johnhancock.com

- Manulife Financial -

Issued by Sectigo RSA Organization Validation Secure Server CA

About this certificate

This digital certificate with serial number 23:12:a5:2c:0a:dc:13:51:d5:8d:40:f1:97:e8:be:70 was issued on by Sectigo Limited.

With 70 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Manulife Financial

Organization: Manulife Financial
Organization unit: John Hancock US Division
Organization unit: Multi-Domain SSL
Address: 200 Bloor Street East
Postal code: M4W 1E5
State / Province: Ontario
Locality: Toronto
Country: CA

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): 23:12:a5:2c:0a:dc:13:51:d5:8d:40:f1:97:e8:be:70
Serial Number (int): 46619791282910340615263741963724701296
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: dd:c6:ea:40:e2:e6:dc:47:8c:10:ac:d7:b8:39:21:60:8a:5d:a1:dd
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb

Fingerprint (sha1): 5f:ec:c8:45:d7:e8:80:6a:7f:94:58:b3:6a:af:af:3d:50:59:09:01
Fingerprint (sha256): 16:67:d2:43:61:9d:b2:3f:25:44:34:b7:3f:3b:0c:4f:43:34:f6:f2:c7:c7:9e:26:77:a9:fe:e0:43:58:11:53

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com
CRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl

Check the revocation status for certificate johnhancock.com

70

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for johnhancock.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

johnhancock.com
10058.johnhancock.com
advisor.jhinvestment.com
advisor.jhinvestments.com
apply.jhsimpleterm.com
consultants.jhinvestments.com
dcio.jhinvestments.com
internal.jhfunds.com
internal.jhinvestment.com
internal.jhinvestments.com
jh1.jhlifeinsurance.com
jhannuities.com
jhfundsretirement.com
jhillustrator.com
jhlifeinsurance.com
jhsimpleterm.com
manulifebank.net
mgroupclient.jhancock.com
quote.jhsimpleterm.com
ria.jhinvestments.com
secure.johnhancock.com
staging.jhfnjunction.com
www.707fifth.com
www.980howe.com
www.bostonmarathonmediaguide.com
www.jh401kadviser.com
www.jh401kadvisor.com
www.jhancock.com
www.jhancockannuities.com
www.jhancocknewyork.com
www.jhancocknypensions.com
www.jhancockpensions.com
www.jhannuities.com
www.jhannuitiesny.com
www.jhannuity.com
www.jhbusinessanalyzer.com
www.jhf529.com
www.jhfnjunction.com
www.jhfreedom529.com
www.jhfunds.com
www.jhgoenroll.com
www.jhillustrator.com
www.jhinforcedownload.com
www.jhinvestment.com
www.jhinvestments.com
www.jhlife.com
www.jhlifeproducts.com
www.jhmclient.com
www.jhmgroup.com
www.jhnewyork.com
www.jhopenenrollment.com
www.jhsalesnet.com
www.jhservicenet.com
www.jhsimpleterm.com
www.johnhancock.com
www.johnhancockannuities.com
www.johnhancockfreedom529.com
www.johnhancockinsurance.com
www.johnhancocknewyork.com
www.johnhancocknewyork.net
www.johnhancockny.com
www.johnhancockvitality.com
www.manulife-venture.com
www.manulifebermuda.com
www.manulifehongkong.com
www.manulifeillustrator.com
www.manulifeusa.com
www.ourdifferentapproach.com
www.ps.jhancocknypensions.com
www.ps.jhancockpensions.com

Other certificates including the domain name johnhancock.com

(limited to 100 certificates)
johnhancockinsurance.com
stage.identity.jhancock.com
manulife.com
rps.jhancock.com
manulife.com
uat.igpclaimreporting.jhancock.com
qa.johnhancock.com
johnhancock.com
johnhancock.com
onboarding.retirement.johnhancock.com
johnhancock.com
www.jhinvestments.com
stg.johnhancock.com
myplanuat.johnhancock.com
www.jhinvestments.com
qr.retirement.johnhancock.com
dev-tmp.jhinvestments.com
johnhancock.com
www.jhinvestments.com
manulife.com
johnhancock.com
advisorfeedbackhub.johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
crverifyidentity-dev.johnhancock.com
myplanuat.johnhancock.com
www.jhinvestments.com
johnhancock.com
img.retirement.johnhancock.com
johnhancock.com
rps.jhancock.com
manulife.com
johnhancock.com
manulife.com
instant-apply.johnhancockinsurance.com
manulife.com
manulife.com
rps.jhancock.com
instant-apply.johnhancockinsurance.com
qr.myplan.johnhancock.com
manulife.com
digital-uat.customer.johnhancock.com
myplanuat.johnhancock.com
manulife.com
www.jhinvestments.com
digital-uat.customer.johnhancock.com
personalizedretirementadvice.johnhancock.com
rps.jhancock.com
www.jhinvestments.com
johnhancock.com
secure.johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
www.jhinvestments.com
manulife.com
ww4.johnhancock.com
johnhancock.com
johnhancock.com
manulife.com
preferences.johnhancock.com
qr.myplan.johnhancock.com
img.retirement.johnhancock.com
johnhancock.com
manulife.com
jhshsm.johnhancock.com
qr.myplan.johnhancock.com
johnhancock.com
ww4.johnhancock.com
quote-uat.johnhancock.com
stg.johnhancock.com
johnhancock.com
digital.customer.johnhancock.com
johnhancock.com
johnhancockinsurance.com
johnhancock.com
retirementinfo.johnhancock.com
jhaconnect.jhannuities.com
johnhancock.com
johnhancock.com
onboarding.retirement.johnhancock.com
protect.johnhancock.com
jhshsm.johnhancock.com
rps.jhancock.com
qr.retirement.johnhancock.com
manulife.com
johnhancock.com
newonboardingaugust2023.retirement.johnhancock.com
johnhancock.com
rps.jhancock.com
manulife.com
johnhancock.com
manulife.com
johnhancock.com
finapp.johnhancock.com
johnhancock.com
manulife.com
manulife.com
preferencesstg.johnhancock.com

