b04pwdd01.dev.manulifeusa.com
- Manulife Financial -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 10:f7:75:f1:8e:69:00:34:bc:c0:b2:05:4b:4c:9b:8c was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Manulife Financial
Organization:
Manulife Financial
Organization unit: Enterprise Tech and Services
Organization unit: Enterprise Tech and Services
State / Province:
Ontario
Locality: Toronto
Country: CA
Locality: Toronto
Country: CA
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 10:f7:75:f1:8e:69:00:34:bc:c0:b2:05:4b:4c:9b:8cSerial Number (int): 22552537436601359152375201695921904524
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 83:30:2f:21:2a:c0:47:47:3e:f2:af:dc:04:5d:25:34:c0:61:03:ea
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): a7:31:4e:46:47:01:dc:39:6e:27:75:e7:86:ea:85:63:32:60:d7:0e
Fingerprint (sha256): 1d:b3:da:d7:02:68:94:e0:f5:c2:af:9c:54:14:d8:b7:3b:bf:6e:d0:85:ae:c1:03:f8:b3:4e:0e:a2:08:70:f9
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate b04pwdd01.dev.manulifeusa.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for b04pwdd01.dev.manulifeusa.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
b04pwdd01.dev.manulifeusa.com
www.b04pwdd01.dev.manulifeusa.com
www.b04pwdd01.dev.manulifeusa.com
Other certificates including the domain name manulifeusa.com
(limited to 100 certificates)
stage.jherpmx2.jhancock.com
b04orad10.dev.manulifeusa.com
b04llsp01.prd.manulifeusa.com
qa.johnhancock.com
johnhancock.com
b04wvgisvisd01.dev.manulifeusa.com
andmirp01.prd.manulifeusa.com
andappm01.mod.manulifeusa.com
andfaxp01.prd.manulifeusa.com
cconprem.manulife.com
b04xprm02.mod.manulifeusa.com
johnhancock.com
cl4orad10.dev.manulifeusa.com
johnhancock.com
nasbaccess01.manulife.com
jhcontractstest.mod.manulifeusa.com
test.jherpdx3.jhancock.com
azwapnwasm01.mfcgd.com
b04fimd02.dev.manulifeusa.com
johnhancock.com
beacon.prd.manulifeusa.com
a7220-b04-lc-a.prd.manulifeusa.com
brave.prd.manulifeusa.com
azaphnerpt01a1.mfcgd.com
barcpsp04.manulife.com
www.igpinfo.com
andwvgisvrcp04.prd.manulifeusa.com
b04sdsd01.dev.manulifeusa.com
b04bkpd01.dev.manulifeusa.com
b04faxp05.prd.manulifeusa.com
jherpmx8.mod.manulifeusa.com
johnhancock.com
johnhancock.com
test.jherpdx3.jhancock.com
clbs37617.dev.manulifeusa.com
whbp30730.prd.manulifeusa.com
johnhancock.com
b04appd12.dev.manulifeusa.com
azwapnwasm01.mfcgd.com
johnhancock.com
johnhancock.com
usvmreset.prd.manulifeusa.com
azwapnwasm01.mfcgd.com
cl4oram10.mod.manulifeusa.com
johnhancock.com
azulvsasdb2m04.mod.manulifeusa.com
andmirp01.prd.manulifeusa.com
qa-siebel.mod.manulifeusa.com
johnhancock.com
test.jherpdx3.jhancock.com
b04pwdd01.dev.manulifeusa.com
test.jherpdx3.jhancock.com
andllsp01.prd.manulifeusa.com
jherpx8.prd.manulifeusa.com
andwvetsrigp01.prd.manulifeusa.com
test.jherpdx3.jhancock.com
azaphnerpt01a1.mfcgd.com
azuwvjhibeas01.mfcgd.com
