johnhancock.com

- Manulife Financial -

Issued by Sectigo RSA Organization Validation Secure Server CA

About this certificate

This digital certificate with serial number de:79:9c:6b:05:b3:95:29:76:94:f3:9b:1c:00:17:d3 was issued on by Sectigo Limited.

With 82 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Manulife Financial

Organization: Manulife Financial
State / Province: Ontario
Country: CA

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): de:79:9c:6b:05:b3:95:29:76:94:f3:9b:1c:00:17:d3
Serial Number (int): 295720055519210123782852536524144121811
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 23:dc:de:df:c4:02:6d:93:15:ac:d8:7c:89:00:53:ad:d5:02:8f:16
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb

Fingerprint (sha1): dc:88:21:7c:23:a9:d3:29:ee:8f:2e:2e:b8:37:13:bc:f7:68:c1:96
Fingerprint (sha256): 13:37:25:ca:94:79:1c:f7:24:18:c7:90:35:3e:a5:66:1a:d2:2c:5a:31:08:71:4b:1a:c4:da:8e:ef:b1:c0:09

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com
CRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl

Check the revocation status for certificate johnhancock.com

82

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for johnhancock.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

johnhancock.com
11514.johnhancock.com
advisor.johnhancockinsurance.com
agent.johnhancockinsurance.com
api.jhinvestments.com
apply.johnhancockinsurance.com
dev-api.jhinvestments.com
expresstrack.johnhancockinsurance.com
finalexpense.johnhancockinsurance.com
fuw-apply.johnhancockinsurance.com
identity.jhancock.com
insight.manulifeam.com
insight.manulifeim.com
instant-apply.johnhancockinsurance.com
jh1.jhlifeinsurance.com
jhancockrealestate.com
jhcustomerzoom.jhancock.com
jhfixedproducts.com
jhlifeinsurance.com
jhmclient.com
jhmgroup.com
jhrewardslife.com
jhrewardslife.johnhancockinsurance.com
jhsaleshub.com
jhsalesnet.com
jhservicenet.com
johnhancockinsurance.com
johnhancockvitality.com
life.customer.johnhancock.com
ltc.customer.johnhancock.com
ltcconnect.johnhancockinsurance.com
ltcprovider.johnhancockinsurance.com
manulifeinvestmentmgmt.com
manulifeinvestmentmgt.com
manuliferealestatefinance.com
mas.jhancock.com
mgroupclient.jhancock.com
mi-stg-cps.jhinvestments.com
partnerlink.jhancock.com
partnerlinkc.jhancock.com
pers.manulifebermuda.com
prod-api.jhinvestments.com
qa.johnhancock.com
quote-uat.johnhancock.com
register.jhancock.com
sales-stg-tmp.johnhancockinsurance.com
sales-tmp.johnhancockinsurance.com
sales.johnhancockinsurance.com
sales.manulifebermuda.com
secure.johnhancockinsurance.com
simpleterm-uat.johnhancock.com
stage.identity.jhancock.com
stage.johnhancockvitality.com
stage.manulifebermuda.com
stage.partnerlink.jhancock.com
stage.register.jhancock.com
stagec.partnerlink.jhancock.com
stg.rewardslife.johnhancockinsurance.com
stg64.johnhancockinsurance.com
termlife.johnhancock.com
termlife.johnhancockinsurance.com
test.partnerlink.jhancock.com
test.register.jhancock.com
tmp.jhsaleshub.com
tmp.manulifebermuda.com
ucits.manulifeinvestmentmgmt.com
usc.jhancock.com
viewpoints.manulifeam.com
www.jhancockrealestate.com
www.jhfixedproducts.com
www.jhlifeinsurance.com
www.jhmclient.com
www.jhmgroup.com
www.jhrewardslife.com
www.jhsaleshub.com
www.jhsalesnet.com
www.jhservicenet.com
www.johnhancockinsurance.com
www.johnhancockvitality.com
www.manulifeinvestmentmgmt.com
www.manulifeinvestmentmgt.com
www.manuliferealestatefinance.com

