www.igpinfo.com
- Manulife Financial Corporation -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 61:46:ef:e5:54:a1:9b:19:cf:95:07:f6:ae:c2:18:9d was issued on by Sectigo Limited.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Manulife Financial Corporation
Organization:
Manulife Financial Corporation
State / Province:
Ontario
Country: CA
Country: CA
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 61:46:ef:e5:54:a1:9b:19:cf:95:07:f6:ae:c2:18:9dSerial Number (int): 129303442036570876446313310106073307293
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 3f:ef:05:9b:5c:c6:00:56:9e:85:13:9e:fe:15:4e:80:be:34:e3:47
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 6e:25:83:a4:e2:e0:88:08:75:81:dd:f9:1e:ec:4d:06:89:05:96:04
Fingerprint (sha256): cb:ba:aa:bf:ad:bc:4a:2e:09:9a:82:f9:be:ad:72:21:15:01:f6:45:31:a6:d8:4d:ad:67:b4:9a:57:85:56:4f
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate www.igpinfo.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.igpinfo.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.igpinfo.com
igpinfo.jhancock.com
jherppx1.prd.manulifeusa.com
igpinfo.jhancock.com
jherppx1.prd.manulifeusa.com
Other certificates including the domain name igpinfo.com
(limited to 100 certificates)
johnhancock.com
www.igpinfo.com
johnhancock.com
jhaconnect.jhannuities.com
www.igpinfo.com
johnhancock.com
www.igpinfo.com
johnhancock.com
www.igpinfo.com
igpinfo.jhancock.com
www.igpinfo.com
jhaconnect.jhannuities.com
johnhancock.com
www.igpinfo.com
johnhancock.com
johnhancock.com
www-aem-prod.manulife.ca
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
jhaconnect.jhannuities.com
jhaconnect.jhannuities.com
johnhancock.com
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
www.igpinfo.com
www.igpinfo.com
www-aem-prod.manulife.ca
johnhancock.com
www.igpinfo.com
www.igpinfo.com
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
www.igpinfo.com
johnhancock.com
jhaconnect.jhannuities.com
www.igpinfo.com
johnhancock.com
www.igpinfo.com
johnhancock.com
www.igpinfo.com
igpinfo.jhancock.com
www.igpinfo.com
jhaconnect.jhannuities.com
johnhancock.com
www.igpinfo.com
johnhancock.com
johnhancock.com
www-aem-prod.manulife.ca
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
jhaconnect.jhannuities.com
jhaconnect.jhannuities.com
johnhancock.com
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
www.igpinfo.com
www.igpinfo.com
www-aem-prod.manulife.ca
johnhancock.com
www.igpinfo.com
www.igpinfo.com
www.igpinfo.com
johnhancock.com
johnhancock.com
johnhancock.com
Certificate
The complete raw certificate details for www.igpinfo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIDDCCBvSgAwIBAgIQYUbv5VShmxnPlQf2rsIYnTANBgkqhkiG9w0BAQsFADCB lTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMT0wOwYDVQQD EzRTZWN0aWdvIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTIzMTIwNjAwMDAwMFoXDTI0MTIwNTIzNTk1OVowYjELMAkGA1UE BhMCQ0ExEDAOBgNVBAgTB09udGFyaW8xJzAlBgNVBAoTHk1hbnVsaWZlIEZpbmFu Y2lhbCBDb3Jwb3JhdGlvbjEYMBYGA1UEAxMPd3d3LmlncGluZm8uY29tMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuGNEkGhYPoMGiErWuxW74i/CbJYh aQHVCHqCFF9VBylTI43z6cBlfoV+PjoQ0Th7cRcP9qssUOkcCFLHc3//MlB4tcG4 I9oJhcNGnc2hP/tLprVJZotqZPO/6CqGaVb8gc9URbRRWNV9SAVAAAYqILy9vgVJ O55H96ABG3IYPZnzs+jrb4JFGCfNrAGOUshqFxoT6S5AasZO6/MIZxcyS4egUGLM MhAsSuJqBAJkKicrP4ZDZyzTNGx6GuXmZ4XvmoMQbIX4irsNHs+BYJ3BR3Bw/QuH 3m+osO+HRSQKruwfW+WMyitEL4VlwXn9dzvC5zCRFwzdtH4KyoSsHSB5O55WJ48W rr9n8no/OVjjC1zhgPQLFQQx1QJldvfdthaab0axA0d8p3Fi2fCKZTM4M9UYULQ2 vZRWFoOUWcdWaZoSFiPyd3wG033IHhM1TSjMssIclIoYvPJgblyDeotkBwEGjaXO Jx6TSs4R77qQnBR9DATjoKtkcki1VXrM0Wwb+hWVwKqcGDGzcyNHzzVLMjIp2aP3 nApjBO/+bnMZlfIfGt/3YM5V/j4ffVV1kzLBHtUXfX4Koe11Gg+SJny1JrSru8iq pOPIh0mxkwzgzK768FVI/1dn6ju+4QaUOcoU7oZdrRDDx8AHVg4mP5x0eVdQdg2B oOheqxWjO/QjLbcCAwEAAaOCA4gwggOEMB8GA1UdIwQYMBaAFBfZ1iUnZ/kxwklD 2TA2RIxsqU/rMB0GA1UdDgQWBBQ/7wWbXMYAVp6FE57+FU6AvjTjRzAOBgNVHQ8B Af8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwSgYDVR0gBEMwQTA1BgwrBgEEAbIxAQIBAwQwJTAjBggrBgEFBQcCARYX aHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQICMFoGA1UdHwRTMFEwT6BN