp-bookings.age.mpg.de
lnxsrv-0.mpa-garching.mpg.de
stories.mmg.mpg.de
mail.mucam.mpg.de
fhi-fpr-02-chassis.gnz.mpg.de
proton-vle2.pc.linmpi.mpg.de
atlas-innovations.de
vweb14.gwdg.de
arc-lin-cpt04.mpib-berlin.mpg.de
ftp.mpdl.mpg.de
ncatmaid.tuebingen.mpg.de
db1.aei.mpg.de
csl.mpg.de
desktop.ipp-hgw.mpg.de
intranet.age.mpg.de
www.cbs.mpg.de
prometheus.mpi-inf.mpg.de
resourcespace.mpiwg-berlin.mpg.de
s1020-dc3.d200.bpc.mpg.de
oc.rz-berlin.mpg.de
wiki-virgo.esc.rzg.mpg.de
erebos02.demogr.mpg.de
cvpn01.mis.mpg.de
voucher2.mis.mpg.de
db.arevir.de
npsw-www.mpg.de
ecocn04.eva.mpg.de
kyblab.tuebingen.mpg.de
pc-t6-166.mpipz.mpg.de
voip.ice.mpg.de
scinote.molgen.mpg.de
imap.mis.mpg.de
oak.mpipz.mpg.de
hlltwiki.hll.mpg.de
mail.ip.mpg.de
wints1.pc.linmpi.mpg.de
ds11g-dps2.zmaw.de
typo3-01.mpp.mpg.de
sciform.fkf.mpg.de
wiki.hest.brain.mpg.de
messaging.evolbio.mpg.de
auth-services.vw.mpg.de
extlyncweb.neuro.mpg.de
npsw-xedit.mpg.de
neuro.rzg.mpg.de
hilprecht.mpiwg-berlin.mpg.de
voipgwgv1.vw.mpg.de
stage.mpp.mpg.de
Certificate
The complete raw certificate details for ftp.mpdl.mpg.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIczCCBlugAwIBAgIRALqw/wcMTnXN5CGveuqcGzwwDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIzMDgwOTAwMDAwMFoXDTI0MDgwODIz NTk1OVowgYExCzAJBgNVBAYTAkRFMQ8wDQYDVQQIEwZCYXllcm4xRzBFBgNVBAoM Pk1heC1QbGFuY2stR2VzZWxsc2NoYWZ0IHp1ciBGw7ZyZGVydW5nIGRlciBXaXNz ZW5zY2hhZnRlbiBlLlYuMRgwFgYDVQQDEw9mdHAubXBkbC5tcGcuZGUwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC2KQGRwiE36OK9wwW4VI/avv0KB7TR iUFE0AnhgyP1JjMJFhlAbCLG4n3nIW+9yo73FM6x6PtTc6w+dFIRTqMRz/VPTqf/ redEcRcZC/gEYVdgUyw0Nuu0knJcOXRPHbZquxH3rfLC0vUXftndHWL0jsQsMyVE Oj//4C/mblCqBQyd8FpwHGkuQe7GH6d6OdHjfGMHJ6G96dxMbWk2fp4UKh41WlZ5 xrrWspoljApZtzosApZsk0X+duHPYZO6gzA8+PQ/Oo9jEUlocgcP/IZ85IGkx480 8dkJXxOp0C0GG5+RjGVl7KhvvW4+tuCo2bvcho2cTsJaoNLtSiMZIXHy8nJGoZ3g MwOjQzQ/IYDlJOYzEnr9QKL6V+wXkZn8fSaG4q1ASwRUFMk1SlVlZyB2gPN5Ckc6 OJARkBDO+To7IhMe3lIvDvS4MuScS0QNTSfglUdx0a3As73EbEdEOn2krbwkN0YP As7aMoUvtPj7xFfD4Gy9mrOg11O6nfXAznDmwdI7QQBLGwbOEttdCc9VcraM46Z5 GYvSsaCo6InTRb+aaQHwluBp/1OSe47LTguNs0oGVS8inqNXgl/SsFVcJ3STLmAH 4CU1hyN/lVzXm1bm3MSqtZZRbSBbODVNSMuFfsswVZ3B6wnPU9fmzfBbSekmMxtY WgvEp2vB5Zd1kwIDAQABo4IDIDCCAxwwHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68 iugflb5xegwwHQYDVR0OBBYEFBdeT24a2b460wS6+vQatBN9T9ruMA4GA1UdDwEB /wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0 dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAw