client.manulifebank.com
- Manulife Financial -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 4d:e6:0f:c2:a6:63:cc:74:45:b4:93:0b:ee:b3:80:5a was issued on by Sectigo Limited.
With 27 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Manulife Financial
Organization:
Manulife Financial
Organization unit: Enterprise Tech and Services
Organization unit: Enterprise Tech and Services
State / Province:
Ontario
Country: CA
Country: CA
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 4d:e6:0f:c2:a6:63:cc:74:45:b4:93:0b:ee:b3:80:5aSerial Number (int): 103545103610804275904585758972027568218
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 73:da:3d:ce:43:92:7e:9e:fd:72:c9:f1:88:0a:a3:20:e4:d3:42:bf
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): c5:1b:68:db:a2:16:f1:25:1c:24:b2:8e:fd:52:fa:44:f0:b5:34:76
Fingerprint (sha256): 5f:08:b7:52:28:80:fd:3d:b3:4a:dc:19:dd:4b:33:9c:62:fe:b5:2f:0a:93:35:43:cc:68:9c:5a:b8:4e:24:ea
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate client.manulifebank.com
27
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for client.manulifebank.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
client.manulifebank.com
*.banquemanuvie.com
*.manulifebank.com
3449.client.manulifebank.com
banquemanuvie.com
client.banquemanuvie.com
manulifebank.com
online.banquemanuvie.ca
online.banquemanuvie.com
online.manulifebank.ca
online.manulifebank.com
prd-banklink.manulife.com
uat-banklink.manulife.com
uatclient.banquemanuvie.com
uatclient.manulifebank.com
uatonline.banquemanuvie.ca
uatonline.banquemanuvie.com
uatonline.manulifebank.ca
uatonline.manulifebank.com
www.online.banquemanuvie.ca
www.online.banquemanuvie.com
www.online.manulifebank.ca
www.online.manulifebank.com
www.uatonline.banquemanuvie.ca
www.uatonline.banquemanuvie.com
www.uatonline.manulifebank.ca
www.uatonline.manulifebank.com
*.banquemanuvie.com
*.manulifebank.com
3449.client.manulifebank.com
banquemanuvie.com
client.banquemanuvie.com
manulifebank.com
online.banquemanuvie.ca
online.banquemanuvie.com
online.manulifebank.ca
online.manulifebank.com
prd-banklink.manulife.com
uat-banklink.manulife.com
uatclient.banquemanuvie.com
uatclient.manulifebank.com
uatonline.banquemanuvie.ca
uatonline.banquemanuvie.com
uatonline.manulifebank.ca
uatonline.manulifebank.com
www.online.banquemanuvie.ca
www.online.banquemanuvie.com
www.online.manulifebank.ca
www.online.manulifebank.com
www.uatonline.banquemanuvie.ca
www.uatonline.banquemanuvie.com
www.uatonline.manulifebank.ca
www.uatonline.manulifebank.com
Other certificates including the domain name manulifebank.com
(limited to 100 certificates)
client.manulifebank.com
manulifebank.com
test.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulifebank.com
manulife.com
manulife.com
manulife.com
test.manulifebank.com
manulifebank.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
test.manulifebank.com
manulife.com
client.manulifebank.com
epic.manulifebank.com
manulife.com
uatpartnerservices.manulifebank.com
manulife.com
manulife.com
manulife.com
manulifebank.com
*.manulifebank.com
manulife.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
client.manulifebank.com
manulife.com
manulifebank.com
manulife.com
epic.manulifebank.com
manulife.com
manulifebank.com
manulife.com
manulife.com
manulifebank.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
client.manulifebank.com
client.manulifebank.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulifebank.com
manulife.com
manulife.com
manulife.com
test.manulifebank.com
client.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
manulifebank.com
test.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulifebank.com
manulife.com
manulife.com
manulife.com
test.manulifebank.com
manulifebank.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
test.manulifebank.com