qa-siebel.mod.manulifeusa.com
johnhancock.com
andrsap01.prd.manulifeusa.com
b04appd11.dev.manulifeusa.com
johnhancock.com
a7210-and-mclic-a.prd.manulifeusa.com
andwvgisvstp01.prd.manulifeusa.com
b04faxp05.prd.manulifeusa.com
jherpmx8.mod.manulifeusa.com
andsbc.manulife.com
stage.partnerlink.jhancock.com
stage.jherpmx2.jhancock.com
jherpx8.prd.manulifeusa.com
jhesb-stage2.mod.manulifeusa.com
jherpmx8.mod.manulifeusa.com
jhinsuranceanalytics.com
b04pwdd01.dev.manulifeusa.com
b04pwdd01.dev.manulifeusa.com
b04bkpd01.dev.manulifeusa.com
usvmreset.prd.manulifeusa.com
azwphnwast01.mfcgd.com
johnhancock.com
bravestage.mod.manulifeusa.com
andorap10.prd.manulifeusa.com
qa-siebel.mod.manulifeusa.com
dis.dev.manulifeusa.com
andorap04.prd.manulifeusa.com
johnhancock.com
a7220-and-lc-a.prd.manulifeusa.com
azaphnerpt01a1.mfcgd.com
b04pwdd01.dev.manulifeusa.com
stage.jherpmx1.jhancock.com
andsdsm01.mod.manulifeusa.com
prod-siebel.manulifeusa.com
qa-siebel.mod.manulifeusa.com
johnhancock.com
cl4oram10.mod.manulifeusa.com
a7220-and-lc-dmz.prd.manulifeusa.com
stage.inforceillustrationportal.com
b04pwdd01.dev.manulifeusa.com
b04amxd02.dev.manulifeusa.com
johnhancock.com
b04orad10.dev.manulifeusa.com
b04llsp01.prd.manulifeusa.com
qa.johnhancock.com
johnhancock.com
b04wvgisvisd01.dev.manulifeusa.com
andmirp01.prd.manulifeusa.com
andappm01.mod.manulifeusa.com
andfaxp01.prd.manulifeusa.com
cconprem.manulife.com
b04xprm02.mod.manulifeusa.com
johnhancock.com
cl4orad10.dev.manulifeusa.com
johnhancock.com
nasbaccess01.manulife.com
jhcontractstest.mod.manulifeusa.com
test.jherpdx3.jhancock.com
azwapnwasm01.mfcgd.com
b04fimd02.dev.manulifeusa.com
johnhancock.com
beacon.prd.manulifeusa.com
a7220-b04-lc-a.prd.manulifeusa.com
brave.prd.manulifeusa.com
azaphnerpt01a1.mfcgd.com
barcpsp04.manulife.com
www.igpinfo.com
andwvgisvrcp04.prd.manulifeusa.com
b04sdsd01.dev.manulifeusa.com
b04bkpd01.dev.manulifeusa.com
b04faxp05.prd.manulifeusa.com
jherpmx8.mod.manulifeusa.com
johnhancock.com
johnhancock.com
test.jherpdx3.jhancock.com
clbs37617.dev.manulifeusa.com
whbp30730.prd.manulifeusa.com
johnhancock.com
b04appd12.dev.manulifeusa.com
azwapnwasm01.mfcgd.com
johnhancock.com
johnhancock.com
usvmreset.prd.manulifeusa.com
azwapnwasm01.mfcgd.com
cl4oram10.mod.manulifeusa.com
johnhancock.com
azulvsasdb2m04.mod.manulifeusa.com
andmirp01.prd.manulifeusa.com
qa-siebel.mod.manulifeusa.com
johnhancock.com
test.jherpdx3.jhancock.com
b04pwdd01.dev.manulifeusa.com
test.jherpdx3.jhancock.com
andllsp01.prd.manulifeusa.com
jherpx8.prd.manulifeusa.com
andwvetsrigp01.prd.manulifeusa.com
test.jherpdx3.jhancock.com
azaphnerpt01a1.mfcgd.com
azuwvjhibeas01.mfcgd.com
qa-siebel.mod.manulifeusa.com
johnhancock.com
andrsap01.prd.manulifeusa.com
b04appd11.dev.manulifeusa.com
johnhancock.com
a7210-and-mclic-a.prd.manulifeusa.com
andwvgisvstp01.prd.manulifeusa.com
b04faxp05.prd.manulifeusa.com
