jhappsstaging-tst.aks.manulife.com
- Manulife Financial -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 9c:1d:6a:15:9a:9c:fd:ad:79:2d:d6:57:ee:08:ad:94 was issued on by Sectigo Limited.
With 22 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Manulife Financial
Organization:
Manulife Financial
Organization unit: US Segment
Organization unit: US Segment
State / Province:
Ontario
Country: CA
Country: CA
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 9c:1d:6a:15:9a:9c:fd:ad:79:2d:d6:57:ee:08:ad:94Serial Number (int): 207512295598404267949923098102887656852
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: cd:7a:bd:ca:cc:e5:d6:ff:f1:ad:e9:bd:c5:af:31:ac:23:5d:13:d5
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 7c:21:e8:43:7e:91:62:6c:20:fb:b1:9b:c3:70:ce:22:c4:29:45:34
Fingerprint (sha256): 05:27:e9:d5:ee:1c:11:81:e4:99:75:57:69:8c:6c:d7:a7:4e:d8:ff:04:71:0a:0d:df:1f:96:9b:e6:65:93:54
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate jhappsstaging-tst.aks.manulife.com
22
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for jhappsstaging-tst.aks.manulife.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
jhappsstaging-tst.aks.manulife.com
abasurvey.jhappsstaging-tst.aks.manulife.com
centralregistry.jhappsstaging-tst.aks.manulife.com
ciam-usc.jhappsstaging-tst.aks.manulife.com
clientindexui.jhappsstaging-tst.aks.manulife.com
documentcoordinators-sso.jhappsstaging-tst.aks.manulife.com
documentcoordinators.jhappsstaging-tst.aks.manulife.com
dualsubmit.jhappsstaging-tst.aks.manulife.com
globalbasischange.jhappsstaging-test.aks.manulife.com
globalbasischange.jhappsstaging-tst.aks.manulife.com
indexnowui.jhappsstaging-tst.aks.manulife.com
intlcomp.jhappsstaging-tst.aks.manulife.com
notificationportal.jhappsstaging-tst.aks.manulife.com
pdfservice.jhappsstaging-tst.aks.manulife.com
policyregistry.jhappsstaging-tst.aks.manulife.com
rabbitmq.jhappsstaging-tst.aks.manulife.com
ras-aci.jhappsstaging-tst.aks.manulife.com
ras-jhcommitment.jhappsstaging-tst.aks.manulife.com
ras-opscorecard.jhappsstaging-tst.aks.manulife.com
ras-ssep.jhappsstaging-tst.aks.manulife.com
territoryoptimization.jhappsstaging-tst.aks.manulife.com
valuestream.jhappsstaging-tst.aks.manulife.com
abasurvey.jhappsstaging-tst.aks.manulife.com
centralregistry.jhappsstaging-tst.aks.manulife.com
ciam-usc.jhappsstaging-tst.aks.manulife.com
clientindexui.jhappsstaging-tst.aks.manulife.com
documentcoordinators-sso.jhappsstaging-tst.aks.manulife.com
documentcoordinators.jhappsstaging-tst.aks.manulife.com
dualsubmit.jhappsstaging-tst.aks.manulife.com
globalbasischange.jhappsstaging-test.aks.manulife.com
globalbasischange.jhappsstaging-tst.aks.manulife.com
indexnowui.jhappsstaging-tst.aks.manulife.com
intlcomp.jhappsstaging-tst.aks.manulife.com
notificationportal.jhappsstaging-tst.aks.manulife.com
pdfservice.jhappsstaging-tst.aks.manulife.com
policyregistry.jhappsstaging-tst.aks.manulife.com
rabbitmq.jhappsstaging-tst.aks.manulife.com
