www.igpinfo.com
- Manulife Financial -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 09:48:da:9b:33:da:b1:0d:c1:01:74:cf:2f:88:db:02 was issued on by Sectigo Limited.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Manulife Financial
Organization:
Manulife Financial
State / Province:
Ontario
Country: CA
Country: CA
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 09:48:da:9b:33:da:b1:0d:c1:01:74:cf:2f:88:db:02Serial Number (int): 12341331197585653662660460886297729794
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f3:00:23:c3:92:d9:76:c7:03:c1:cf:e9:9c:3c:17:8b:06:06:b5:09
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 57:74:03:f0:1a:3f:d2:a9:7b:12:e7:e6:8e:90:3d:f0:13:47:80:19
Fingerprint (sha256): 08:61:5a:7e:d7:0e:b7:29:82:11:53:94:38:d4:6b:65:25:3f:36:16:38:8c:71:37:2e:7a:80:eb:9e:8a:80:25
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate www.igpinfo.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.igpinfo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.igpinfo.com
igpinfo.jhancock.com
jherppx1.prd.manulifeusa.com
igpinfo.jhancock.com
jherppx1.prd.manulifeusa.com
Other certificates including the domain name igpinfo.com
(limited to 100 certificates)
johnhancock.com
www.igpinfo.com
johnhancock.com
jhaconnect.jhannuities.com
www.igpinfo.com
johnhancock.com
www.igpinfo.com
johnhancock.com
www.igpinfo.com
igpinfo.jhancock.com
www.igpinfo.com
jhaconnect.jhannuities.com
johnhancock.com
www.igpinfo.com
johnhancock.com
www-aem-prod.manulife.ca
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
jhaconnect.jhannuities.com
jhaconnect.jhannuities.com
johnhancock.com
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
www.igpinfo.com
www.igpinfo.com
www-aem-prod.manulife.ca
johnhancock.com
www.igpinfo.com
www.igpinfo.com
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
www.igpinfo.com
johnhancock.com
jhaconnect.jhannuities.com
www.igpinfo.com
johnhancock.com
www.igpinfo.com
johnhancock.com
www.igpinfo.com
igpinfo.jhancock.com
www.igpinfo.com
jhaconnect.jhannuities.com
johnhancock.com
www.igpinfo.com
johnhancock.com
www-aem-prod.manulife.ca
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
jhaconnect.jhannuities.com
jhaconnect.jhannuities.com
johnhancock.com
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
www.igpinfo.com
www.igpinfo.com
www-aem-prod.manulife.ca
johnhancock.com
www.igpinfo.com
www.igpinfo.com
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
Certificate
The complete raw certificate details for www.igpinfo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG/zCCBeegAwIBAgIQCUjamzPasQ3BAXTPL4jbAjANBgkqhkiG9w0BAQsFADCB lTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMT0wOwYDVQQD EzRTZWN0aWdvIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTIzMDExMDAwMDAwMFoXDTI0MDExMDIzNTk1OVowVjELMAkGA1UE BhMCQ0ExEDAOBgNVBAgTB09udGFyaW8xGzAZBgNVBAoTEk1hbnVsaWZlIEZpbmFu Y2lhbDEYMBYGA1UEAxMPd3d3LmlncGluZm8uY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEA1bkX5dyQjHIkGKROmCNx8PY1ul3YpBaHibx5myAz/23L ed2v/eK9TeyRiCue9SaqtdvZGlflDStdurVMso4EwXHtQwqja20TtNNRPUU+U5rX bBEfHJtNsEegevZDK6b/RGYR8tOOb9+eUILBltDassOhVRBZ7IaT3Q7aX8SmvVXg EIRNZylaFbdCyjJQT1cFNmLofZudvCi9KruHFGrRBiEOkZyI0QjZQ3ePWaw7zUN9 5tQ9MN6stDYzG7qhU+tMjLxccmbvouPSyLBhEaSwzqjKuIfZpGfOuHlXh2hFqZCf HNsehN9kFfm3iJ80X4DNlQgiH72YTy0jIA3MIL7cvwIDAQABo4IDhzCCA4MwHwYD VR0jBBgwFoAUF9nWJSdn+THCSUPZMDZEjGypT+swHQYDVR0OBBYEFPMAI8OS2XbH A8HP6Zw8F4sGBrUJMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBKBgNVHSAEQzBBMDUGDCsGAQQBsjEB AgEDBDAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29tL0NQUzAIBgZn