manulife.com

- Manulife Financial Corporation -

Issued by Sectigo RSA Organization Validation Secure Server CA

About this certificate

This digital certificate with serial number a1:b3:16:e8:3d:da:f8:6b:7b:11:c8:53:69:13:c2:31 was issued on by Sectigo Limited.

With 95 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Manulife Financial Corporation

Organization: Manulife Financial Corporation
State / Province: Ontario
Country: CA

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate will expire on

Certificate Details

Serial Number (hex): a1:b3:16:e8:3d:da:f8:6b:7b:11:c8:53:69:13:c2:31
Serial Number (int): 214935593072137477886431039402863215153
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 50:6e:04:4f:e4:cf:47:f9:6f:61:cb:82:0c:85:35:ea:d3:83:41:72
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb

Fingerprint (sha1): 7c:57:7e:08:7a:82:ca:5d:79:94:10:56:16:fd:93:de:d8:45:74:a1
Fingerprint (sha256): 08:ba:7c:cc:ff:25:a0:15:96:09:61:cd:74:6b:f1:0b:99:12:38:5b:dc:2d:87:fb:ef:31:a6:8e:d9:99:98:57

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com
CRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl

Check the revocation status for certificate manulife.com

95

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for manulife.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

manulife.com
16049.manulife.com
advisor.uat.id.manulife.ca
agentwebsit1.manulife.co.jp
ak-edge.preprod-ext.api.manulife.com
ak-edge.prod-ext.api.manulife.com
api.groupbenefits.manulife.ca
api.uat.gb.manulife.com
bdreg1.test-qa.net
demanderuneprotection.com
eznyreg1.test-qa02.net
ezusreg1.test-qa.net
groupbenefits.manulife.ca
manuliferates.ca
manuliferates.com
manulifesharepoint.mfcpoc01.com
manulinksit1.manulife.co.jp
mi-stg-tmp.jhinvestments.com
mi-tmp.jhinvestments.com
ml-exchange.mfcpoc01.com
mlex.pci.manulife.com
mlin.pci.manulife.com
mobile.manulife.ca
mortgagecreditor.uat.id.manulife.ca
ondex.manulife.com
ondexx.manulife.com
personal.uat.id.manulife.ca
portail.investissements.manuvie.ca
psnyreg1.test-qa02.net
psusreg1.test-qa.net
registration.manulife.com
repdomws.manulife.com
retirement-stg-tmp.johnhancock.com
retirement-tmp.johnhancock.com
sit2.apply.epos.manulife.co.jp
sitmlex.pci.manulife.com
sitmlin.pci.manulife.com
sponsor.uat.id.manulife.ca
stg-tmp.jhinvestments.com
stg-tmp.manulifeprivatewealth.com
stg-tmp.manuliferealestatefinance.com
stg.manulifeim.com
tauxmanuvie.ca
tauxmanuvie.com
tmp.jhinvestments.com
tmp.manulifeim.com
tmp.manulifeprivatewealth.com
travel.uat.id.manulife.ca
tripx.prd.coverme.com
tripx.prd.pourmeproteger.com
uat.api.groupbenefits.manulife.ca
uat.api.manulifesecurities.manulife.ca
uat.api.placementsmanuvie.manuvie.ca
uat.apply.epos.manulife.co.jp
uat.assurance-manuvie.ca
uat.groupbenefits.manulife.ca
uat.id.manulife.ca
uat.manulifesecurities.manulife.ca
uat.manutouch.sg
uat.placementsmanuvie.manuvie.ca
uat.portail.investissements.manuvie.ca
uat1.fasat.manulife.ca
uat2.apply.epos.manulife.co.jp
uatclient.banquemanuvie.com
uatclient.manulifebank.com
uatdoc.manulife.com
uatm.manulife.com
uatmlex.pci.manulife.com
uatmlin.pci.manulife.com
uatonline.manulifebank.ca
ucits-stg-tmp.manulifeim.com
ucits-tmp.manulifeim.com
www-aem-stage.bank.manulife.ca
www-aem-stage.bank.manuvie.ca
www-aem-stage.cmtcp.manulife.ca
www-aem-stage.coverme.manulife.ca
www-aem-stage.coverme.manuvie.ca
www-aem-stage.groupbenefits.manulife.ca
www-aem-stage.headless.manulife.ca
www-aem-stage.manulife.ca
www-aem-stage.manuvie.ca
www-aem-stage.rr.manulife.ca
www-aem-stage.travel.manulife.ca
www-aem-stage.travel.manuvie.ca
www-aem-stage.travelb2b.manulife.ca
www-aem-stage.travelb2b.manuvie.ca
www-uat.manulife-travel.ca
www-uat.manulife-travel.com
www-uat.voyagemanuvie.ca
www-uat.voyagemanuvie.com
www.demanderuneprotection.com
www.manuliferates.ca
www.manuliferates.com
www.tauxmanuvie.ca
www.tauxmanuvie.com