oEuGSWh0dHA6Ly9jcmwuc2VjdGlnby5jb20vU2VjdGlnb1JTQU9yZ2FuaXphdGlv blZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcmwwgYoGCCsGAQUFBwEBBH4wfDBV BggrBgEFBQcwAoZJaHR0cDovL2NydC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNBT3Jn YW5pemF0aW9uVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNydDAjBggrBgEFBQcw AYYXaHR0cDovL29jc3Auc2VjdGlnby5jb20wggF+BgorBgEEAdZ5AgQCBIIBbgSC AWoBaAB1AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjD+VQooA AAQDAEYwRAIgYXwnRA1bbuR5upYOuKGqNIQ//s69dT/wufv3gHhQwo0CIGhMRV+n UFWVmXv7f0rtAI4nUMN14AlyxBxabjBv52ySAHcAPxdLT9ciR1iUHWUchL4NEu2Q N38fhWrrwb8ohez4ZG4AAAGMP5VC7gAABAMASDBGAiEA+4EQL0iAjMqlZva1V5zc 6jCNmKR1SkAOmnlryRO7x+sCIQD+heSlsrSDBbe+xAYYy44SAwiY16+tatA3J8kK hTldawB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjD+VQrAA AAQDAEcwRQIhAP11q+3K9pnTYm8i6YcXiGnEIz0HkaUizUIijUz4WidwAiARiSqb C9cYAQaYZW/Z0gSj6iVeGZW1tAiUavIyUY3cUjBOBgNVHREERzBFgg93d3cuaWdw aW5mby5jb22CFGlncGluZm8uamhhbmNvY2suY29tghxqaGVycHB4MS5wcmQubWFu dWxpZmV1c2EuY29tMA0GCSqGSIb3DQEBCwUAA4IBAQAfQf5Fbvytn6S15HirSHgC OJYupYfOCs4uU4PUjR8obkFpPmO5c/ArO3R7Nfjeq8ffEsoGicG5NWpfjOWMGkyq 0hBkdA8UG66oebLM9Z4HuarC0REcfhc3T4lzJ/E6dAlN0TTo5RCvvoFaC+Bzn/bq BHCz3FZqypGv5wPVf3kWq8kTq5VhoShClaSBo4mdFdZDLaDwxipBtYw9bsRhMhxt 21dB72hPFKyxk2iVbd+rLdaA8SCxTLoQ0ABxFsF8gn4AxaDZC65TQP1IncqADvki bz6DHFcNBUFitMODNfysVIMHwsePgsPoVIntuCd0UYHq96gHy2fQvjp+Cy76iHx4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuGNEkGhYPoMGiErWuxW7 4i/CbJYhaQHVCHqCFF9VBylTI43z6cBlfoV+PjoQ0Th7cRcP9qssUOkcCFLHc3// MlB4tcG4I9oJhcNGnc2hP/tLprVJZotqZPO/6CqGaVb8gc9URbRRWNV9SAVAAAYq ILy9vgVJO55H96ABG3IYPZnzs+jrb4JFGCfNrAGOUshqFxoT6S5AasZO6/MIZxcy S4egUGLMMhAsSuJqBAJkKicrP4ZDZyzTNGx6GuXmZ4XvmoMQbIX4irsNHs+BYJ3B R3Bw/QuH3m+osO+HRSQKruwfW+WMyitEL4VlwXn9dzvC5zCRFwzdtH4KyoSsHSB5 O55WJ48Wrr9n8no/OVjjC1zhgPQLFQQx1QJldvfdthaab0axA0d8p3Fi2fCKZTM4 M9UYULQ2vZRWFoOUWcdWaZoSFiPyd3wG033IHhM1TSjMssIclIoYvPJgblyDeotk BwEGjaXOJx6TSs4R77qQnBR9DATjoKtkcki1VXrM0Wwb+hWVwKqcGDGzcyNHzzVL MjIp2aP3nApjBO/+bnMZlfIfGt/3YM5V/j4ffVV1kzLBHtUXfX4Koe11Gg+SJny1 JrSru8iqpOPIh0mxkwzgzK768FVI/1dn6ju+4QaUOcoU7oZdrRDDx8AHVg4mP5x0 eVdQdg2BoOheqxWjO/QjLbcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 129303442036570876446313310106073307293 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.igpinfo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 752236451514235746878751411868772714542729439271583040935440183786139646213262675185602024246593567599502737098347990930074612261671221272359938474852705776003355563110025199676268165480099623767829225927711627904550834811332795113456423318868368469791304827163819576093831551192039048489242814000745932173476187215444833939391636337387626818291256163824537014164210089765132233860211688141042131992643385499998800990033390747449382513353834346255697100503336019308125019946140467057701268046032183325186380621295106010153149729519049767645436665492119461913578680819860130445379572028425016061577071008043830238814539443406608202187105213930272721560730397280921047154965644069520507836688177113088273353521712501445678472761051892827342637092986212402866570797131151026851486110596431332493028027636807958604880514958756797500049828629288910447728552238492116993191574422315982202628223858838730735743711190669950400338077848391490661878326151765675852342610640427298293346301382033259143556144647186264384954092248372047306801366695718296081315245687627498477687301067786175439109480131726611522457988817642525194773991094809186343890821643517932764965624208059407617357763335920764359892696834136735927389734678856851038606142903 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3fef059b5cc600569e85139efe154e80be34e347 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (71 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.igpinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'igpinfo.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jherppx1.prd.manulifeusa.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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