ras-aci.jhappsstaging-tst.aks.manulife.com
ras-jhcommitment.jhappsstaging-tst.aks.manulife.com
ras-opscorecard.jhappsstaging-tst.aks.manulife.com
ras-ssep.jhappsstaging-tst.aks.manulife.com
territoryoptimization.jhappsstaging-tst.aks.manulife.com
valuestream.jhappsstaging-tst.aks.manulife.com
Other certificates including the domain name manulife.com
(limited to 100 certificates)
mlisxivg01.manulife.com
manulife.com
nasbfepool02.mfcgd.com
mfcentral.manulife.com
api1.np.ca.manulife.com
idwicrmapd01.mlijkt01.manulife.com
manulife.com
manulife.com
aidp.manulife.com
azalvedlwrkdp10.p01eaedl.manulife.com
manulife.com
client.manulifebank.com
rps.jhancock.com
manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
hermes.manulife.com
manulife.com
clbs37841.manulife.com
internal.mesh.test.api.manulife.com
azcedlwrks003.s01caedl.manulife.com
manulife.com
cdcwvjhpwast21.americas.manulife.net
daily.manulife.com.vn
click.e.manulife.com
sft.institutional.manulife.com
johnhancock.com
manulife.com
sts.manulife.com
manulife.com
azslvedlmgtdd01.d01saedl.manulife.com
idwicrmapt21.mlijkt01.manulife.com
idwcasp.ap.manulife.com
mfcentral.manulife.com
manulife.com
view-e-ds.manulife.com
idwelems01.mlijkt01.manulife.com
druglookup-client.manulife.com
mfcentral.manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
www-aem-prod.manulife.ca
insttrip.manulife.com
manulife.com
dbpartners.manulife.com
idwinetapt01.mlijkt01.manulife.com
asiacitrix.manulife.com
arrowonramp.manulife.com
manulife.com
qitsso-uat.manulife.com
manulife.com
sf.cac.internal.mesh.dev.api.manulife.com
manulife.com
giam-qa.manulife.com
manulife.com
cconprem.manulife.com
manulife.com
manulife.com
manulife.com
idp.grsportal.ca.manulife.com
manulife.com
insanalyticsdev01.manulife.com
awsuat.manulife.com.kh
idwiqmtapp01.mlijkt01.manulife.com
johnhancock.com
manulife.com
manulife.com
myasoaibp2.ap.manulife.com
remotejp2.manulife.com
johnhancock.com
sharepoint-int.ap.manulife.com
mlifs900g01.manulife.com
nasbaccess01.manulife.com
jhappsstaging-tst.aks.manulife.com
manulife.com
manulife.com
crverifyidentity-dev.johnhancock.com
manulife.com
jpnhoapt09.japan.corp.manulife.com
client.manulifebank.com
preprod.mtls.api.manulife.com
manulife.com
idwietsisft05.mlijkt01.manulife.com
remotehk.manulife.com
azcedledges001.s01caedl.manulife.com
idwcas4tap.ap.manulife.com
manulife.com
mlixnbarplzvnaca.manulife.com
manulife.com
manulife.com
druglookup-client.manulife.com
pcf.manulife.com
proxy.auw.my.underwriting.manulife.com
manulife.com
johnhancock.com
manulife.com
financeit.devsit202201.manulife.com
tw-ssg-fw1.manulife.com
advisor.manulife.ca
azwapnwasm01.mfcgd.com
azuedldbo01.p01usedl.manulife.com
edge.prod-ext.api.manulife.com
manulife.com
nasbfepool02.mfcgd.com
mfcentral.manulife.com
api1.np.ca.manulife.com
idwicrmapd01.mlijkt01.manulife.com
manulife.com
manulife.com
aidp.manulife.com
azalvedlwrkdp10.p01eaedl.manulife.com
manulife.com
client.manulifebank.com
rps.jhancock.com
manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
hermes.manulife.com
manulife.com
clbs37841.manulife.com
internal.mesh.test.api.manulife.com
azcedlwrks003.s01caedl.manulife.com
manulife.com
cdcwvjhpwast21.americas.manulife.net
daily.manulife.com.vn
click.e.manulife.com
sft.institutional.manulife.com
johnhancock.com
manulife.com
sts.manulife.com
manulife.com
azslvedlmgtdd01.d01saedl.manulife.com
idwicrmapt21.mlijkt01.manulife.com
idwcasp.ap.manulife.com
mfcentral.manulife.com
manulife.com
view-e-ds.manulife.com
idwelems01.mlijkt01.manulife.com
druglookup-client.manulife.com
mfcentral.manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
www-aem-prod.manulife.ca
insttrip.manulife.com
manulife.com
dbpartners.manulife.com
idwinetapt01.mlijkt01.manulife.com
asiacitrix.manulife.com
arrowonramp.manulife.com
manulife.com
qitsso-uat.manulife.com
manulife.com
sf.cac.internal.mesh.dev.api.manulife.com
manulife.com
giam-qa.manulife.com
manulife.com
cconprem.manulife.com
manulife.com
manulife.com
manulife.com
idp.grsportal.ca.manulife.com
manulife.com
insanalyticsdev01.manulife.com
awsuat.manulife.com.kh
idwiqmtapp01.mlijkt01.manulife.com
johnhancock.com
manulife.com
manulife.com
myasoaibp2.ap.manulife.com
remotejp2.manulife.com
johnhancock.com
sharepoint-int.ap.manulife.com
mlifs900g01.manulife.com
nasbaccess01.manulife.com
jhappsstaging-tst.aks.manulife.com
manulife.com
manulife.com
crverifyidentity-dev.johnhancock.com
manulife.com
jpnhoapt09.japan.corp.manulife.com
client.manulifebank.com
preprod.mtls.api.manulife.com
manulife.com
idwietsisft05.mlijkt01.manulife.com
remotehk.manulife.com
azcedledges001.s01caedl.manulife.com
idwcas4tap.ap.manulife.com
manulife.com
mlixnbarplzvnaca.manulife.com
manulife.com
manulife.com
druglookup-client.manulife.com
pcf.manulife.com
proxy.auw.my.underwriting.manulife.com
manulife.com
johnhancock.com
manulife.com
financeit.devsit202201.manulife.com
tw-ssg-fw1.manulife.com
advisor.manulife.ca
azwapnwasm01.mfcgd.com
azuedldbo01.p01usedl.manulife.com
edge.prod-ext.api.manulife.com
Certificate
The complete raw certificate details for jhappsstaging-tst.aks.manulife.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJwjCCCKqgAwIBAgIRAJwdahWanP2teS3WV+4IrZQwDQYJKoZIhvcNAQELBQAw gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yMTEwMTMwMDAwMDBaFw0yMjEwMTMyMzU5NTlaMH4xCzAJBgNV BAYTAkNBMRAwDgYDVQQIEwdPbnRhcmlvMRswGQYDVQQKExJNYW51bGlmZSBGaW5h bmNpYWwxEzARBgNVBAsTClVTIFNlZ21lbnQxKzApBgNVBAMTImpoYXBwc3N0YWdp bmctdHN0LmFrcy5tYW51bGlmZS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCoU1qC52+a7lkqS3WP/QvvWng8sVMGHcFuNKSzEc06Aiu8rkB0hG5a NWN0TzxKni9gJI1w8UzLyIWxWRRu6BCFiwTBm8hPsgQfyWFNsG5YVH6xAnzW8Qbl 9bcIZy6PSiz0evaVaZDa+oVC4xFRl0GZY+0OmkPOh258dcvxM8nGUtmxO2nw6mb5 nC9yyhLup91sIR9wiZn3Vfe4mlcWE6RjcTBBTNtmoPhfNk+1j04nqWYRa+1pATsY keItR3AMA7Qf6fDiC6nxuuAYto2hjKAFpg3IBFPmJV9cbsyaio6oQkBUaiD8PQWN 3k0r8j0l6V4rZIkxjQGKlKhaXj8eMHEvAgMBAAGjggYhMIIGHTAfBgNVHSMEGDAW gBQX2dYlJ2f5McJJQ9kwNkSMbKlP6zAdBgNVHQ4EFgQUzXq9yszl1v/xrem9xa8x