manulife.com

- Manulife Financial Corporation -

Issued by Sectigo RSA Organization Validation Secure Server CA

About this certificate

This digital certificate with serial number 9e:9e:bd:b5:d4:c2:2e:46:95:85:b8:85:a4:b3:d9:09 was issued on by Sectigo Limited.

With 94 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Manulife Financial Corporation

Organization: Manulife Financial Corporation
State / Province: Ontario
Country: CA

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate will expire on

Certificate Details

Serial Number (hex): 9e:9e:bd:b5:d4:c2:2e:46:95:85:b8:85:a4:b3:d9:09
Serial Number (int): 210842254019223288153699474766841501961
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: ed:af:ce:5f:18:9b:fb:53:d7:56:76:c1:d4:2a:92:e2:58:b5:4b:88
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb

Fingerprint (sha1): f1:b6:32:fe:54:ac:8b:0c:5a:e6:22:68:c0:30:57:33:1c:39:6f:e4
Fingerprint (sha256): 0d:21:83:b1:a7:ec:0f:2f:83:d5:e7:cd:21:fc:06:3b:ab:6a:0d:72:ac:92:a3:e0:a5:bd:38:74:97:f5:e5:95

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com
CRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl

Check the revocation status for certificate manulife.com

94

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for manulife.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

manulife.com
16049.manulife.com
advisor.uat.id.manulife.ca
agentwebsit1.manulife.co.jp
api.groupbenefits.manulife.ca
api.uat.gb.manulife.com
bdreg1.test-qa.net
demanderuneprotection.com
eznyreg1.test-qa02.net
ezusreg1.test-qa.net
groupbenefits.manulife.ca
manuliferates.ca
manuliferates.com
manulifesharepoint.mfcpoc01.com
manulinksit1.manulife.co.jp
mi-stg-tmp.jhinvestments.com
mi-tmp.jhinvestments.com
ml-exchange.mfcpoc01.com
mlex.pci.manulife.com
mlin.pci.manulife.com
mobile.manulife.ca
mortgagecreditor.uat.id.manulife.ca
ondex.manulife.com
ondexx.manulife.com
personal.uat.id.manulife.ca
portail.investissements.manuvie.ca
psnyreg1.test-qa02.net
psusreg1.test-qa.net
registration.manulife.com
repdomws.manulife.com
retirement-stg-tmp.johnhancock.com
retirement-tmp.johnhancock.com
sit2.apply.epos.manulife.co.jp
sitmlex.pci.manulife.com
sitmlin.pci.manulife.com
sponsor.uat.id.manulife.ca
stg-tmp.jhinvestments.com
stg-tmp.manulifeprivatewealth.com
stg-tmp.manuliferealestatefinance.com
stg.manulifeim.com
tauxmanuvie.ca
tauxmanuvie.com
tmp.jhinvestments.com
tmp.manulifeim.com
tmp.manulifeprivatewealth.com
travel.uat.id.manulife.ca
tripx.prd.coverme.com
tripx.prd.pourmeproteger.com
uat.api.groupbenefits.manulife.ca
uat.api.manulifesecurities.manulife.ca
uat.api.placementsmanuvie.manuvie.ca
uat.apply.epos.manulife.co.jp
uat.assurance-manuvie.ca
uat.groupbenefits.manulife.ca
uat.id.manulife.ca
uat.manulifesecurities.manulife.ca
uat.manutouch.sg
uat.placementsmanuvie.manuvie.ca
uat.portail.investissements.manuvie.ca
uat1.fasat.manulife.ca
uat2.apply.epos.manulife.co.jp
uatclient.banquemanuvie.com
uatclient.manulifebank.com
uatdoc.manulife.com
uatm.manulife.com
uatmlex.pci.manulife.com
uatmlin.pci.manulife.com
uatonline.manulifebank.ca
ucits-stg-tmp.manulifeim.com
ucits-tmp.manulifeim.com
us-retail.dev.ext.gwam.manulife.com
www-aem-stage.bank.manulife.ca
www-aem-stage.bank.manuvie.ca
www-aem-stage.cmtcp.manulife.ca
www-aem-stage.coverme.manulife.ca
www-aem-stage.coverme.manuvie.ca
www-aem-stage.groupbenefits.manulife.ca
www-aem-stage.headless.manulife.ca
www-aem-stage.manulife.ca
www-aem-stage.manuvie.ca
www-aem-stage.rr.manulife.ca
www-aem-stage.travel.manulife.ca
www-aem-stage.travel.manuvie.ca
www-aem-stage.travelb2b.manulife.ca
www-aem-stage.travelb2b.manuvie.ca
www-uat.manulife-travel.ca
www-uat.manulife-travel.com
www-uat.voyagemanuvie.ca
www-uat.voyagemanuvie.com
www.demanderuneprotection.com
www.manuliferates.ca
www.manuliferates.com
www.tauxmanuvie.ca
www.tauxmanuvie.com