Other certificates including the domain name manulife.com

(limited to 100 certificates)
mlisxivg01.manulife.com
manulife.com
nasbfepool02.mfcgd.com
mfcentral.manulife.com
api1.np.ca.manulife.com
idwicrmapd01.mlijkt01.manulife.com
manulife.com
manulife.com
aidp.manulife.com
azalvedlwrkdp10.p01eaedl.manulife.com
manulife.com
client.manulifebank.com
rps.jhancock.com
manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
hermes.manulife.com
manulife.com
clbs37841.manulife.com
internal.mesh.test.api.manulife.com
azcedlwrks003.s01caedl.manulife.com
manulife.com
cdcwvjhpwast21.americas.manulife.net
daily.manulife.com.vn
click.e.manulife.com
sft.institutional.manulife.com
johnhancock.com
manulife.com
sts.manulife.com
manulife.com
azslvedlmgtdd01.d01saedl.manulife.com
idwicrmapt21.mlijkt01.manulife.com
idwcasp.ap.manulife.com
mfcentral.manulife.com
manulife.com
view-e-ds.manulife.com
idwelems01.mlijkt01.manulife.com
druglookup-client.manulife.com
mfcentral.manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
www-aem-prod.manulife.ca
insttrip.manulife.com
manulife.com
dbpartners.manulife.com
idwinetapt01.mlijkt01.manulife.com
asiacitrix.manulife.com
arrowonramp.manulife.com
manulife.com
qitsso-uat.manulife.com
manulife.com
sf.cac.internal.mesh.dev.api.manulife.com
manulife.com
giam-qa.manulife.com
manulife.com
cconprem.manulife.com
manulife.com
manulife.com
manulife.com
idp.grsportal.ca.manulife.com
manulife.com
insanalyticsdev01.manulife.com
awsuat.manulife.com.kh
idwiqmtapp01.mlijkt01.manulife.com
johnhancock.com
manulife.com
manulife.com
myasoaibp2.ap.manulife.com
remotejp2.manulife.com
johnhancock.com
sharepoint-int.ap.manulife.com
mlifs900g01.manulife.com
nasbaccess01.manulife.com
jhappsstaging-tst.aks.manulife.com
manulife.com
manulife.com
crverifyidentity-dev.johnhancock.com
manulife.com
jpnhoapt09.japan.corp.manulife.com
client.manulifebank.com
preprod.mtls.api.manulife.com
manulife.com
idwietsisft05.mlijkt01.manulife.com
remotehk.manulife.com
azcedledges001.s01caedl.manulife.com
idwcas4tap.ap.manulife.com
manulife.com
mlixnbarplzvnaca.manulife.com
manulife.com
manulife.com
druglookup-client.manulife.com
pcf.manulife.com
proxy.auw.my.underwriting.manulife.com
manulife.com
johnhancock.com
manulife.com
financeit.devsit202201.manulife.com
tw-ssg-fw1.manulife.com
advisor.manulife.ca
azwapnwasm01.mfcgd.com
azuedldbo01.p01usedl.manulife.com
edge.prod-ext.api.manulife.com

Certificate

The complete raw certificate details for manulife.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3r/87INdobTSLT6X2Lt
UV3hs37ok2uQwz22pw7w2+r76TGFtmut8RuVkuG8JZBzdbFCYDlf5lOmq4PyJH7T
bG+h12UQjq9gavLXv/BFQ4qWom2RCzsznkNbjZbCvt3qWp4tjsu+/hV/aEGwSetT
TM8h3ZOzLskY4nwu+OT/sR/nC5xP9cSUmNwqHvsDetMCMxYxf8GMoDmlfYVlNshZ
szM/TE51fgmereNsgDm76a7j1q6jvrErTpAlkzfGUM+s34zMuK0bMcvDtzCvJ2qd
LwS7OktYDuaODrKNThDTtnXkXoahgTOBv+9hGWyJWkSePnCa6fk0cxq0lxGRv2sz
BQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 214935593072137477886431039402863215153
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-08 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-08 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial Corporation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'manulife.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23667216496658409803700932029607119473820553333359323780445950559459352614066313272179065279519030082162508311631852325814626577319611735720943820893557481867659632391470947899580270606405379864148534456449294372159636376961956710297837590530569297847592909406662440290131769028850274873927996269171993100164529560675940128437361378386861994169336151116206655384818704222603361778875188125589044163643012269436491646201421784271338669638436942849096779818006425850052987333180252291592574504153437320118832252980246724090357169680773753537068299040760655621583259526988969969135272761863443669786996433003939799708421
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							506e044fe4cf47f96f61cb820c8535ead3834172
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2647 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '16049.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advisor.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agentwebsit1.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ak-edge.preprod-ext.api.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ak-edge.prod-ext.api.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.uat.gb.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bdreg1.test-qa.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demanderuneprotection.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eznyreg1.test-qa02.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ezusreg1.test-qa.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manuliferates.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manuliferates.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifesharepoint.mfcpoc01.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulinksit1.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi-stg-tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi-tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ml-exchange.mfcpoc01.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mlex.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mlin.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobile.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mortgagecreditor.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ondex.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ondexx.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'personal.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portail.investissements.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psnyreg1.test-qa02.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psusreg1.test-qa.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'registration.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'repdomws.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirement-stg-tmp.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirement-tmp.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sit2.apply.epos.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sitmlex.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sitmlin.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sponsor.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-tmp.manulifeprivatewealth.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-tmp.manuliferealestatefinance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tauxmanuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tauxmanuvie.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.manulifeprivatewealth.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'travel.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tripx.prd.coverme.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tripx.prd.pourmeproteger.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.api.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.api.manulifesecurities.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.api.placementsmanuvie.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.apply.epos.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.assurance-manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.manulifesecurities.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.manutouch.sg'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.placementsmanuvie.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.portail.investissements.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat1.fasat.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat2.apply.epos.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatclient.banquemanuvie.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatclient.manulifebank.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatdoc.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatm.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatmlex.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatmlin.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatonline.manulifebank.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits-stg-tmp.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits-tmp.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.bank.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.bank.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.cmtcp.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.coverme.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.coverme.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.headless.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.rr.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travel.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travel.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travelb2b.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travelb2b.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.manulife-travel.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.manulife-travel.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.voyagemanuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.voyagemanuvie.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demanderuneprotection.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manuliferates.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manuliferates.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tauxmanuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tauxmanuvie.com'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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