gQwBAgIwWgYDVR0fBFMwUTBPoE2gS4ZJaHR0cDovL2NybC5zZWN0aWdvLmNvbS9T ZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNy bDCBigYIKwYBBQUHAQEEfjB8MFUGCCsGAQUFBzAChklodHRwOi8vY3J0LnNlY3Rp Z28uY29tL1NlY3RpZ29SU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2Vy dmVyQ0EuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTCC AX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp 3GhCCp/mZ0xaOnQAAAGFnQj0OAAABAMARjBEAiBHmUw+qOWbQ7RP4oQqSY0s5GYQ FKC3sUr3WesNXB4mOwIgWFW4hROWkj6y4sRkwTZbR9CiJDCkWDlk+datpmSG9NwA dwDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYWdCPQOAAAEAwBI MEYCIQCmg1HbvXYNqVT9M5wwCOp5J21j7CwLeHwcixSbZ0hJAQIhAL0Fvhd1LZrY gPKc6iQr/OXd5V/3EdR8054pMYznNUkUAHUA7s3QZNXbGs7FXLedtM0TojKHRny8 7N7DUUhZRnEftZsAAAGFnQjz2AAABAMARjBEAiAi+Y83t9T/F5fjKL8mjMILHUDv UCDbItY6Rv2HAcZRsAIgIAqDN4f7iTmEDfRmEv7MtbOv6fpor6C4GQP8ja6FXvIw TgYDVR0RBEcwRYIPd3d3LmlncGluZm8uY29tghRpZ3BpbmZvLmpoYW5jb2NrLmNv bYIcamhlcnBweDEucHJkLm1hbnVsaWZldXNhLmNvbTANBgkqhkiG9w0BAQsFAAOC AQEAMFA+jdJKgK+PezFr5gi6bYtqNL/T8xiXQKOp3zDmwJl26/pUdVzesfGJCaFj CEGYtaLtINQLgOLA/gclMtsMWfaXAZ44iRPKQYFkEfM4WOHoaoY3yNG81CE2du3Z vlZH16mF58vvAM8JKpPmHnU4gOQnUPSRY/igiwT8fefJuJ5mNOo1N3yHr5wrpX6/ 8LKdm0oCxQNhmbn1QdektP6LcXTjpUZS2VagSUU4w0vp5NXbrA0aT4+WOC09DRT9 DwkILks+K1TpOkj5Q5dj+Lh0+VtQ/lVqqQxEv5H2FX0izGS6PXK0lpXtasr6TOZ8 kdKrUplI2UKX48W4nX8KYGUFhg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bkX5dyQjHIkGKROmCNx 8PY1ul3YpBaHibx5myAz/23Led2v/eK9TeyRiCue9SaqtdvZGlflDStdurVMso4E wXHtQwqja20TtNNRPUU+U5rXbBEfHJtNsEegevZDK6b/RGYR8tOOb9+eUILBltDa ssOhVRBZ7IaT3Q7aX8SmvVXgEIRNZylaFbdCyjJQT1cFNmLofZudvCi9KruHFGrR BiEOkZyI0QjZQ3ePWaw7zUN95tQ9MN6stDYzG7qhU+tMjLxccmbvouPSyLBhEaSw zqjKuIfZpGfOuHlXh2hFqZCfHNsehN9kFfm3iJ80X4DNlQgiH72YTy0jIA3MIL7c vwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12341331197585653662660460886297729794 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-10 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.igpinfo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26980031891015981258981284633733720427112480267656079253457163248309222779574352860913068689075391845693777348750649191433924863460555674999396456424909329434115768040910276925249945856586890342387449309417213720866065717576244084175779774565799358690729314659604445511957811517696279721122874075851268430112093231930322733881647865490681912410031121551726869151061379074589045430392122532141484589038112738500002224310473812364154377893618321118208567070871278178087582949927925395346135118139489416147131197705047317416929764939130579648217845535209098764076014754688392532705747804087429067761521770731829754518719 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f30023c392d976c703c1cfe99c3c178b0606b509 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (71 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.igpinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'igpinfo.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jherppx1.prd.manulifeusa.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0030503e8dd24a80af8f7b316be608ba6d8b6a34bfd3f3189740a3a9df30e6c09976ebfa54755cdeb1f18909a163084198b5a2ed20d40b80e2c0fe072532db0c59f697019e388913ca41816411f33858e1e86a8637c8d1bcd4213676edd9be5647d7a985e7cbef00cf092a93e61e753880e42750f49163f8a08b04fc7de7c9b89e6634ea35377c87af9c2ba57ebff0b29d9b4a02c5036199b9f541d7a4b4fe8b7174e3a54652d956a0494538c34be9e4d5dbac0d1a4f8f96382d3d0d14fd0f09082e4b3e2b54e93a48f9439763f8b874f95b50fe556aa90c44bf91f6157d22cc64ba3d72b49695ed6acafa4ce67c91d2ab529948d94297e3c5b89d7f0a60650586