jherpmx8.mod.manulifeusa.com
andsbc.manulife.com
stage.partnerlink.jhancock.com
stage.jherpmx2.jhancock.com
jherpx8.prd.manulifeusa.com
jhesb-stage2.mod.manulifeusa.com
jherpmx8.mod.manulifeusa.com
jhinsuranceanalytics.com
b04pwdd01.dev.manulifeusa.com
b04pwdd01.dev.manulifeusa.com
b04bkpd01.dev.manulifeusa.com
usvmreset.prd.manulifeusa.com
azwphnwast01.mfcgd.com
johnhancock.com
bravestage.mod.manulifeusa.com
andorap10.prd.manulifeusa.com
qa-siebel.mod.manulifeusa.com
dis.dev.manulifeusa.com
andorap04.prd.manulifeusa.com
johnhancock.com
a7220-and-lc-a.prd.manulifeusa.com
azaphnerpt01a1.mfcgd.com
b04pwdd01.dev.manulifeusa.com
stage.jherpmx1.jhancock.com
andsdsm01.mod.manulifeusa.com
prod-siebel.manulifeusa.com
qa-siebel.mod.manulifeusa.com
johnhancock.com
cl4oram10.mod.manulifeusa.com
a7220-and-lc-dmz.prd.manulifeusa.com
stage.inforceillustrationportal.com
b04pwdd01.dev.manulifeusa.com
b04amxd02.dev.manulifeusa.com
johnhancock.com
Certificate
The complete raw certificate details for b04pwdd01.dev.manulifeusa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHRDCCBiygAwIBAgIQEPd18Y5pADS8wLIFS0ybjDANBgkqhkiG9w0BAQsFADCB lTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMT0wOwYDVQQD EzRTZWN0aWdvIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTIxMDgwMzAwMDAwMFoXDTIyMDgwMzIzNTk1OVowgZ0xCzAJBgNV BAYTAkNBMRAwDgYDVQQIEwdPbnRhcmlvMRAwDgYDVQQHEwdUb3JvbnRvMRswGQYD VQQKExJNYW51bGlmZSBGaW5hbmNpYWwxJTAjBgNVBAsTHEVudGVycHJpc2UgVGVj aCBhbmQgU2VydmljZXMxJjAkBgNVBAMTHWIwNHB3ZGQwMS5kZXYubWFudWxpZmV1 c2EuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYUljg4UMLL7 1QZLNHgYW0gXom8si/fBjd2BvHnquis312znP1gDMl//Fireu9pC3rus+VQCePar AoKbFJ3G2OWLH0R0OPPPiwtuHq8FqFtpxpQvj1eyk2m86Xi4K7aAyO/IRfy/xXqr mjWb7Z3ukfqn8tixhzwqcnSMNLx7AAqRbsMwNZk1TkI2qt/O8ycu6VtgyUcg7o5A Pt8BefCT2EVwkAo7oeGwP0D4VxPUYmN5fmFuW5ow5AoaQD1GoX5usJEwv4+ne0wy PvfjCVNXUwjLBA6G40EPVYdEckaIY85kg7zXJwlbL/UG/baQccgrWP7TJ0UhjaSi /dcRIrSK2wIDAQABo4IDhDCCA4AwHwYDVR0jBBgwFoAUF9nWJSdn+THCSUPZMDZE jGypT+swHQYDVR0OBBYEFIMwLyEqwEdHPvKv3ARdJTTAYQPqMA4GA1UdDwEB/wQE AwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjBKBgNVHSAEQzBBMDUGDCsGAQQBsjEBAgEDBDAlMCMGCCsGAQUFBwIBFhdodHRw czovL3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgIwWgYDVR0fBFMwUTBPoE2gS4ZJ aHR0cDovL2NybC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFs aWRhdGlvblNlY3VyZVNlcnZlckNBLmNybDCBigYIKwYBBQUHAQEEfjB8MFUGCCsG AQUFBzAChklodHRwOi8vY3J0LnNlY3RpZ28uY29tL1NlY3RpZ29SU0FPcmdhbml6 YXRpb25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3J0MCMGCCsGAQUFBzABhhdo dHRwOi8vb2NzcC5zZWN0aWdvLmNvbTCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFn AHYARqVV63X6kSAwtaKJafTzfREsQXS+/Um4havy/HD+bUcAAAF7DYVDZgAABAMA RzBFAiEA0auqMSWu9CJjEsbKPs7OvyY7jqmasV1bhlAF4hxACQgCIHSuusSdHJ1x xiJSw8fAMxv98Ee1e4cxljfVwfHql791AHYAQcjKsd8iRkoQxqE6CUKHXk4xixsD 6+tLx2jwkGKWBvYAAAF7DYVDJQAABAMARzBFAiA1NGdU0+Jfst4+uZC5sCgCTLcz 