manulife.com

- Manulife Financial Corporation -

Issued by Sectigo RSA Organization Validation Secure Server CA

About this certificate

This digital certificate with serial number 18:a2:2e:4f:94:bc:8f:b2:53:dd:35:6c:64:67:0a:e3 was issued on by Sectigo Limited.

With 99 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Manulife Financial Corporation

Organization: Manulife Financial Corporation
State / Province: Ontario
Country: CA

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate will expire on

Certificate Details

Serial Number (hex): 18:a2:2e:4f:94:bc:8f:b2:53:dd:35:6c:64:67:0a:e3
Serial Number (int): 32743563285818967724852642265929550563
Serial Number lenght: 125 bits, 16 octets

SubjectKeyId: 55:62:f4:b2:05:fb:5e:31:04:24:06:1f:6b:1e:29:09:9f:ec:84:43
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb

Fingerprint (sha1): 02:d0:68:15:3f:48:80:27:f5:7b:a2:8f:d6:85:6a:b4:1b:80:09:ca
Fingerprint (sha256): 5c:8e:a8:9e:3f:1d:ce:c6:bb:b0:0f:3e:07:f4:70:4d:9a:64:e1:f5:00:34:74:99:d5:29:e6:cd:6c:2f:fc:66

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com
CRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl

Check the revocation status for certificate manulife.com

99

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for manulife.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

manulife.com
16049.manulife.com
advisor.uat.id.manulife.ca
agentwebsit1.manulife.co.jp
ak-edge.preprod-ext.api.manulife.com
ak-edge.prod-ext.api.manulife.com
api.groupbenefits.manulife.ca
api.sit.gb.manulife.com
api.uat.gb.manulife.com
bdreg1.test-qa.net
demanderuneprotection.com
edge.microgateway-ext.dev.cac.microgateway.aks.manulife.com
edge.microgateway-ext.dev.sea.microgateway.aks.manulife.com
edge.microgateway-ext.test.cac.microgateway.aks.manulife.com
edge.microgateway-ext.test.sea.microgateway.aks.manulife.com
eznyreg1.test-qa02.net
ezusreg1.test-qa.net
groupbenefits.manulife.ca
manuliferates.ca
manuliferates.com
manulinksit1.manulife.co.jp
mi-stg-tmp.jhinvestments.com
mi-tmp.jhinvestments.com
mlex.pci.manulife.com
mlin.pci.manulife.com
mobile.manulife.ca
mortgagecreditor.uat.id.manulife.ca
ondex.manulife.com
ondexx.manulife.com
personal.uat.id.manulife.ca
portail.investissements.manuvie.ca
psnyreg1.test-qa02.net
psusreg1.test-qa.net
qadistdom.manulife.com
registration.manulife.com
repdomws-uat.manulife.com
retirement-stg-tmp.johnhancock.com
retirement-tmp.johnhancock.com
sit2.apply.epos.manulife.co.jp
sitmlex.pci.manulife.com
sitmlin.pci.manulife.com
sponsor.uat.id.manulife.ca
stg-tmp.jhinvestments.com
stg-tmp.manulifeprivatewealth.com
stg-tmp.manuliferealestatefinance.com
stg.manulifeim.com
tauxmanuvie.ca
tauxmanuvie.com
tmp.jhinvestments.com
tmp.manulifeim.com
tmp.manulifeprivatewealth.com
travel.uat.id.manulife.ca
tripx.prd.coverme.com
tripx.prd.pourmeproteger.com
tripx.uat.pourmeproteger.com
uat.api.groupbenefits.manulife.ca
uat.api.manulifesecurities.manulife.ca
uat.api.placementsmanuvie.manuvie.ca
uat.apply.epos.manulife.co.jp
uat.assurance-manuvie.ca
uat.groupbenefits.manulife.ca
uat.id.manulife.ca
uat.manulifesecurities.manulife.ca
uat.manutouch.sg
uat.placementsmanuvie.manuvie.ca
uat.portail.investissements.manuvie.ca
uat2.apply.epos.manulife.co.jp
uatclient.banquemanuvie.com
uatclient.manulifebank.com
uatdoc.manulife.com
uatm.manulife.com
uatmlex.pci.manulife.com
uatmlin.pci.manulife.com
uatonline.manulifebank.ca
ucits-stg-tmp.manulifeim.com
ucits-tmp.manulifeim.com
www-aem-stage.bank.manulife.ca
www-aem-stage.bank.manuvie.ca
www-aem-stage.cmtcp.manulife.ca
www-aem-stage.coverme.manulife.ca
www-aem-stage.coverme.manuvie.ca
www-aem-stage.groupbenefits.manulife.ca
www-aem-stage.headless.manulife.ca
www-aem-stage.manulife.ca
www-aem-stage.manuvie.ca
www-aem-stage.rr.manulife.ca
www-aem-stage.travel.manulife.ca
www-aem-stage.travel.manuvie.ca
www-aem-stage.travelb2b.manulife.ca
www-aem-stage.travelb2b.manuvie.ca
www-uat.manulife-travel.ca
www-uat.manulife-travel.com
www-uat.voyagemanuvie.ca
www-uat.voyagemanuvie.com
www.demanderuneprotection.com
www.manuliferates.ca
www.manuliferates.com
www.tauxmanuvie.ca
www.tauxmanuvie.com

