www.jhinvestments.com
- Manulife Financial -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number cf:b0:51:46:d9:bf:a6:5b:1f:d5:4f:9c:ec:d7:33:8b was issued on by Sectigo Limited.
With 45 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Manulife Financial
Organization:
Manulife Financial
State / Province:
Ontario
Country: CA
Country: CA
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): cf:b0:51:46:d9:bf:a6:5b:1f:d5:4f:9c:ec:d7:33:8bSerial Number (int): 276065687863118924694079368382347948939
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: c8:e8:4d:14:16:da:89:d2:a9:19:aa:df:d7:c6:8a:10:8a:d2:70:12
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 1f:76:c2:cf:59:bb:8b:c6:ed:3f:8b:dc:00:40:ce:bd:10:fe:54:32
Fingerprint (sha256): 22:1a:9f:c8:24:ef:12:79:6b:c7:e9:de:aa:c2:f6:da:9b:41:56:75:e0:64:aa:3d:3c:9e:09:11:af:42:a2:8e
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate www.jhinvestments.com
45
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.jhinvestments.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.jhinvestments.com
advisor.jhinvestments.com
author-tmp.jhinvestments.com
author.jhinvestments.com
gestionpriveemanuvie.com
insight.manulifeam.com
insight.manulifeim.com
jhinvestments.com
jhrps.com
johnhancockrealestate.com
manulifeim.com
manulifeinvestmentmgmt.ca
manulifeinvestmentmgmt.com
manulifeinvestmentmgt.com
manulifemutualfunds.ca
manulifeprivatewealth.com
manuliferealestate.com
manuliferealestatefinance.com
mi-tmp.jhinvestments.com
mi.jhinvestments.com
nav.manulifeim.com
pages.jhinvestments.com
preview-tmp.jhinvestments.com
preview.jhinvestments.com
retail.manulifeinvestmentmgmt.com
retirement.johnhancock.com
ucits-tmp.manulifeim.com
ucits.manulifeim.com
ucits.manulifeinvestmentmgmt.com
viewpoints.manulifeam.com
www-tmp.jhinvestments.com
www-tmp.manulifeim.com
www.gestionpriveemanuvie.com
www.jhrps.com
www.johnhancockrealestate.com
www.manulifeim.com
www.manulifeinvestmentmgmt.ca
www.manulifeinvestmentmgmt.com
www.manulifeinvestmentmgt.ca
www.manulifeinvestmentmgt.com
www.manulifemutualfunds.ca
www.manulifeprivatewealth.com
www.manuliferealestate.com
www.retirement.johnhancock.com
www.ucits.manulifeim.com
advisor.jhinvestments.com
author-tmp.jhinvestments.com
author.jhinvestments.com
gestionpriveemanuvie.com
insight.manulifeam.com
insight.manulifeim.com
jhinvestments.com
jhrps.com
johnhancockrealestate.com
manulifeim.com
manulifeinvestmentmgmt.ca
manulifeinvestmentmgmt.com
manulifeinvestmentmgt.com
manulifemutualfunds.ca
manulifeprivatewealth.com
manuliferealestate.com
manuliferealestatefinance.com
mi-tmp.jhinvestments.com
mi.jhinvestments.com
nav.manulifeim.com
pages.jhinvestments.com
preview-tmp.jhinvestments.com
preview.jhinvestments.com
retail.manulifeinvestmentmgmt.com
retirement.johnhancock.com
ucits-tmp.manulifeim.com
ucits.manulifeim.com
ucits.manulifeinvestmentmgmt.com
viewpoints.manulifeam.com
www-tmp.jhinvestments.com
www-tmp.manulifeim.com
www.gestionpriveemanuvie.com
www.jhrps.com
www.johnhancockrealestate.com
www.manulifeim.com
www.manulifeinvestmentmgmt.ca
www.manulifeinvestmentmgmt.com
www.manulifeinvestmentmgt.ca