Other certificates including the domain name johnhancock.com

(limited to 100 certificates)
johnhancockinsurance.com
stage.identity.jhancock.com
manulife.com
rps.jhancock.com
manulife.com
uat.igpclaimreporting.jhancock.com
qa.johnhancock.com
johnhancock.com
johnhancock.com
onboarding.retirement.johnhancock.com
johnhancock.com
www.jhinvestments.com
stg.johnhancock.com
myplanuat.johnhancock.com
www.jhinvestments.com
qr.retirement.johnhancock.com
dev-tmp.jhinvestments.com
johnhancock.com
www.jhinvestments.com
manulife.com
johnhancock.com
advisorfeedbackhub.johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
crverifyidentity-dev.johnhancock.com
myplanuat.johnhancock.com
www.jhinvestments.com
johnhancock.com
img.retirement.johnhancock.com
johnhancock.com
rps.jhancock.com
manulife.com
johnhancock.com
manulife.com
instant-apply.johnhancockinsurance.com
manulife.com
manulife.com
rps.jhancock.com
instant-apply.johnhancockinsurance.com
qr.myplan.johnhancock.com
manulife.com
digital-uat.customer.johnhancock.com
myplanuat.johnhancock.com
manulife.com
www.jhinvestments.com
digital-uat.customer.johnhancock.com
personalizedretirementadvice.johnhancock.com
rps.jhancock.com
www.jhinvestments.com
johnhancock.com
secure.johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
www.jhinvestments.com
manulife.com
ww4.johnhancock.com
johnhancock.com
johnhancock.com
manulife.com
preferences.johnhancock.com
qr.myplan.johnhancock.com
img.retirement.johnhancock.com
johnhancock.com
manulife.com
jhshsm.johnhancock.com
qr.myplan.johnhancock.com
johnhancock.com
ww4.johnhancock.com
quote-uat.johnhancock.com
stg.johnhancock.com
johnhancock.com
digital.customer.johnhancock.com
johnhancock.com
johnhancockinsurance.com
johnhancock.com
retirementinfo.johnhancock.com
jhaconnect.jhannuities.com
johnhancock.com
johnhancock.com
onboarding.retirement.johnhancock.com
protect.johnhancock.com
jhshsm.johnhancock.com
rps.jhancock.com
qr.retirement.johnhancock.com
manulife.com
johnhancock.com
newonboardingaugust2023.retirement.johnhancock.com
johnhancock.com
rps.jhancock.com
manulife.com
johnhancock.com
manulife.com
johnhancock.com
finapp.johnhancock.com
johnhancock.com
manulife.com
manulife.com
preferencesstg.johnhancock.com