hi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3Js MHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5z ZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDov L0dFQU5ULm9jc3Auc2VjdGlnby5jb20wggF8BgorBgEEAdZ5AgQCBIIBbASCAWgB ZgB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABideuCwIAAAQD AEcwRQIhANDat8EtYlsbNFOcez0X//1bniQzDEyIrJjaFBCsqqF3AiBlrt5o39WZ aYE+Tn3hQYPJ3PvViUEA3To8K8YwRNlA0AB1ANq2v2s/tbYin5vCu1xr6HCRcWy7 UYSFNL2kPTBI1/urAAABideuC1AAAAQDAEYwRAIgdhCE6PhccRWLRllplugNrflj 2SQT37OBNaN2bwqhj6UCIDyMNZaXqOWhGDf/4D8fh+RqrI2Zr1e0RbVOvrvu67sT AHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGJ164LMgAABAMA RjBEAiBY8wLsBCWpUIXpioAWTYm3dQIaoVuUUMM7n2Wy6eVraQIgZ/cAOSaQ57Md Z7w9tW9B+DeXPYgte+y8v+2rzIWJI50wGgYDVR0RBBMwEYIPZnRwLm1wZGwubXBn LmRlMA0GCSqGSIb3DQEBDAUAA4ICAQAjRgHozJkEMUsCPBhOXHIQwK6hQgpTbvgZ q7mVAgQOuGnZpKPYVzY7VTUUaABqwWfWpeG+J+r3+Mk6pybJkJ2phPqfgAexwHPl 5wz4ZHyYnmCbYcr2ff5W38addM4wM8vU1lV34i/kwoP06X9jqOOXXSImqCV7QnfT QDkTpQeo0/Mb/iSnLHZmDw4s2jhp8onTzkZXyAhmd79xcbquSFWhg/hjzsiaAqlh MiE3Ow7TjD7lcr5+qHEotLDHbYOtGhNI/kbYwu08oye3AN9jPsnUWk1XSbXN6AHE DyLtpKPDZGJN1R5qqmohRHgQw+VGx7Bw/ZNST+n/RD1aTx6tSbH6VqEoYbmnyKJq UjyW/Y6RwkzMVrmPLFNiAUWp8xTMpAmqlr7+fBUqEZL94CdAD+X+lc7s4HlG7aS9 IGZEF8gZr+kkz2/qucebztU3onEj9TCqFLN208aOB6emjwN4oPwWxn+Fo69L41AL YOmcKBGBWOM6c4/c/kCmbrbk43xOrGTI0A1Cfikz7d0xn/rSPMNLD3wbwDS6ooph 6zYodfOEEGN1fzso52moRq6Z3jiMrv7FhRD/lAU0bX1qSpsSG7vLywDit7KGjdKI ozl8N61i3+bvHVTEpJkQvWaDEN3R0VCkhmH5BFcZWPxvutHxS11/KBrYqs0r6XVo +c7JrEySJg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtikBkcIhN+jivcMFuFSP 2r79Cge00YlBRNAJ4YMj9SYzCRYZQGwixuJ95yFvvcqO9xTOsej7U3OsPnRSEU6j Ec/1T06n/63nRHEXGQv4BGFXYFMsNDbrtJJyXDl0Tx22arsR963ywtL1F37Z3R1i 9I7ELDMlRDo//+Av5m5QqgUMnfBacBxpLkHuxh+nejnR43xjByehvencTG1pNn6e FCoeNVpWeca61rKaJYwKWbc6LAKWbJNF/nbhz2GTuoMwPPj0PzqPYxFJaHIHD/yG fOSBpMePNPHZCV8TqdAtBhufkYxlZeyob71uPrbgqNm73IaNnE7CWqDS7UojGSFx 8vJyRqGd4DMDo0M0PyGA5STmMxJ6/UCi+lfsF5GZ/H0mhuKtQEsEVBTJNUpVZWcg doDzeQpHOjiQEZAQzvk6OyITHt5SLw70uDLknEtEDU0n4JVHcdGtwLO9xGxHRDp9 pK28JDdGDwLO2jKFL7T4+8RXw+BsvZqzoNdTup31wM5w5sHSO0EASxsGzhLbXQnP VXK2jOOmeRmL0rGgqOiJ00W/mmkB8Jbgaf9TknuOy04LjbNKBlUvIp6jV4Jf0rBV XCd0ky5gB+AlNYcjf5Vc15tW5tzEqrWWUW0gWzg1TUjLhX7LMFWdwesJz1PX5s3w W0npJjMbWFoLxKdrweWXdZMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 248155424035951223445223676086580943676 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ftp.mpdl.mpg.