www.manulifeinvestmentmgt.com
www.manulifemutualfunds.ca
www.manulifeprivatewealth.com
www.manuliferealestate.com
www.retirement.johnhancock.com
www.ucits.manulifeim.com
Other certificates including the domain name jhinvestments.com
(limited to 100 certificates)
jira.jhinvestments.com
visit.jhinvestments.com
manulife.com
api-sys1.jhinvestments.com
johnhancock.com
johnhancock.com
visit.jhinvestments.com
www.jhinvestments.com
www.jhinvestments.com
dev-tmp.jhinvestments.com
www.jhinvestments.com
manulife.com
jhinvestments.com
johnhancock.com
manulife.com
author.jhinvestments.com
johnhancock.com
nasbaccess01.manulife.com
pages.jhinvestments.com
www.jhinvestments.com
jhinvestments.com
pages.jhinvestments.com
mi-dev64.jhinvestments.com
rps.jhancock.com
manulife.com
johnhancock.com
jhinvestments.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
www.jhinvestments.com
jhinvestments.com
www.jhinvestments.com
johnhancock.com
manulife.com
johnhancock.com
www.jhinvestments.com
manulife.com
pages.jhinvestments.com
johnhancock.com
johnhancock.com
ucits-stg-tmp.jhinvestments.com
manulife.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
manulife.com
johnhancock.com
manulife.com
manulife.com
johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
manulife.com
www.jhinvestments.com
johnhancock.com
www.jhinvestments.com
www.jhinvestments.com
johnhancock.com
visit.jhinvestments.com
manulife.com
johnhancock.com
manulife.com
stage-64.jhinvestments.com
mi-qa64.jhinvestments.com
www.jhinvestments.com
manulife.com
jira.jhinvestments.com
pages.jhinvestments.com
mi-dev64.jhinvestments.com
www.jhinvestments.com
www.jhinvestments.com
johnhancock.com
www.jhinvestments.com
www.jhinvestments.com
www.jhinvestments.com
manulife.com
manulife.com
www.jhinvestments.com
johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
manulife.com
kcure-qa.jhinvestments.com
www.jhinvestments.com
johnhancockinvestments.com
johnhancock.com
qr.jhinvestments.com
johnhancock.com
johnhancock.com
esg.jhinvestments.com
johnhancock.com
manulife.com
visit.jhinvestments.com
manulife.com
api-sys1.jhinvestments.com
johnhancock.com
johnhancock.com
visit.jhinvestments.com
www.jhinvestments.com
www.jhinvestments.com
dev-tmp.jhinvestments.com
www.jhinvestments.com
manulife.com
jhinvestments.com
johnhancock.com
manulife.com
author.jhinvestments.com
johnhancock.com
nasbaccess01.manulife.com
pages.jhinvestments.com
www.jhinvestments.com
jhinvestments.com
pages.jhinvestments.com
mi-dev64.jhinvestments.com
rps.jhancock.com
manulife.com
johnhancock.com
jhinvestments.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
manulife.com
www.jhinvestments.com
jhinvestments.com
www.jhinvestments.com
johnhancock.com
manulife.com
johnhancock.com
www.jhinvestments.com
manulife.com
pages.jhinvestments.com
johnhancock.com
johnhancock.com
ucits-stg-tmp.jhinvestments.com
manulife.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
johnhancock.com
manulife.com
johnhancock.com
manulife.com
manulife.com
johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
manulife.com
www.jhinvestments.com
johnhancock.com
www.jhinvestments.com
www.jhinvestments.com
