johnhancock.com
- Manulife Financial Corporation -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 4a:dd:d4:d1:c8:9f:80:5c:fb:3e:36:8a:cb:d4:ab:34 was issued on by Sectigo Limited.
With 63 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Manulife Financial Corporation
Organization:
Manulife Financial Corporation
State / Province:
Ontario
Country: CA
Country: CA
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 4a:dd:d4:d1:c8:9f:80:5c:fb:3e:36:8a:cb:d4:ab:34Serial Number (int): 99514685785431738483865365418891062068
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 66:67:34:16:f6:28:b8:86:43:df:f8:98:e4:e6:9c:d0:d9:4b:0a:09
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): b3:b0:b8:70:0b:3e:5c:ff:46:de:80:7c:66:06:b2:c6:16:50:2e:cf
Fingerprint (sha256): 5e:57:58:18:53:83:47:bd:05:5c:f5:bf:e7:dd:78:d6:d3:f7:d1:13:1d:ac:d7:05:ec:c5:99:2b:75:0a:db:ba
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate johnhancock.com
63
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for johnhancock.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
johnhancock.com
admin.jhrpsportal.com
admin5.jhnavigator.com
agent-stg.johnhancockinsurance.com
annuitiescopilot.nonprod.jhancock.com
annuitiescopilot.prod.jhancock.com
annuitiesvoice.nonprod.jhancock.com
annuitiesvoice.prod.jhancock.com
apps-test.johnhancockinsurance.com
assets.jhnavigator.com
azkv-usseg.prod.jhancock.com
ciamcopilot.nonprod.jhancock.com
ciamverification.registration.johnhancock.com
crverifyidentity.registration.johnhancock.com
data.igpinfo.com
dev-pdf.jhinvestments.com
dev.illustrationservicesportal.com
dev.jhadvancedmarkets.com
dev.jhillust.com
dev.jhinforcedownload.com
fwat.jhmylearningcenter.com
igpinfo.com
jhauditpackage.com
jhcashoutcalculator.com
jhdiscover.com
jhemarketing-info.com
jhi-apim.dev.manulife.com
jhi-apim.test.manulife.com
jhillust.com
jhmylearningcenter.com
jhnavigator.com
jhrps.com
jhrpsportal.com
jhvitality.com
patternlab.jhrps.com
provider.registration.johnhancock.com
qa.tmp.mysales.johnhancock.com
sales-stg.manulifebermuda.com
stage.identity.johnhancock.com
stage.jhadvancedmarkets.com
stage.jhillust.com
stage.jhinforcedownload.com
stg.tmp.mysales.johnhancock.com
test.identity.jhancock.com
test.identity.johnhancock.com
test.jhadvancedmarkets.com
test.jhannuities.com
test.jhillust.com
test.jhinforcedownload.com
test.johnhancockvitality.com
testc.partnerlink.jhancock.com
uat.data.igpinfo.com
www.data.igpinfo.com
www.igpinfo.com
www.jhauditpackage.com
www.jhcashoutcalculator.com
www.jhdiscover.com
www.jhemarketing-info.com
www.jhillust.com
www.jhmylearningcenter.com
www.jhnavigator.com
www.jhrps.com
www.jhrpsportal.com
admin.jhrpsportal.com
admin5.jhnavigator.com
agent-stg.johnhancockinsurance.com
annuitiescopilot.nonprod.jhancock.com
annuitiescopilot.prod.jhancock.com
annuitiesvoice.nonprod.jhancock.com
annuitiesvoice.prod.jhancock.com
apps-test.johnhancockinsurance.com
assets.jhnavigator.com
azkv-usseg.prod.jhancock.com
ciamcopilot.nonprod.jhancock.com
ciamverification.registration.johnhancock.com
crverifyidentity.registration.johnhancock.com
data.igpinfo.com
dev-pdf.jhinvestments.com
dev.illustrationservicesportal.com
dev.jhadvancedmarkets.com
dev.jhillust.com
dev.jhinforcedownload.com
fwat.jhmylearningcenter.com
igpinfo.com
jhauditpackage.com
jhcashoutcalculator.com
jhdiscover.com
jhemarketing-info.com
jhi-apim.dev.manulife.com
jhi-apim.test.manulife.com
jhillust.com
jhmylearningcenter.com
jhnavigator.com
jhrps.com
jhrpsportal.com
jhvitality.com