1UAGtzHQm+xEwOF6VwIhAL8ZfAR2lJYC2X0jGqvicyx4CWpBW8ntpjlQzbAC+Zn8 AHUAKXm+8J45OSHwVnOfY6V35b5XfZxgCvj5TV0mXCVdx4QAAAF7DYVDAAAABAMA RjBEAiA6xVZEkUfY9xfho59Be3Mf6TDBCTKuyDDsV9fnNDzxhQIgcJtI/ztF9hQg qjtJCF6bN9wQlkumbY0IQvmiNkAXTp0wSwYDVR0RBEQwQoIdYjA0cHdkZDAxLmRl di5tYW51bGlmZXVzYS5jb22CIXd3dy5iMDRwd2RkMDEuZGV2Lm1hbnVsaWZldXNh LmNvbTANBgkqhkiG9w0BAQsFAAOCAQEAUly4QEsAVZtgVm+SJ/gvB3QuxSCn5gAB OS3KhTl09yOLTXuUVon/9aFb9/87sz5KiAc8mXxyXgrrlxJnXz9axYHWKh/WtlBe w2XGqfinnBgZivXqJZQ/melUalA9egXEzRoFYiUFj6WgZkyGfyQK2kpLabVEDJid pc040IrSbVeHtjcCNgD8O9b8hfYydEdOaErwa/dF3KP9PF8mSNAJZCNnPABryuBP Cn2XrZNCRFj0RfGsHct4VazegjhBn2tJLR3Vu8RxlaC1t5O7coRTnsHDAFNFBY5P x6yoAdXd5CUVIxnz2ToLd1giZl1HUynI0JeD5vSHX/eT2BOuydi0vw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYUljg4UMLL71QZLNHgY W0gXom8si/fBjd2BvHnquis312znP1gDMl//Fireu9pC3rus+VQCeParAoKbFJ3G 2OWLH0R0OPPPiwtuHq8FqFtpxpQvj1eyk2m86Xi4K7aAyO/IRfy/xXqrmjWb7Z3u kfqn8tixhzwqcnSMNLx7AAqRbsMwNZk1TkI2qt/O8ycu6VtgyUcg7o5APt8BefCT 2EVwkAo7oeGwP0D4VxPUYmN5fmFuW5ow5AoaQD1GoX5usJEwv4+ne0wyPvfjCVNX UwjLBA6G40EPVYdEckaIY85kg7zXJwlbL/UG/baQccgrWP7TJ0UhjaSi/dcRIrSK 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 22552537436601359152375201695921904524 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Toronto' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Enterprise Tech and Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'b04pwdd01.dev.manulifeusa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20390024183805110189899747250494018604982131993535510283343777091771693586106272157196918228975813493864117295246419458197492015526255479177818632656806846285737034500936731100830231152051292265953500180369218499551119100397629554927189313336836843801901646700597494606258167392874649491897758381634867140649595398385842212188030958078116748389109756639124216836365740248014853953772857362149312518603718523712658871222235862035501187080925828521287485294497278527789394914303605353027538368024158971603053770977078207762419105461436485311473472939898916176338758258524108403367665219667097419093211596655650414037723 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 83302f212ac047473ef2afdc045d2534c06103ea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b04pwdd01.dev.manulifeusa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.b04pwdd01.dev.manulifeusa.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00525cb8404b00559b60566f9227f82f07742ec520a7e60001392dca853974f7238b4d7b945689fff5a15bf7ff3bb33e4a88073c997c725e0aeb9712675f3f5ac581d62a1fd6b6505ec365c6a9f8a79c18198af5ea25943f99e9546a503d7a05c4cd1a056225058fa5a0664c867f240ada4a4b69b5440c989da5cd38d08ad26d5787b637023600fc3bd6fc85f63274474e684af06bf745dca3fd3c5f2648d0096423673c006bcae04f0a7d97ad93424458f445f1ac1dcb7855acde8238419f6b492d1dd5bbc47195a0b5b793bb7284539ec1c3005345058e4fc7aca801d5dde425152319f3d93a0b775822665d475329c8d09783e6f4875ff793d813aec9d8b4bf