Other certificates including the domain name manulife.com

(limited to 100 certificates)
mlisxivg01.manulife.com
manulife.com
nasbfepool02.mfcgd.com
mfcentral.manulife.com
api1.np.ca.manulife.com
idwicrmapd01.mlijkt01.manulife.com
manulife.com
manulife.com
aidp.manulife.com
azalvedlwrkdp10.p01eaedl.manulife.com
manulife.com
client.manulifebank.com
rps.jhancock.com
manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
hermes.manulife.com
manulife.com
clbs37841.manulife.com
internal.mesh.test.api.manulife.com
azcedlwrks003.s01caedl.manulife.com
manulife.com
cdcwvjhpwast21.americas.manulife.net
daily.manulife.com.vn
click.e.manulife.com
sft.institutional.manulife.com
johnhancock.com
manulife.com
sts.manulife.com
manulife.com
azslvedlmgtdd01.d01saedl.manulife.com
idwicrmapt21.mlijkt01.manulife.com
idwcasp.ap.manulife.com
mfcentral.manulife.com
manulife.com
view-e-ds.manulife.com
idwelems01.mlijkt01.manulife.com
druglookup-client.manulife.com
mfcentral.manulife.com
sharepoint-externalpartner.uat.ap.manulife.com
www-aem-prod.manulife.ca
insttrip.manulife.com
manulife.com
dbpartners.manulife.com
idwinetapt01.mlijkt01.manulife.com
asiacitrix.manulife.com
arrowonramp.manulife.com
manulife.com
qitsso-uat.manulife.com
manulife.com
sf.cac.internal.mesh.dev.api.manulife.com
manulife.com
giam-qa.manulife.com
manulife.com
cconprem.manulife.com
manulife.com
manulife.com
manulife.com
idp.grsportal.ca.manulife.com
manulife.com
insanalyticsdev01.manulife.com
awsuat.manulife.com.kh
idwiqmtapp01.mlijkt01.manulife.com
johnhancock.com
manulife.com
manulife.com
myasoaibp2.ap.manulife.com
remotejp2.manulife.com
johnhancock.com
sharepoint-int.ap.manulife.com
mlifs900g01.manulife.com
nasbaccess01.manulife.com
jhappsstaging-tst.aks.manulife.com
manulife.com
manulife.com
crverifyidentity-dev.johnhancock.com
manulife.com
jpnhoapt09.japan.corp.manulife.com
client.manulifebank.com
preprod.mtls.api.manulife.com
manulife.com
idwietsisft05.mlijkt01.manulife.com
remotehk.manulife.com
azcedledges001.s01caedl.manulife.com
idwcas4tap.ap.manulife.com
manulife.com
mlixnbarplzvnaca.manulife.com
manulife.com
manulife.com
druglookup-client.manulife.com
pcf.manulife.com
proxy.auw.my.underwriting.manulife.com
manulife.com
johnhancock.com
manulife.com
financeit.devsit202201.manulife.com
tw-ssg-fw1.manulife.com
advisor.manulife.ca
azwapnwasm01.mfcgd.com
azuedldbo01.p01usedl.manulife.com
edge.prod-ext.api.manulife.com

