manomano.com

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 06:68:8b:e2:93:4e:0d:0f:34:45:0c:a1:7e:1f:e9:49 was issued on by Amazon.

With 24 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=manomano.com

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 06:68:8b:e2:93:4e:0d:0f:34:45:0c:a1:7e:1f:e9:49
Serial Number (int): 8518204054085407445618773929094015305
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 9a:93:2f:73:3d:56:67:5e:34:b7:ff:f5:42:d4:7e:62:ad:de:b0:f3
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): a2:fe:7e:d6:99:66:a8:19:a8:da:a6:ca:c0:35:41:fa:b8:97:a8:55
Fingerprint (sha256): 02:6a:f9:72:b4:25:aa:ab:5d:31:87:a3:a7:63:ba:56:5b:1a:c4:f1:ed:ff:6c:24:be:38:01:fc:2a:f9:4b:d5

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate manomano.com

24

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for manomano.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

manomano.com
stg.manomano.com
supermano.fr
manomano.it
internationaler-tag-des-heimwerkens.de
manomanopro.fr
www.internationaler-tag-des-heimwerkens.de
www.internationaldiyday.co.uk
manomano.de
manomanopro.com
diamundialdelbricolaje.es
www.giornatamondialedelfaidate.it
manomano.co.uk
www.manomanopro.com
blog.supermano.fr
internationaldiyday.co.uk
www.supermano.fr
giornatamondialedelfaidate.it
www.journeemondialedubricolage.com
www.manomanopro.fr
manomano.fr
www.diamundialdelbricolaje.es
journeemondialedubricolage.com
manomano.es

Other certificates including the domain name manomano.com

(limited to 100 certificates)
bo.stg.manomano.com
manomano.com
sni.cloudflaressl.com
a21.support.ignitehospitality.com
bo-pro-animation.manomano.com
wissensdatenbank.wattline.com
manomano.com
gw-toolbox.manomano.com
integrators.support.manomano.com
manomano.com
stg.manomano.com
openapi.manomano.com
sni.cloudflaressl.com
bo-shoptheroom.int.manomano.com
edison.manomano.com
sni.cloudflaressl.com
manomano.com
cadvisor.manomano.com
manospace.manomano.com
sni239312.cloudflaressl.com
manomano.com
*.bengal.manomano.com
*.bengal.manomano.com
bo-growth.manomano.com
sni.cloudflaressl.com
about.stg.manomano.com
gw-toolbox.manomano.com
hrcentral.manomano.com
sni.cloudflaressl.com
bengal.manomano.com
sni.cloudflaressl.com
sni.cloudflaressl.com
manomano.com
bo-finance-v2.int.manomano.com
partnersapi.manomano.com
ssl410472.cloudflaressl.com
sni.cloudflaressl.com
manocampus.manomano.com
manocampus.manomano.com
support.conda-capital.com
ws-sellers.stg.manomano.com
asistencia.ematizamarketing.com
sni.cloudflaressl.com
support.dolpa.online
sni.cloudflaressl.com
bo-finance-v2.manomano.com
manomano.com
sni.cloudflaressl.com
manomano.com
ssl410473.cloudflaressl.com
manomano.com
bo-pro-animation.stg.manomano.com
agent-360.manomano.com
partnersapi.int.manomano.com
prt-legacy-bo.stg.manomano.com
browserapi.stg.manomano.com
manomano.com
*.prd.manomano.com
pro.manomano.com
prt-legacy-bo.int.manomano.com
*.int.manomano.com
manospace.manomano.com
browserapi.manomano.com
bo-growth.manomano.com
payment-notification.stg.manomano.com
network.manomano.com
support.syself.com
support.evengo.co.uk
sni.cloudflaressl.com
bo.monechelle.com
bo-pro-animation.stg.manomano.com
iam.stg.manomano.com
hrcentral.manomano.com
bo-order.int.manomano.com
status.manomano.com
sni.cloudflaressl.com
*.int.manomano.com
browserapi.stg.manomano.com
sni.cloudflaressl.com
ssl410473.cloudflaressl.com
faq.manomano.com
manomano.com
graphql.manomano.com
bot.manomano.com
bot.manomano.com
support.evengo.co.uk
demo7.techbloom.org
bo.stg.manomano.com
*.about.stg.manomano.com
manomano.com
sni.cloudflaressl.com
*.int.manomano.com
bo.monechelle.com
manomano.com
sni239312.cloudflaressl.com
graphql.stg.manomano.com
ac.manomano.com
payment-notification.manomano.com
sni.cloudflaressl.com
a21.support.ignitehospitality.com

Certificate

The complete raw certificate details for manomano.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13MRZ8vWjb9OK9FuwM3O
jhGi9OoDzhSBZ05bdpSwLO8kB5KsTz+F4J3bMueVxwvzV+yI1yR6Eq7nojxIBDF/
Bekc3np4RwS1srdbdfgMDtDHxUdgGd90woQSUm2cO7Ud2SkvWkzwQHJqBPqvvgaq
DsDOlCB9FnCK+7wITCM1TnidpEvMENYGR76FNj2iZUYUfOhcNR9z+PMSo2ioAJt0
cV/t7knbA2mZ3IIp3bSYn1UqS25ZeOlha5+hEvsmSLy0pVigpyUczyuSIJwv0cRG
KoRoI5s+gs9/qm3B5SC00MQiQWT/cv2IE6sNtENV0gengIAf8qvCcl05Y8U78HOG
hQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 8518204054085407445618773929094015305
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-30 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-27 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'manomano.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27197977708407255467921502962955915423695689649582268335861298270622085946593951607086185195380305358477231971183749814430314881235079171924651825892390003065739227663368698687086649863234235072089035962718880959431854454236879359061690246488394030643122330120499776174884880771745821253251463614117645818532306816835495049717673431397802886244584748839885186825206535119584416858396818843814616614516916565455748741074496698927254644621799918929578363096784023539992096677109689906104571351429715427529910488430087418299631986308670123836431353265012538054755025493366204108856137458164835442756340836407113053079173
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9a932f733d56675e34b7fff542d47e62addeb0f3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (563 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manomano.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.manomano.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'supermano.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manomano.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internationaler-tag-des-heimwerkens.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manomanopro.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.internationaler-tag-des-heimwerkens.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.internationaldiyday.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manomano.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manomanopro.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diamundialdelbricolaje.es'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.giornatamondialedelfaidate.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manomano.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manomanopro.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.supermano.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internationaldiyday.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.supermano.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giornatamondialedelfaidate.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.journeemondialedubricolage.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manomanopro.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manomano.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.diamundialdelbricolaje.es'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'journeemondialedubricolage.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manomano.es'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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