daily.manulife.com.vn

- Manulife Financial -

Issued by Sectigo RSA Organization Validation Secure Server CA

About this certificate

This digital certificate with serial number 98:9a:af:6e:f1:a5:02:4c:b9:67:06:28:a9:9b:76:8b was issued on by Sectigo Limited.

With 25 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Manulife Financial

Organization: Manulife Financial
State / Province: Ontario
Country: CA

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate will expire on

Certificate Details

Serial Number (hex): 98:9a:af:6e:f1:a5:02:4c:b9:67:06:28:a9:9b:76:8b
Serial Number (int): 202845827287085462734799439965168825995
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: bc:ef:72:78:c5:60:ed:31:b8:f5:f1:3f:14:49:aa:60:12:87:ad:6a
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb

Fingerprint (sha1): f4:fc:df:33:5f:58:8f:f0:b0:39:52:c8:63:ca:03:fe:6e:62:62:ac
Fingerprint (sha256): 16:65:42:75:91:f1:34:b3:56:21:31:03:6c:bf:b4:17:f2:79:a4:76:0c:a6:f1:89:4b:eb:e2:87:50:e2:08:7e

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com
CRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl

Check the revocation status for certificate daily.manulife.com.vn

25

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for daily.manulife.com.vn

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

daily.manulife.com.vn
azwappvisawsz01.mfcgd.com
azwappvisawsz02.mfcgd.com
azwappvisawsz03.mfcgd.com
azwappvisawsz04.mfcgd.com
azwappvisawsz05.mfcgd.com
azwappvisawsz06.mfcgd.com
azwappvisawsz07.mfcgd.com
azwappvisawsz08.mfcgd.com
azwappvisawsz09.mfcgd.com
azwappvisawsz10.mfcgd.com
azwappvisawsz11.mfcgd.com
azwappvisawsz12.mfcgd.com
azwappvisawsz13.mfcgd.com
azwappvisawsz14.mfcgd.com
azwappvisawsz15.mfcgd.com
azwappvisawsz16.mfcgd.com
azwappvisawsz17.mfcgd.com
azwappvisawsz18.mfcgd.com
azwappvisawsz19.mfcgd.com
azwappvisawsz20.mfcgd.com
khachhang.manulife.com.vn
vnproposalservice.ap.manulife.com
www.daily.manulife.com.vn
www.khachhang.manulife.com.vn

Other certificates including the domain name manulife.com.vn

(limited to 100 certificates)
manulife.com
manulife.com
hopdongcuatoi-uat.manulife.com.vn
manulife.com
dongphi-uat.manulife.com.vn
manulife.com
daily.manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
vnwiasp.manulife.com.vn
manulife.com
manulife.com
manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
daily.manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
shop.manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
hopdongcuatoi.manulife.com.vn
manulife.com
daily.manulife.com.vn
manulife.com
insmart.manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
e.manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
dichvu.manulife.com.vn
manulife.com
manulife.com
uat-eclaim.manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
tvv24.manulife.com.vn
manulife.com
manulife.com.vn
vtb.manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
dongphi-uat.manulife.com.vn
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com

Certificate

The complete raw certificate details for daily.manulife.com.vn in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQOuuUPOEUMtjMtPlm01
T8krWxj/2u7mPk7ecQ7lDeYbshvS+CwlZpNuLsCiM9FTshfVv3zGiuwhRNspDBF+
FrM+8OSM2lA/X/cBMJXArNYxpbWWLK5Hi2Hi++IUgEYrMSFLOw+y3OYtRFtNFYcb
31SXFp+z8K7xpLEMrR8ip/JOpjVMTukbPsYol6oD0qYA0Sn8jL0zzXA7RaIU438c
2cINWOfHj0thTpThIrYE29KngMb6ApZt0zLnv1TaPjweYtXGltsG2iv/IOlyxR8n
riis5wivyPhJxu2GJ6GjVYn5AihGfk78BNkjIFiULPyGGG6C1U+cNzO+V7M3zmIw
9QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 202845827287085462734799439965168825995
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-22 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-21 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'daily.manulife.com.vn'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25375715213717134846358846625577380183227057276929654461803513101088857606493831201399594299697567614568144502560802197429013772206485891952192055546968145412642898374831621286392400233621035368997580747071416583493254554008184794628952477823269381308300140195438465123329198786017011406155087415873720654743308344575657169163258337006171960908879313710130412899157516568054189734410886925995135455077840501051880484653316176716131084590013661573104061242649760053577761565481475420292550737609798706796683362568575045568288845957494224185456698526981982683953414170934164500295208842724648929102879421890462128156917
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bcef7278c560ed31b8f5f13f1449aa601287ad6a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (687 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daily.manulife.com.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz01.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz02.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz03.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz04.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz05.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz06.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz07.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz08.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz09.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz10.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz11.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz12.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz13.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz14.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz15.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz16.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz17.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz18.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz19.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azwappvisawsz20.mfcgd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'khachhang.manulife.com.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vnproposalservice.ap.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.daily.manulife.com.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.khachhang.manulife.com.vn'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		003a8739e5d35fc105a98d1b8277385429dc8694ffb798fb715da3cd33169c1dfbc4bc4b8d9db4c412ffa111e25db34032cfe1c7bf7b43f7c3f8e12e921215df9db81fb75f8281c3405941ee6374e4f9cacf7383fb40b5e82cb5d52de323cc2d70d131179879186b3eeaa386bd9b4e5ef8a5926fdbbddc68c2fe2f32e334b4b7ecad88cc10694e229f01a92b299b02e6ea656e5a6c1d8fa1d41e224435987b8aaf53e907190273e727297b9140846b6c9e7f0a39a4b81b635d7b60b46e4620c31bdc8e112555286822da4a7f3ad854181a3542746c0022018f263a660c334e227f0323257eb617555457fd327c1c94fe6dc29fee0897515f9198040f2ddd20653f