rCNdE9UwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMEoGA1UdIARDMEEwNQYMKwYBBAGyMQECAQMEMCUw IwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBa BgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLnNlY3RpZ28uY29tL1NlY3RpZ29S U0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGKBggr BgEFBQcBAQR+MHwwVQYIKwYBBQUHMAKGSWh0dHA6Ly9jcnQuc2VjdGlnby5jb20v U2VjdGlnb1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5j cnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMBMGCisGAQQB 1nkCBAMBAf8EAgUAMIIEUgYDVR0RBIIESTCCBEWCImpoYXBwc3N0YWdpbmctdHN0 LmFrcy5tYW51bGlmZS5jb22CLGFiYXN1cnZleS5qaGFwcHNzdGFnaW5nLXRzdC5h a3MubWFudWxpZmUuY29tgjJjZW50cmFscmVnaXN0cnkuamhhcHBzc3RhZ2luZy10 c3QuYWtzLm1hbnVsaWZlLmNvbYIrY2lhbS11c2MuamhhcHBzc3RhZ2luZy10c3Qu YWtzLm1hbnVsaWZlLmNvbYIwY2xpZW50aW5kZXh1aS5qaGFwcHNzdGFnaW5nLXRz dC5ha3MubWFudWxpZmUuY29tgjtkb2N1bWVudGNvb3JkaW5hdG9ycy1zc28uamhh cHBzc3RhZ2luZy10c3QuYWtzLm1hbnVsaWZlLmNvbYI3ZG9jdW1lbnRjb29yZGlu YXRvcnMuamhhcHBzc3RhZ2luZy10c3QuYWtzLm1hbnVsaWZlLmNvbYItZHVhbHN1 Ym1pdC5qaGFwcHNzdGFnaW5nLXRzdC5ha3MubWFudWxpZmUuY29tgjVnbG9iYWxi YXNpc2NoYW5nZS5qaGFwcHNzdGFnaW5nLXRlc3QuYWtzLm1hbnVsaWZlLmNvbYI0 Z2xvYmFsYmFzaXNjaGFuZ2UuamhhcHBzc3RhZ2luZy10c3QuYWtzLm1hbnVsaWZl LmNvbYItaW5kZXhub3d1aS5qaGFwcHNzdGFnaW5nLXRzdC5ha3MubWFudWxpZmUu Y29tgitpbnRsY29tcC5qaGFwcHNzdGFnaW5nLXRzdC5ha3MubWFudWxpZmUuY29t gjVub3RpZmljYXRpb25wb3J0YWwuamhhcHBzc3RhZ2luZy10c3QuYWtzLm1hbnVs aWZlLmNvbYItcGRmc2VydmljZS5qaGFwcHNzdGFnaW5nLXRzdC5ha3MubWFudWxp ZmUuY29tgjFwb2xpY3lyZWdpc3RyeS5qaGFwcHNzdGFnaW5nLXRzdC5ha3MubWFu dWxpZmUuY29tgityYWJiaXRtcS5qaGFwcHNzdGFnaW5nLXRzdC5ha3MubWFudWxp ZmUuY29tgipyYXMtYWNpLmpoYXBwc3N0YWdpbmctdHN0LmFrcy5tYW51bGlmZS5j b22CM3Jhcy1qaGNvbW1pdG1lbnQuamhhcHBzc3RhZ2luZy10c3QuYWtzLm1hbnVs aWZlLmNvbYIycmFzLW9wc2NvcmVjYXJkLmpoYXBwc3N0YWdpbmctdHN0LmFrcy5t YW51bGlmZS5jb22CK3Jhcy1zc2VwLmpoYXBwc3N0YWdpbmctdHN0LmFrcy5tYW51 bGlmZS5jb22COHRlcnJpdG9yeW9wdGltaXphdGlvbi5qaGFwcHNzdGFnaW5nLXRz dC5ha3MubWFudWxpZmUuY29tgi52YWx1ZXN0cmVhbS5qaGFwcHNzdGFnaW5nLXRz dC5ha3MubWFudWxpZmUuY29tMA0GCSqGSIb3DQEBCwUAA4IBAQBqe3HY2/j3iJ/o k7KaItN1rTQBIR0bKuXafI7sJdHHw2SHliShvH2gKzcJgD1/7Abbs3BppPk0JPY9 0m04IV8XQvCcFJHljUuhkJX9T8Z/ccHLQWtE3HJOffBTcTwWvJALdQY6VpggGHms 4lBuDTLXlGOhUKCVrGMkGAftg86h/92PdHUzyKyIiy4mdbZ9/6YcbarRax+7fK4m LBHB33vxC8jSoYnjVihh0XasRwMRg/s1f+tsjDHNcJJ0xLxdk7pnzPJCJ3/+UDDX Zi657/F5/wQG6q/TOdRz6mCzzIrq89u6cMcpDmiFK3wPF7UmL5wDd3Pk1RykXZbn ImKM4wsI -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFNagudvmu5ZKkt1j/0L 71p4PLFTBh3BbjSksxHNOgIrvK5AdIRuWjVjdE88Sp4vYCSNcPFMy8iFsVkUbugQ hYsEwZvIT7IEH8lhTbBuWFR+sQJ81vEG5fW3CGcuj0os9Hr2lWmQ2vqFQuMRUZdB mWPtDppDzodufHXL8TPJxlLZsTtp8Opm+ZwvcsoS7qfdbCEfcImZ91X3uJpXFhOk Y3EwQUzbZqD4XzZPtY9OJ6lmEWvtaQE7GJHiLUdwDAO0H+nw4gup8brgGLaNoYyg BaYNyART5iVfXG7MmoqOqEJAVGog/D0Fjd5NK/I9JeleK2SJMY0BipSoWl4/HjBx LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 207512295598404267949923098102887656852 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US Segment' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jhappsstaging-tst.aks.manulife.