Certificate

The complete raw certificate details for manulife.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhQO0wgDtBEGC3BGGhC2
orqjNHH3fhf32nrV05nWtEnM/L0HkDMV76ueTsgSrA1uKZy6iFVxV+DQdoeuQGb9
vmDs/djeXXTPAUd2w8gB1QW65lIxNegSeH9QWV0GcdXltuoRTecGeVePBy7G6aik
uTXIBCT7Q3p8JXEYduFrXFDhaLsnNPFulA2WDNyi0bJdzMhXV4hUCMaojdMD9CJy
rKCcQIzbvXNT01vcdCWNcPlh7YylbX/mNdn0jZC+rTvnYP/57CuThyz9PJW5xHqL
7tT7TVp4t53jS3MvQqR+hCGn9IqhvIZx9w4ShqoOSnAHFLFX3KcSyjC8HqFzFyk4
CQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 32743563285818967724852642265929550563
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-02 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-01 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial Corporation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'manulife.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25510028526012364056249260465268235329606292124930822978745847205723772466525113311312136655149348684250880515962634306785495412711901287327555985564195580599829231100234469673285938205747554503085627157557743686858117240907636961098407573537257996778691493694533622788825925590032704344496665147745514495499366029763385222739669261751154977203001750484102649988947417545734970269813642548269744482795783779206220671283476072921774834968706505019842065443050420086771106343595846939431853429198766612318861798194369815338054998926713127135825840649389861749812585106862190475853116192822021385631096725580457416669193
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							5562f4b205fb5e310424061f6b1e29099fec8443
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2893 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '16049.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advisor.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agentwebsit1.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ak-edge.preprod-ext.api.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ak-edge.prod-ext.api.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.sit.gb.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.uat.gb.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bdreg1.test-qa.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demanderuneprotection.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edge.microgateway-ext.dev.cac.microgateway.aks.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edge.microgateway-ext.dev.sea.microgateway.aks.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edge.microgateway-ext.test.cac.microgateway.aks.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edge.microgateway-ext.test.sea.microgateway.aks.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eznyreg1.test-qa02.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ezusreg1.test-qa.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manuliferates.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manuliferates.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulinksit1.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi-stg-tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi-tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mlex.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mlin.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobile.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mortgagecreditor.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ondex.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ondexx.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'personal.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portail.investissements.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psnyreg1.test-qa02.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psusreg1.test-qa.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qadistdom.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'registration.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'repdomws-uat.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirement-stg-tmp.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirement-tmp.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sit2.apply.epos.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sitmlex.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sitmlin.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sponsor.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-tmp.manulifeprivatewealth.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-tmp.manuliferealestatefinance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tauxmanuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tauxmanuvie.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.manulifeprivatewealth.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'travel.uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tripx.prd.coverme.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tripx.prd.pourmeproteger.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tripx.uat.pourmeproteger.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.api.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.api.manulifesecurities.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.api.placementsmanuvie.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.apply.epos.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.assurance-manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.id.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.manulifesecurities.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.manutouch.sg'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.placementsmanuvie.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.portail.investissements.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat2.apply.epos.manulife.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatclient.banquemanuvie.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatclient.manulifebank.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatdoc.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatm.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatmlex.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatmlin.pci.manulife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatonline.manulifebank.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits-stg-tmp.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits-tmp.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.bank.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.bank.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.cmtcp.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.coverme.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.coverme.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.groupbenefits.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.headless.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.rr.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travel.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travel.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travelb2b.manulife.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-aem-stage.travelb2b.manuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.manulife-travel.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.manulife-travel.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.voyagemanuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-uat.voyagemanuvie.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demanderuneprotection.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manuliferates.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manuliferates.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tauxmanuvie.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tauxmanuvie.com'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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