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 743148698568789175869999032364079643186477359885374721179560697283325734255925046530144810160379282098707471722488359470348100106070405442492908055450788790347811746208761180224473559055858039367759717177743337520296333963670949450602345253999171751275803145361075582803062830967604486149445707254563667504960787579917200565690365328837860368120342125884226003601998584446527511981787255754164171940708808547830688772555217693846283220620975292442354273679696369287884749830309504776804778880469679311885636362343545957573377517154775554615675697710220412138322213903510528011336687096091370865181981144206225425561914794409823927589811509263687982315931982970913379918063190465771265840569056163567138963063134678247414391298472230735713740503478588786807818507818390758550073366803237238630127341959812824245507040664413483455012825740507543034417054829932403542310125353675767004805633240851046385574590840050184379132598185148850093261747631513568583399017853778199598481221298371747010656523169049642563812765325174343996758838987517296880736616176638948649524307890225750685955501982342535666984072546467634087907954751681011812688652641083523398086658085062252601270141122049347329158613468549018112729137462237794292574156179 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 175e4f6e1ad9be3ad304bafaf41ab4137d4fdaee . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ftp.mpdl.mpg.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 00234601e8cc9904314b023c184e5c7210c0aea1420a536ef819abb99502040eb869d9a4a3d857363b55351468006ac167d6a5e1be27eaf7f8c93aa726c9909da984fa9f8007b1c073e5e70cf8647c989e609b61caf67dfe56dfc69d74ce3033cbd4d65577e22fe4c283f4e97f63a8e3975d2226a8257b4277d3403913a507a8d3f31bfe24a72c76660f0e2cda3869f289d3ce4657c8086677bf7171baae4855a183f863cec89a02a9613221373b0ed38c3ee572be7ea87128b4b0c76d83ad1a1348fe46d8c2ed3ca327b700df633ec9d45a4d5749b5cde801c40f22eda4a3c364624dd51e6aaa6a21447810c3e546c7b070fd93524fe9ff443d5a4f1ead49b1fa56a12861b9a7c8a26a523c96fd8e91c24ccc56b98f2c53620145a9f314cca409aa96befe7c152a1192fde027400fe5fe95ceece07946eda4bd20664417c819afe924cf6feab9c79bced537a27123f530aa14b376d3c68e07a7a68f0378a0fc16c67f85a3af4be3500b60e99c28118158e33a738fdcfe40a66eb6e4e37c4eac64c8d00d427e2933eddd319ffad23cc34b0f7c1bc034baa28a61eb362875f3841063757f3b28e769a846ae99de388caefec58510ff9405346d7d6a4a9b121bbbcbcb00e2b7b2868dd288a3397c37ad62dfe6ef1d54c4a49910bd668310ddd1d150a48661f904571958fc6fbad1f14b5d7f281ad8aacd2be97568f9cec9ac4c9226