johnhancock.com
visit.jhinvestments.com
manulife.com
johnhancock.com
manulife.com
stage-64.jhinvestments.com
mi-qa64.jhinvestments.com
www.jhinvestments.com
manulife.com
jira.jhinvestments.com
pages.jhinvestments.com
mi-dev64.jhinvestments.com
www.jhinvestments.com
www.jhinvestments.com
johnhancock.com
www.jhinvestments.com
www.jhinvestments.com
www.jhinvestments.com
manulife.com
manulife.com
www.jhinvestments.com
johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
manulife.com
kcure-qa.jhinvestments.com
www.jhinvestments.com
johnhancockinvestments.com
johnhancock.com
qr.jhinvestments.com
johnhancock.com
johnhancock.com
esg.jhinvestments.com
johnhancock.com
manulife.com
Certificate
The complete raw certificate details for www.jhinvestments.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILYjCCCkqgAwIBAgIRAM+wUUbZv6ZbH9VPnOzXM4swDQYJKoZIhvcNAQELBQAw gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yMzAxMDkwMDAwMDBaFw0yNDAxMDkyMzU5NTlaMFwxCzAJBgNV BAYTAkNBMRAwDgYDVQQIEwdPbnRhcmlvMRswGQYDVQQKExJNYW51bGlmZSBGaW5h bmNpYWwxHjAcBgNVBAMTFXd3dy5qaGludmVzdG1lbnRzLmNvbTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBALmo/Li4+HR1wFrP85o1Ypo7LLBBmV2ypiuj 4xWbCYxMtMR4OVyfb2ZzJZYJKdIZ6nbyms2t8U3GOKIUKLTM3yqNVstX1hHY0Pm9 v3pMDHhM8MBd8lahvzX1vbGzlnAm7WouRTJMmZylEW6FT9x35KoxmIH/mpeRs01S kkfx7vXpafUDpvP0Tw4QsGMNv4UJGDtqZTmN1jSPWhdLFgcEqX+6KRhwHETy/ivb 7Gktejyr1MGJ91JNuJjzLAm+gXx811AGHXti6/dBUUjQwPIkvvAUztSMz6m+1Gzh D6Q0W4QWfyx9hYfj2xURK7gqJvS2AYf2ScSxjhPFwFdYdVVNIzMCAwEAAaOCB+Mw ggffMB8GA1UdIwQYMBaAFBfZ1iUnZ/kxwklD2TA2RIxsqU/rMB0GA1UdDgQWBBTI 6E0UFtqJ0qkZqt/XxooQitJwEjAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIw ADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSgYDVR0gBEMwQTA1Bgwr BgEEAbIxAQIBAwQwJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9D UFMwCAYGZ4EMAQICMFoGA1UdHwRTMFEwT6BNoEuGSWh0dHA6Ly9jcmwuc2VjdGln by5jb20vU2VjdGlnb1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2 ZXJDQS5jcmwwgYoGCCsGAQUFBwEBBH4wfDBVBggrBgEFBQcwAoZJaHR0cDovL2Ny dC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFsaWRhdGlvblNl Y3VyZVNlcnZlckNBLmNydDAjBggrBgEFBQcwAYYXaHR0cDovL29jc3Auc2VjdGln by5jb20wggF8BgorBgEEAdZ5AgQCBIIBbASCAWgBZgB2AHb/iD8KtvuVUcJhzPWH ujS0pM27KdxoQgqf5mdMWjp0AAABhZe6vwkAAAQDAEcwRQIgGbn6U8qCzMm2JrEb 5dJXurT09lYooMxKR8Fqz8hsxY0CIQDWz9YO+EewiB2AuOAPOe8AFNvx2kMjRhF4 ZO6OuFCWAQB1ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABhZe6 vtsAAAQDAEYwRAIgVlw4XkDQaziPSJMmPiX/Z/pvWi9a2wyIvoWh0hAhKBYCIFZR ttK2F+ttQ60csHdctkD/9pi/3ykao6pcS6w//K5bAHUA7s3QZNXbGs7FXLedtM0T ojKHRny87N7DUUhZRnEftZsAAAGFl7q+nAAABAMARjBEAiAdYX4SEP8ZAf9i88OH SlOsHsl6S9koTRUGVFz6nisWQQIgAzd5VVbT2JpH2vKxEjJFR0e6zvva62B9Cts9 AFvuIIIwggSpBgNVHREEggSgMIIEnIIVd3d3LmpoaW52ZXN0bWVudHMuY29tghlh ZHZpc29yLmpoaW52ZXN0bWVudHMuY29tghxhdXRob3ItdG1wLmpoaW52ZXN0bWVu dHMuY29tghhhdXRob3IuamhpbnZlc3RtZW50cy5jb22CGGdlc3Rpb25wcml2ZWVt YW51dmllLmNvbYIWaW5zaWdodC5tYW51bGlmZWFtLmNvbYIWaW5zaWdodC5tYW51 bGlmZWltLmNvbYIRamhpbnZlc3RtZW50cy5jb22CCWpocnBzLmNvbYIZam9obmhh bmNvY2tyZWFsZXN0YXRlLmNvbYIObWFudWxpZmVpbS5jb22CGW1hbnVsaWZlaW52 ZXN0bWVudG1nbXQuY2GCGm1hbnVsaWZlaW52ZXN0bWVudG1nbXQuY29tghltYW51 