manulife.com
client.manulifebank.com
epic.manulifebank.com
manulife.com
uatpartnerservices.manulifebank.com
manulife.com
manulife.com
manulife.com
manulifebank.com
*.manulifebank.com
manulife.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
client.manulifebank.com
manulife.com
manulifebank.com
manulife.com
epic.manulifebank.com
manulife.com
manulifebank.com
manulife.com
manulife.com
manulifebank.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
client.manulifebank.com
client.manulifebank.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulifebank.com
manulife.com
manulife.com
manulife.com
test.manulifebank.com
client.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
client.manulifebank.com
manulife.com
manulife.com
manulife.com
Certificate
The complete raw certificate details for client.manulifebank.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIWjCCB0KgAwIBAgIQTeYPwqZjzHRFtJML7rOAWjANBgkqhkiG9w0BAQsFADCB lTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMT0wOwYDVQQD EzRTZWN0aWdvIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTIxMTAwNjAwMDAwMFoXDTIyMTAwNjIzNTk1OVowgYUxCzAJBgNV BAYTAkNBMRAwDgYDVQQIEwdPbnRhcmlvMRswGQYDVQQKExJNYW51bGlmZSBGaW5h bmNpYWwxJTAjBgNVBAsTHEVudGVycHJpc2UgVGVjaCBhbmQgU2VydmljZXMxIDAe BgNVBAMTF2NsaWVudC5tYW51bGlmZWJhbmsuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAwWFbpAt1YEVfDMwRi5JZAFSj7T+/OFKhq7XtGFSFdZ3o b7fuShfRhTAoaznfiI5YbCjapit9KkQMfGpuMWyMLraEWVVkaTDk/tvkx8mJyoAL 7t+cN/pawaeYHsg34t3RT80OZKIPCaR1VLD4uBfxma+47rFjMZOP8BMvM291jUsG +R4GAzXw2C5yENx/ca/GrehCX7r0bxEw5HXFOr1yT+pKVt5pKd3dfYDDaG5ex3CN m/yxr73XnYPsqVyhUi29h7v/XA6hNj1hsPBXGjyXChjKUZYP12s/wNyKvEJj5Xi8 WzP7zgrLHwQTLSCVVhLOhejUpqBdzkPcjWhycVNUSwIDAQABo4IEsjCCBK4wHwYD VR0jBBgwFoAUF9nWJSdn+THCSUPZMDZEjGypT+swHQYDVR0OBBYEFHPaPc5Dkn6e /XLJ8YgKoyDk00K/MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBKBgNVHSAEQzBBMDUGDCsGAQQBsjEB AgEDBDAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29tL0NQUzAIBgZn gQwBAgIwWgYDVR0fBFMwUTBPoE2gS4ZJaHR0cDovL2NybC5zZWN0aWdvLmNvbS9T ZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNy bDCBigYIKwYBBQUHAQEEfjB8MFUGCCsGAQUFBzAChklodHRwOi8vY3J0LnNlY3Rp Z28uY29tL1NlY3RpZ29SU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2Vy dmVyQ0EuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTAT BgorBgEEAdZ5AgQDAQH/BAIFADCCAuMGA1UdEQSCAtowggLWghdjbGllbnQubWFu dWxpZmViYW5rLmNvbYITKi5iYW5xdWVtYW51dmllLmNvbYISKi5tYW51bGlmZWJh bmsuY29tghwzNDQ5LmNsaWVudC5tYW51bGlmZWJhbmsuY29tghFiYW5xdWVtYW51 dmllLmNvbYIYY2xpZW50LmJhbnF1ZW1hbnV2aWUuY29tghBtYW51bGlmZWJhbmsu Y29tghdvbmxpbmUuYmFucXVlbWFudXZpZS5jYYIYb25saW5lLmJhbnF1ZW1hbnV2 aWUuY29tghZvbmxpbmUubWFudWxpZmViYW5rLmNhghdvbmxpbmUubWFudWxpZmVi YW5rLmNvbYIZcHJkLWJhbmtsaW5rLm1hbnVsaWZlLmNvbYIZdWF0LWJhbmtsaW5r Lm1hbnVsaWZlLmNvbYIbdWF0Y2xpZW50LmJhbnF1ZW1hbnV2aWUuY29tghp1YXRj bGllbnQubWFudWxpZmViYW5rLmNvbYIadWF0b25saW5lLmJhbnF1ZW1hbnV2aWUu Y2GCG3VhdG9ubGluZS5iYW5xdWVtYW51dmllLmNvbYIZdWF0b25saW5lLm1hbnVs aWZlYmFuay5jYYIadWF0b25saW5lLm1hbnVsaWZlYmFuay5jb22CG3d3dy5vbmxp bmUuYmFucXVlbWFudXZpZS5jYYIcd3d3Lm9ubGluZS5iYW5xdWVtYW51dmllLmNv bYIad3d3Lm9ubGluZS5tYW51bGlmZWJhbmsuY2GCG3d3dy5vbmxpbmUubWFudWxp ZmViYW5rLmNvbYIed3d3LnVhdG9ubGluZS5iYW5xdWVtYW51dmllLmNhgh93d3cu dWF0b25saW5lLmJhbnF1ZW1hbnV2aWUuY29tgh13d3cudWF0b25saW5lLm1hbnVs aWZlYmFuay5jYYIed3d3LnVhdG9ubGluZS5tYW51bGlmZWJhbmsuY29tMA0GCSqG SIb3DQEBCwUAA4IBAQCAFLriPC1uCubx/Undn1bn6l/aC6dQmfwhA7Q0XYN2hUOs CwiKDy9jtjQ7OtD4rGqThSR62M9qq7oO7JmOLfiRJ2hC2LQHhqJBdNbOFWKRw25s JeK55OvXF3zZiYuqHk8vdLuxNPRnZHR1g69I26sJEfZBTV7sOtxsOizoGqqzhSsI 2nBBYind93Bxdkwi22ksfeXD9syKjMU+7f1CGm9cfiUUu+aJvXRUgrzd2V5kMWC3 5LPLx134yy4QmHv8mzu5Q1APnYlsifDxawWCAyheV1hikN3K4ul+aZRdozmuQb7j afSHRgDG1Pv/ZcwrSYbAnlMDP35pjLMW3x/yBEAd -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWFbpAt1YEVfDMwRi5JZ AFSj7T+/OFKhq7XtGFSFdZ3ob7fuShfRhTAoaznfiI5YbCjapit9KkQMfGpuMWyM LraEWVVkaTDk/tvkx8mJyoAL7t+cN/pawaeYHsg34t3RT80OZKIPCaR1VLD4uBfx ma+47rFjMZOP8BMvM291jUsG+R4GAzXw2C5yENx/ca/GrehCX7r0bxEw5HXFOr1y T+pKVt5pKd3dfYDDaG5ex3CNm/yxr73XnYPsqVyhUi29h7v/XA6hNj1hsPBXGjyX ChjKUZYP12s/wNyKvEJj5Xi8WzP7zgrLHwQTLSCVVhLOhejUpqBdzkPcjWhycVNU SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 103545103610804275904585758972027568218 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Enterprise Tech and Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'client.manulifebank.