Certificate

The complete raw certificate details for johnhancock.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIOITCCDQmgAwIBAgIRAN55nGsFs5UpdpTzmxwAF9MwDQYJKoZIhvcNAQELBQAw
gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO
BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE
AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl
cnZlciBDQTAeFw0yMjA3MjgwMDAwMDBaFw0yMzA3MjgyMzU5NTlaMFYxCzAJBgNV
BAYTAkNBMRAwDgYDVQQIEwdPbnRhcmlvMRswGQYDVQQKExJNYW51bGlmZSBGaW5h
bmNpYWwxGDAWBgNVBAMTD2pvaG5oYW5jb2NrLmNvbTCCASIwDQYJKoZIhvcNAQEB
BQADggEPADCCAQoCggEBAMcowb2R2UL5QD7JjoFGUPAk/TwAeZD042A0uBiEmlVJ
M3Ow15dMPly5YOq4K/fZs3GslKc1fzwXEdqohvfPgJZQdgsZ+1NN69elgTdciXJI
hhntAKA1opUGqfQm9rnEFMGw7mTrV3lYMtmaVeB/c2DjwGY1R2BQW2nPBQ0CZPeD
SmUGf8mFl00N2trZHMdZsQqsAQ+P+3yKjgnFPDuy4Z5vAQj1nn3rJBP2fh8nQkOz
Z4gZuk3AInt2Xx5CM9A7kaZVCPmOPREki1CHInsUoXNe1D5oLZYpqCIHylaKuCmy
288iih7c5V+skByors0WW+qvwq3UUHJQ3DAlTLDFBDkCAwEAAaOCCqgwggqkMB8G
A1UdIwQYMBaAFBfZ1iUnZ/kxwklD2TA2RIxsqU/rMB0GA1UdDgQWBBQj3N7fxAJt
kxWs2HyJAFOt1QKPFjAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNV
HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSgYDVR0gBEMwQTA1BgwrBgEEAbIx
AQIBAwQwJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYG
Z4EMAQICMFoGA1UdHwRTMFEwT6BNoEuGSWh0dHA6Ly9jcmwuc2VjdGlnby5jb20v
U2VjdGlnb1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5j
cmwwgYoGCCsGAQUFBwEBBH4wfDBVBggrBgEFBQcwAoZJaHR0cDovL2NydC5zZWN0
aWdvLmNvbS9TZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFsaWRhdGlvblNlY3VyZVNl
cnZlckNBLmNydDAjBggrBgEFBQcwAYYXaHR0cDovL29jc3Auc2VjdGlnby5jb20w
EwYKKwYBBAHWeQIEAwEB/wQCBQAwggjZBgNVHREEggjQMIIIzIIPam9obmhhbmNv
Y2suY29tghUxMTUxNC5qb2huaGFuY29jay5jb22CIGFkdmlzb3Iuam9obmhhbmNv
Y2tpbnN1cmFuY2UuY29tgh5hZ2VudC5qb2huaGFuY29ja2luc3VyYW5jZS5jb22C
FWFwaS5qaGludmVzdG1lbnRzLmNvbYIeYXBwbHkuam9obmhhbmNvY2tpbnN1cmFu
Y2UuY29tghlkZXYtYXBpLmpoaW52ZXN0bWVudHMuY29tgiVleHByZXNzdHJhY2su
am9obmhhbmNvY2tpbnN1cmFuY2UuY29tgiVmaW5hbGV4cGVuc2Uuam9obmhhbmNv
Y2tpbnN1cmFuY2UuY29tgiJmdXctYXBwbHkuam9obmhhbmNvY2tpbnN1cmFuY2Uu
Y29tghVpZGVudGl0eS5qaGFuY29jay5jb22CFmluc2lnaHQubWFudWxpZmVhbS5j
b22CFmluc2lnaHQubWFudWxpZmVpbS5jb22CJmluc3RhbnQtYXBwbHkuam9obmhh
bmNvY2tpbnN1cmFuY2UuY29tghdqaDEuamhsaWZlaW5zdXJhbmNlLmNvbYIWamhh
bmNvY2tyZWFsZXN0YXRlLmNvbYIbamhjdXN0b21lcnpvb20uamhhbmNvY2suY29t
ghNqaGZpeGVkcHJvZHVjdHMuY29tghNqaGxpZmVpbnN1cmFuY2UuY29tgg1qaG1j
bGllbnQuY29tggxqaG1ncm91cC5jb22CEWpocmV3YXJkc2xpZmUuY29tgiZqaHJl
d2FyZHNsaWZlLmpvaG5oYW5jb2NraW5zdXJhbmNlLmNvbYIOamhzYWxlc2h1Yi5j
b22CDmpoc2FsZXNuZXQuY29tghBqaHNlcnZpY2VuZXQuY29tghhqb2huaGFuY29j
a2luc3VyYW5jZS5jb22CF2pvaG5oYW5jb2Nrdml0YWxpdHkuY29tgh1saWZlLmN1
c3RvbWVyLmpvaG5oYW5jb2NrLmNvbYIcbHRjLmN1c3RvbWVyLmpvaG5oYW5jb2Nr
LmNvbYIjbHRjY29ubmVjdC5qb2huaGFuY29ja2luc3VyYW5jZS5jb22CJGx0Y3By
b3ZpZGVyLmpvaG5oYW5jb2NraW5zdXJhbmNlLmNvbYIabWFudWxpZmVpbnZlc3Rt
ZW50bWdtdC5jb22CGW1hbnVsaWZlaW52ZXN0bWVudG1ndC5jb22CHW1hbnVsaWZl
cmVhbGVzdGF0ZWZpbmFuY2UuY29tghBtYXMuamhhbmNvY2suY29tghltZ3JvdXBj
bGllbnQuamhhbmNvY2suY29tghxtaS1zdGctY3BzLmpoaW52ZXN0bWVudHMuY29t
ghhwYXJ0bmVybGluay5qaGFuY29jay5jb22CGXBhcnRuZXJsaW5rYy5qaGFuY29j
ay5jb22CGHBlcnMubWFudWxpZmViZXJtdWRhLmNvbYIacHJvZC1hcGkuamhpbnZl
c3RtZW50cy5jb22CEnFhLmpvaG5oYW5jb2NrLmNvbYIZcXVvdGUtdWF0LmpvaG5o
YW5jb2NrLmNvbYIVcmVnaXN0ZXIuamhhbmNvY2suY29tgiZzYWxlcy1zdGctdG1w
LmpvaG5oYW5jb2NraW5zdXJhbmNlLmNvbYIic2FsZXMtdG1wLmpvaG5oYW5jb2Nr
aW5zdXJhbmNlLmNvbYIec2FsZXMuam9obmhhbmNvY2tpbnN1cmFuY2UuY29tghlz
YWxlcy5tYW51bGlmZWJlcm11ZGEuY29tgh9zZWN1cmUuam9obmhhbmNvY2tpbnN1
cmFuY2UuY29tgh5zaW1wbGV0ZXJtLXVhdC5qb2huaGFuY29jay5jb22CG3N0YWdl
LmlkZW50aXR5LmpoYW5jb2NrLmNvbYIdc3RhZ2Uuam9obmhhbmNvY2t2aXRhbGl0
eS5jb22CGXN0YWdlLm1hbnVsaWZlYmVybXVkYS5jb22CHnN0YWdlLnBhcnRuZXJs
aW5rLmpoYW5jb2NrLmNvbYIbc3RhZ2UucmVnaXN0ZXIuamhhbmNvY2suY29tgh9z
dGFnZWMucGFydG5lcmxpbmsuamhhbmNvY2suY29tgihzdGcucmV3YXJkc2xpZmUu
am9obmhhbmNvY2tpbnN1cmFuY2UuY29tgh5zdGc2NC5qb2huaGFuY29ja2luc3Vy
YW5jZS5jb22CGHRlcm1saWZlLmpvaG5oYW5jb2NrLmNvbYIhdGVybWxpZmUuam9o