Other certificates including the domain name manulife.com

(limited to 100 certificates)
mlisxivg01.manulife.com
manulife.com
nasbfepool02.mfcgd.com
mfcentral.manulife.com
api1.np.ca.manulife.com
idwicrmapd01.mlijkt01.manulife.com
manulife.com
manulife.com
aidp.manulife.com
azalvedlwrkdp10.p01eaedl.manulife.com
manulife.com
client.manulifebank.com
rps.jhancock.com
manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
hermes.manulife.com
manulife.com
clbs37841.manulife.com
internal.mesh.test.api.manulife.com
azcedlwrks003.s01caedl.manulife.com
manulife.com
cdcwvjhpwast21.americas.manulife.net
daily.manulife.com.vn
click.e.manulife.com
sft.institutional.manulife.com
johnhancock.com
manulife.com
sts.manulife.com
manulife.com
azslvedlmgtdd01.d01saedl.manulife.com
idwicrmapt21.mlijkt01.manulife.com
idwcasp.ap.manulife.com
mfcentral.manulife.com
manulife.com
view-e-ds.manulife.com
idwelems01.mlijkt01.manulife.com
druglookup-client.manulife.com
mfcentral.manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
www-aem-prod.manulife.ca
insttrip.manulife.com
manulife.com
dbpartners.manulife.com
idwinetapt01.mlijkt01.manulife.com
asiacitrix.manulife.com
arrowonramp.manulife.com
manulife.com
qitsso-uat.manulife.com
manulife.com
sf.cac.internal.mesh.dev.api.manulife.com
manulife.com
giam-qa.manulife.com
manulife.com
cconprem.manulife.com
manulife.com
manulife.com
manulife.com
idp.grsportal.ca.manulife.com
manulife.com
insanalyticsdev01.manulife.com
awsuat.manulife.com.kh
idwiqmtapp01.mlijkt01.manulife.com
johnhancock.com
manulife.com
manulife.com
myasoaibp2.ap.manulife.com
remotejp2.manulife.com
johnhancock.com
sharepoint-int.ap.manulife.com
mlifs900g01.manulife.com
nasbaccess01.manulife.com
jhappsstaging-tst.aks.manulife.com
manulife.com
manulife.com
crverifyidentity-dev.johnhancock.com
manulife.com
jpnhoapt09.japan.corp.manulife.com
client.manulifebank.com
preprod.mtls.api.manulife.com
manulife.com
idwietsisft05.mlijkt01.manulife.com
remotehk.manulife.com
azcedledges001.s01caedl.manulife.com
idwcas4tap.ap.manulife.com
manulife.com
mlixnbarplzvnaca.manulife.com
manulife.com
manulife.com
druglookup-client.manulife.com
pcf.manulife.com
proxy.auw.my.underwriting.manulife.com
manulife.com
johnhancock.com
manulife.com
financeit.devsit202201.manulife.com
tw-ssg-fw1.manulife.com
advisor.manulife.ca
azwapnwasm01.mfcgd.com
azuedldbo01.p01usedl.manulife.com
edge.prod-ext.api.manulife.com

Certificate

The complete raw certificate details for manulife.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2tBZeRYSgdobdLRRB4Xj
tj4OXscWJQuTrK2CWUbZ1FdZz52rDvfuRewuHvXm96JZiawZyRDEiMeEgPUdvOwN
x1KCkh7cKDVSbf6ZxEjiomvXt+W6mceHyW5qmyA3SD83ZKy1wQ8p66T+/wY+8Iyp
B+3c3bpsFvt7SmDAh8bS9fXg80S1LfkfKManK5t/DYaHNDiAFfP+FRFDNm+M4Ke6
6RxEMLjLXAo0pL/bFpq6X1lgsFHBVEMR3fxoAvaEaa/dyVrOVfeCizLjjGSKk/GA
EY50NMbsY7WQBYchIUmHEAdfMXtxbRT6jb83M8RpvZyJzw8quBMxokjgpvg8VEba
TQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 210842254019223288153699474766841501961
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-24 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-24 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial Corporation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'manulife.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27622691452171933168028973890746332917952594693217147193980797650661204760722480247244817174071779044981471164553441726795447163449173064149317318274344501622284054464764147205209884657669199616163537817864386592186480303487525958417714258060767966456565709352352858808684517556729269076290709372877658212595874972504651817135785273673704055050139644514283344792944071431008178337102720203715045484558962168566239064366846383691988356848637438699312767954138454839956530731686094726489521537679215969703049443700449544502760149280183136748429132189549783890174605133811504362860962563297478947255111687977172887591501
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							edafce5f189bfb53d75676c1d42a92e258b54b88
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2611 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '16049.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advisor.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agentwebsit1.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.uat.gb.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bdreg1.test-qa.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demanderuneprotection.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eznyreg1.test-qa02.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ezusreg1.test-qa.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manuliferates.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manuliferates.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifesharepoint.mfcpoc01.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulinksit1.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi-stg-tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi-tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ml-exchange.mfcpoc01.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mlex.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mlin.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobile.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mortgagecreditor.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ondex.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ondexx.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'personal.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portail.investissements.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psnyreg1.test-qa02.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psusreg1.test-qa.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'registration.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'repdomws.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirement-stg-tmp.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirement-tmp.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sit2.apply.epos.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sitmlex.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sitmlin.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sponsor.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-tmp.manulifeprivatewealth.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-tmp.manuliferealestatefinance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tauxmanuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tauxmanuvie.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.manulifeprivatewealth.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'travel.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tripx.prd.coverme.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tripx.prd.pourmeproteger.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.api.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.api.manulifesecurities.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.api.placementsmanuvie.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.apply.epos.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.assurance-manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.manulifesecurities.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.manutouch.sg'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.placementsmanuvie.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.portail.investissements.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat1.fasat.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat2.apply.epos.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatclient.banquemanuvie.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatclient.manulifebank.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatdoc.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatm.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatmlex.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatmlin.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatonline.manulifebank.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits-stg-tmp.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits-tmp.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'us-retail.dev.ext.gwam.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.bank.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.bank.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.cmtcp.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.coverme.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.coverme.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.headless.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.rr.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travel.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travel.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travelb2b.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travelb2b.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.manulife-travel.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.manulife-travel.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.voyagemanuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.voyagemanuvie.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demanderuneprotection.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manuliferates.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manuliferates.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tauxmanuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tauxmanuvie.com'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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