bGlmZWludmVzdG1lbnRtZ3QuY29tghZtYW51bGlmZW11dHVhbGZ1bmRzLmNhghlt YW51bGlmZXByaXZhdGV3ZWFsdGguY29tghZtYW51bGlmZXJlYWxlc3RhdGUuY29t gh1tYW51bGlmZXJlYWxlc3RhdGVmaW5hbmNlLmNvbYIYbWktdG1wLmpoaW52ZXN0 bWVudHMuY29tghRtaS5qaGludmVzdG1lbnRzLmNvbYISbmF2Lm1hbnVsaWZlaW0u Y29tghdwYWdlcy5qaGludmVzdG1lbnRzLmNvbYIdcHJldmlldy10bXAuamhpbnZl c3RtZW50cy5jb22CGXByZXZpZXcuamhpbnZlc3RtZW50cy5jb22CIXJldGFpbC5t YW51bGlmZWludmVzdG1lbnRtZ210LmNvbYIacmV0aXJlbWVudC5qb2huaGFuY29j ay5jb22CGHVjaXRzLXRtcC5tYW51bGlmZWltLmNvbYIUdWNpdHMubWFudWxpZmVp bS5jb22CIHVjaXRzLm1hbnVsaWZlaW52ZXN0bWVudG1nbXQuY29tghl2aWV3cG9p bnRzLm1hbnVsaWZlYW0uY29tghl3d3ctdG1wLmpoaW52ZXN0bWVudHMuY29tghZ3 d3ctdG1wLm1hbnVsaWZlaW0uY29tghx3d3cuZ2VzdGlvbnByaXZlZW1hbnV2aWUu Y29tgg13d3cuamhycHMuY29tgh13d3cuam9obmhhbmNvY2tyZWFsZXN0YXRlLmNv bYISd3d3Lm1hbnVsaWZlaW0uY29tgh13d3cubWFudWxpZmVpbnZlc3RtZW50bWdt dC5jYYIed3d3Lm1hbnVsaWZlaW52ZXN0bWVudG1nbXQuY29tghx3d3cubWFudWxp ZmVpbnZlc3RtZW50bWd0LmNhgh13d3cubWFudWxpZmVpbnZlc3RtZW50bWd0LmNv bYIad3d3Lm1hbnVsaWZlbXV0dWFsZnVuZHMuY2GCHXd3dy5tYW51bGlmZXByaXZh dGV3ZWFsdGguY29tghp3d3cubWFudWxpZmVyZWFsZXN0YXRlLmNvbYIed3d3LnJl dGlyZW1lbnQuam9obmhhbmNvY2suY29tghh3d3cudWNpdHMubWFudWxpZmVpbS5j b20wDQYJKoZIhvcNAQELBQADggEBAJEOsdfhA/Iy+OSpJftV12WypeCL6JR1Ae6q nsnLZjMsR4eI9CM/viuFH7O8v8g3hZ0sWZhS3sjb5ZhQbSxiyJFG+cBhWXHVA5IY q2KErr7RtvA7wQR6lgYIEc1YLBZkrRq9jm03WccMljFHfCOG2G5yJuKTvlVXEJk+ Kaz5nnLCfLkWcHIMW4kcolw2xq+8eOMKvY0Xe+HID4bM/hQ1xHj5F1wBkqOJh/78 NC86OKrXidgklntp84qiO3YeBHQgzj7dlrLJqNZKv7auQCr0Vntv7rTymg+L9CQN rSUvqW+5tIyHBF8n2u9/k/M75aPpsd3iRpyvUQTuo0zaOY/1Hg0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuaj8uLj4dHXAWs/zmjVi mjsssEGZXbKmK6PjFZsJjEy0xHg5XJ9vZnMllgkp0hnqdvKaza3xTcY4ohQotMzf Ko1Wy1fWEdjQ+b2/ekwMeEzwwF3yVqG/NfW9sbOWcCbtai5FMkyZnKURboVP3Hfk qjGYgf+al5GzTVKSR/Hu9elp9QOm8/RPDhCwYw2/hQkYO2plOY3WNI9aF0sWBwSp f7opGHAcRPL+K9vsaS16PKvUwYn3Uk24mPMsCb6BfHzXUAYde2Lr90FRSNDA8iS+ 8BTO1IzPqb7UbOEPpDRbhBZ/LH2Fh+PbFREruCom9LYBh/ZJxLGOE8XAV1h1VU0j MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 276065687863118924694079368382347948939 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.jhinvestments.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23437417109683242834780804533989058650724542339692200798982307949118894037631970612072165013986693412259139588989195800525301698145275638274883905194516939911115241234437425426888445225629134517371071714334438456876113374295826036002548962449474381629942080219418756173576200283577517506192263141076608134018122559370371668304843619499350344980731402002481307967674467229738629170768792034063647544624230265868652323827886036111424201975373981601582153434184452104508630414383317439899927171785645140400715579443157274384953744653578401648633228496314224406011765030532424119369756967642001600033936006251749514748723 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c8e84d1416da89d2a919aadfd7c68a108ad27012 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1184 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advisor.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'author-tmp.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'author.