bmhhbmNvY2tpbnN1cmFuY2UuY29tgh10ZXN0LnBhcnRuZXJsaW5rLmpoYW5jb2Nr
LmNvbYIadGVzdC5yZWdpc3Rlci5qaGFuY29jay5jb22CEnRtcC5qaHNhbGVzaHVi
LmNvbYIXdG1wLm1hbnVsaWZlYmVybXVkYS5jb22CIHVjaXRzLm1hbnVsaWZlaW52
ZXN0bWVudG1nbXQuY29tghB1c2MuamhhbmNvY2suY29tghl2aWV3cG9pbnRzLm1h
bnVsaWZlYW0uY29tghp3d3cuamhhbmNvY2tyZWFsZXN0YXRlLmNvbYIXd3d3Lmpo
Zml4ZWRwcm9kdWN0cy5jb22CF3d3dy5qaGxpZmVpbnN1cmFuY2UuY29tghF3d3cu
amhtY2xpZW50LmNvbYIQd3d3LmpobWdyb3VwLmNvbYIVd3d3LmpocmV3YXJkc2xp
ZmUuY29tghJ3d3cuamhzYWxlc2h1Yi5jb22CEnd3dy5qaHNhbGVzbmV0LmNvbYIU
d3d3Lmpoc2VydmljZW5ldC5jb22CHHd3dy5qb2huaGFuY29ja2luc3VyYW5jZS5j
b22CG3d3dy5qb2huaGFuY29ja3ZpdGFsaXR5LmNvbYIed3d3Lm1hbnVsaWZlaW52
ZXN0bWVudG1nbXQuY29tgh13d3cubWFudWxpZmVpbnZlc3RtZW50bWd0LmNvbYIh
d3d3Lm1hbnVsaWZlcmVhbGVzdGF0ZWZpbmFuY2UuY29tMA0GCSqGSIb3DQEBCwUA
A4IBAQBLB6a91LwNK3xxH3LLza1MsQWmuxqnO6jd4kc2Q32ll9vZhHYNlgSrUAqu
B+wjz8hKNYJi4omi4O7nOqvUi2rsb5vszZObVj+MuqGeW9xnK6mHcuHIUvsKsmWe
nL4y0dkF97rmcBg/+JrdUIQ7qBTTFIsOJnHEMkMOo66YWHBM4QUGUfJZ/zxbPUYV
IZR87k1evxJq8/896r1M2ul44YPKbzktCQjNZ77j4lnFIepygREPuvmX2fy5HL13
PdJO5fJkVU6tWRtYI1w9RRD9nTLxkBAg/rAriqKkcNFXx4BJQxT/4kzMAsXqhjOD
Nwwt+kY7avrH+BNnLxcl7Mdj36BV
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyjBvZHZQvlAPsmOgUZQ
8CT9PAB5kPTjYDS4GISaVUkzc7DXl0w+XLlg6rgr99mzcayUpzV/PBcR2qiG98+A
llB2Cxn7U03r16WBN1yJckiGGe0AoDWilQap9Cb2ucQUwbDuZOtXeVgy2ZpV4H9z
YOPAZjVHYFBbac8FDQJk94NKZQZ/yYWXTQ3a2tkcx1mxCqwBD4/7fIqOCcU8O7Lh
nm8BCPWefeskE/Z+HydCQ7NniBm6TcAie3ZfHkIz0DuRplUI+Y49ESSLUIciexSh
c17UPmgtlimoIgfKVoq4KbLbzyKKHtzlX6yQHKiuzRZb6q/CrdRQclDcMCVMsMUE
OQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 295720055519210123782852536524144121811
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-28 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-28 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'johnhancock.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25141520614820747779331998582752521070120973010672066757267266213108246564364227711549338628639544980425683591655307800734524786962301828134754214842721560548008358833323007045022400628021554529521454883644497960513914706449623219003181280173522411530957434537206923217924169691968815913192183740043722895151499897633540579863195963112134343067167205111178585450501782199689051951404797943848083554894948151025271541200765589125883749013463388706538755596752823225900694366530732855131422361496039099207935962990235644253473943827920863344507204313225322259803285079017763720159580800839944437793800033429551088731193
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							23dcdedfc4026d9315acd87c890053add5028f16
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2256 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '11514.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advisor.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agent.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apply.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-api.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'expresstrack.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finalexpense.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fuw-apply.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'identity.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insight.manulifeam.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insight.manulifeim.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'instant-apply.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jh1.jhlifeinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhancockrealestate.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhcustomerzoom.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhfixedproducts.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhlifeinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhmclient.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhmgroup.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhrewardslife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhrewardslife.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhsaleshub.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhsalesnet.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhservicenet.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'johnhancockvitality.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'life.customer.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ltc.customer.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ltcconnect.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ltcprovider.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifeinvestmentmgmt.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifeinvestmentmgt.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manuliferealestatefinance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mas.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mgroupclient.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi-stg-cps.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'partnerlink.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'partnerlinkc.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pers.manulifebermuda.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-api.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quote-uat.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'register.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sales-stg-tmp.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sales-tmp.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sales.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sales.manulifebermuda.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'simpleterm-uat.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.identity.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.johnhancockvitality.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.manulifebermuda.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.partnerlink.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.register.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stagec.partnerlink.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.rewardslife.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg64.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'termlife.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'termlife.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.partnerlink.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.register.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.jhsaleshub.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmp.manulifebermuda.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits.manulifeinvestmentmgmt.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usc.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'viewpoints.manulifeam.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhancockrealestate.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhfixedproducts.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhlifeinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhmclient.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhmgroup.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhrewardslife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhsaleshub.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhsalesnet.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhservicenet.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancockvitality.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeinvestmentmgmt.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeinvestmentmgt.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manuliferealestatefinance.com'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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