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24412001863700703584861021104628483107815515553109582446066107687650774593234581651260911415727349185868409797007459811583247698255237865545339395741116515080281759204155279488226534422943048981869230288305592282384483560880215129401496506051743138125590049375626618745393787255754316883197495169909487612472432296594535160925245225844218061161436192614028738814010566415335939803334204442948681820318875397621177209467508500781384810063445669552377305659429797517216441662359933090105141180190921865200733246901904769789385750521483755960949009947998271536436669282491992388443035489622779890077084771401493988463691 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 73da3dce43927e9efd72c9f1880aa320e4d342bf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (730 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'client.manulifebank.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.banquemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.manulifebank.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3449.client.manulifebank.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'banquemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'client.banquemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifebank.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'online.banquemanuvie.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'online.banquemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'online.manulifebank.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'online.manulifebank.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prd-banklink.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-banklink.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatclient.banquemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatclient.manulifebank.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatonline.banquemanuvie.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatonline.banquemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatonline.manulifebank.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uatonline.manulifebank.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.online.banquemanuvie.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.online.banquemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.online.manulifebank.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.online.manulifebank.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uatonline.banquemanuvie.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uatonline.banquemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uatonline.manulifebank.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uatonline.manulifebank.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008014bae23c2d6e0ae6f1fd49dd9f56e7ea5fda0ba75099fc2103b4345d83768543ac0b088a0f2f63b6343b3ad0f8ac6a9385247ad8cf6aabba0eec998e2df891276842d8b40786a24174d6ce156291c36e6c25e2b9e4ebd7177cd9898baa1e4f2f74bbb134f46764747583af48dbab0911f6414d5eec3adc6c3a2ce81aaab3852b08da70416229ddf77071764c22db692c7de5c3f6cc8a8cc53eedfd421a6f5c7e2514bbe689bd745482bcddd95e643160b7e4b3cbc75df8cb2e10987bfc9b3bb943500f9d896c89f0f16b058203285e57586290ddcae2e97e69945da339ae41bee369f4874600c6d4fbff65cc2b4986c09e53033f7e698cb316df1ff204401d