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gestionpriveemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insight.manulifeam.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insight.manulifeim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhrps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'johnhancockrealestate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifeim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifeinvestmentmgmt.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifeinvestmentmgmt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifeinvestmentmgt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifemutualfunds.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manulifeprivatewealth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manuliferealestate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manuliferealestatefinance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi-tmp.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nav.manulifeim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pages.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preview-tmp.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preview.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retail.manulifeinvestmentmgmt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirement.johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits-tmp.manulifeim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits.manulifeim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucits.manulifeinvestmentmgmt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'viewpoints.manulifeam.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-tmp.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-tmp.manulifeim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gestionpriveemanuvie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhrps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.johnhancockrealestate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeinvestmentmgmt.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeinvestmentmgmt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeinvestmentmgt.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeinvestmentmgt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifemutualfunds.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manulifeprivatewealth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manuliferealestate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.retirement.johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ucits.manulifeim.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00910eb1d7e103f232f8e4a925fb55d765b2a5e08be8947501eeaa9ec9cb66332c478788f4233fbe2b851fb3bcbfc837859d2c599852dec8dbe598506d2c62c89146f9c0615971d5039218ab6284aebed1b6f03bc1047a96060811cd582c1664ad1abd8e6d3759c70c9631477c2386d86e7226e293be555710993e29acf99e72c27cb91670720c5b891ca25c36c6afbc78e30abd8d177be1c80f86ccfe1435c478f9175c0192a38987fefc342f3a38aad789d824967b69f38aa23b761e047420ce3edd96b2c9a8d64abfb6ae402af4567b6feeb4f29a0f8bf4240dad252fa96fb9b48c87045f27daef7f93f33be5a3e9b1dde2469caf5104eea34cda398ff51e0d