Certificate

The complete raw certificate details for johnhancock.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArA/bN0O5wT+Aa78ekyXl
6GQEo2nv82bHmvHSNg+o/jxluieNKaPlJxupnVtWtA3Mjek809frt7UkxxatW0+2
YY4S+pKrdT7vNZxcXOFzkwUCQGrKOyrBrsUGbXGT7xC86zr0VTX2YJC/p2at3tM9
u4tINtKQmrjjKPQDYnZv+47UriI6BNEZIKURkw/DYiJxoeX+3F0k+Plytzt/ETMH
o25LOWir247W50jTFMSsIH++1xXZI7Fr0V4MgBKnl0D3emLqTNu1XXLhKmVPtgh4
bUDeu9B5B5wUDA2Xkx4dsdHavktMt9IbVmjGaTPE38SH1QxRTI4bHkLDnCtGU9Pr
bwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 46619791282910340615263741963724701296
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-22 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-21 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'M4W 1E5'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Toronto'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '200 Bloor Street East'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'John Hancock US Division'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Multi-Domain SSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'johnhancock.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21720807493038793268725465868362819700612038912362507817575809627521932991253080120052420726876227054032802205510855416243097613687593281220279937771456274888332961760874300279716971321535367824661520807342498557929121783106797008694947004911342238267395125960630310807504397065139301056329840425370917313926564316009631657630392459454854754112673838318588740317309963271096708348040335178187261384881442101147228090770304173612771447156770829152064016261615776180987802471596795270360240467744969585885137950292151221729589538352171405069185627940556713949909181125156172042246258907568915750675754624419518540409711
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ddc6ea40e2e6dc478c10acd7b83921608a5da1dd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1663 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '10058.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advisor.jhinvestment.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advisor.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apply.jhsimpleterm.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'consultants.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dcio.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internal.jhfunds.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internal.jhinvestment.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internal.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jh1.jhlifeinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhannuities.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhfundsretirement.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhillustrator.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhlifeinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhsimpleterm.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifebank.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mgroupclient.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quote.jhsimpleterm.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ria.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.jhfnjunction.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.707fifth.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.980howe.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bostonmarathonmediaguide.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jh401kadviser.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jh401kadvisor.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhancockannuities.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhancocknewyork.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhancocknypensions.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhancockpensions.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhannuities.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhannuitiesny.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhannuity.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhbusinessanalyzer.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhf529.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhfnjunction.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhfreedom529.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhfunds.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhgoenroll.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhillustrator.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhinforcedownload.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhinvestment.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhinvestments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhlife.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhlifeproducts.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhmclient.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhmgroup.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhnewyork.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhopenenrollment.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhsalesnet.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhservicenet.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhsimpleterm.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancock.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancockannuities.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancockfreedom529.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancockinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancocknewyork.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancocknewyork.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancockny.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancockvitality.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulife-venture.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifebermuda.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifehongkong.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeillustrator.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeusa.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ourdifferentapproach.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ps.jhancocknypensions.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ps.jhancockpensions.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							0169007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016a44e4459a0000040300483046022100d92febf41ae26b90c0fafc1488b8a2bc90cd5b207b258e5413446b357ff6c49e022100ef43e4eb01c9b6db319239e27c7881dfbaba5b9ca7ad578e5b2a8e5ca0a37ece0076004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a80000016a44e445b500000403004730450220098f77c6ff0f85436e25064482b4d7b8acffe29054cdcbb2aeac950c45086cb1022100dc97e19573e3502e4d78eff954e3dd78a7a4eb4ad94becd69db305dfc356cb1b0076005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca0000016a44e448470000040300473045022100fe0a25daebcfaa3b013866247f5bd48bd155be0d8c743d560f859abbb7b4cfcc02201e1d06dd6d5eb6653507b9dc1fa73e2807eba85c6bb5e7b02eadc2d43f70003a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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