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21249138406639112083668240467032340606057195721992991774138609209344122259348055989190763651496470039026193820991844853888424328761446620789746525451047850120685521832115268353209945244117358705488383977647344010891611215387242883622373709523433654526590027375667953248578753860948820194126451452175461503801131551770304967684192300990335031050007035098582869687709896236217912005631215308046498445031227250766699156478834716407975185063075632142201701894226864210686168253542822112147688204508516146289771671586710771100436836671434565339573036742342157892840611878938483357913329264955787317357827874732107346506031 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cd7abdcacce5d6fff1ade9bdc5af31ac235d13d5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1097 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'abasurvey.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centralregistry.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ciam-usc.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clientindexui.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentcoordinators-sso.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentcoordinators.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dualsubmit.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'globalbasischange.jhappsstaging-test.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'globalbasischange.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'indexnowui.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intlcomp.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'notificationportal.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pdfservice.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'policyregistry.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rabbitmq.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ras-aci.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ras-jhcommitment.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ras-opscorecard.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ras-ssep.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'territoryoptimization.jhappsstaging-tst.aks.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'valuestream.jhappsstaging-tst.aks.manulife.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006a7b71d8dbf8f7889fe893b29a22d375ad3401211d1b2ae5da7c8eec25d1c7c364879624a1bc7da02b3709803d7fec06dbb37069a4f93424f63dd26d38215f1742f09c1491e58d4ba19095fd4fc67f71c1cb416b44dc724e7df053713c16bc900b75063a5698201879ace2506e0d32d79463a150a095ac63241807ed83cea1ffdd8f747533c8ac888b2e2675b67dffa61c6daad16b1fbb7cae262c11c1df7bf10bc8d2a189e3562861d176ac47031183fb357feb6c8c31cd709274c4bc5d93ba67ccf242277ffe5030d7662eb9eff179ff0406eaafd339d473ea60b3cc8aeaf3dbba70c7290e68852b7c0f17b5262f9c037773e4d51ca45d96e722628ce30b08