patternlab.jhrps.com
provider.registration.johnhancock.com
qa.tmp.mysales.johnhancock.com
sales-stg.manulifebermuda.com
stage.identity.johnhancock.com
stage.jhadvancedmarkets.com
stage.jhillust.com
stage.jhinforcedownload.com
stg.tmp.mysales.johnhancock.com
test.identity.jhancock.com
test.identity.johnhancock.com
test.jhadvancedmarkets.com
test.jhannuities.com
test.jhillust.com
test.jhinforcedownload.com
test.johnhancockvitality.com
testc.partnerlink.jhancock.com
uat.data.igpinfo.com
www.data.igpinfo.com
www.igpinfo.com
www.jhauditpackage.com
www.jhcashoutcalculator.com
www.jhdiscover.com
www.jhemarketing-info.com
www.jhillust.com
www.jhmylearningcenter.com
www.jhnavigator.com
www.jhrps.com
www.jhrpsportal.com
Other certificates including the domain name johnhancock.com
(limited to 100 certificates)
johnhancockinsurance.com
stage.identity.jhancock.com
manulife.com
rps.jhancock.com
manulife.com
uat.igpclaimreporting.jhancock.com
qa.johnhancock.com
johnhancock.com
johnhancock.com
onboarding.retirement.johnhancock.com
johnhancock.com
www.jhinvestments.com
stg.johnhancock.com
myplanuat.johnhancock.com
www.jhinvestments.com
qr.retirement.johnhancock.com
dev-tmp.jhinvestments.com
johnhancock.com
www.jhinvestments.com
manulife.com
johnhancock.com
advisorfeedbackhub.johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
crverifyidentity-dev.johnhancock.com
myplanuat.johnhancock.com
www.jhinvestments.com
johnhancock.com
img.retirement.johnhancock.com
johnhancock.com
rps.jhancock.com
manulife.com
johnhancock.com
manulife.com
instant-apply.johnhancockinsurance.com
manulife.com
manulife.com
rps.jhancock.com
instant-apply.johnhancockinsurance.com
qr.myplan.johnhancock.com
manulife.com
digital-uat.customer.johnhancock.com
myplanuat.johnhancock.com
manulife.com
www.jhinvestments.com
digital-uat.customer.johnhancock.com
personalizedretirementadvice.johnhancock.com
rps.jhancock.com
www.jhinvestments.com
johnhancock.com
secure.johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
www.jhinvestments.com
manulife.com
ww4.johnhancock.com
johnhancock.com
johnhancock.com
manulife.com
preferences.johnhancock.com
qr.myplan.johnhancock.com
img.retirement.johnhancock.com
johnhancock.com
manulife.com
jhshsm.johnhancock.com
qr.myplan.johnhancock.com
johnhancock.com
ww4.johnhancock.com
quote-uat.johnhancock.com
stg.johnhancock.com
johnhancock.com
digital.customer.johnhancock.com
johnhancock.com
johnhancockinsurance.com
johnhancock.com
retirementinfo.johnhancock.com
jhaconnect.jhannuities.com
johnhancock.com
johnhancock.com
onboarding.retirement.johnhancock.com
protect.johnhancock.com
jhshsm.johnhancock.com
rps.jhancock.com
qr.retirement.johnhancock.com
manulife.com
johnhancock.com
newonboardingaugust2023.retirement.johnhancock.com
johnhancock.com
rps.jhancock.com
manulife.com
johnhancock.com
manulife.com
johnhancock.com
finapp.johnhancock.com
johnhancock.com
manulife.com
manulife.com
preferencesstg.johnhancock.com
stage.identity.jhancock.com
manulife.com
rps.jhancock.com
manulife.com
uat.igpclaimreporting.jhancock.com
qa.johnhancock.com
johnhancock.com
johnhancock.com
onboarding.retirement.johnhancock.com
johnhancock.com
www.jhinvestments.com
stg.johnhancock.com
myplanuat.johnhancock.com
www.jhinvestments.com
qr.retirement.johnhancock.com
dev-tmp.jhinvestments.com
johnhancock.com
www.jhinvestments.com
manulife.com
johnhancock.com
advisorfeedbackhub.johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
crverifyidentity-dev.johnhancock.com
myplanuat.johnhancock.com
www.jhinvestments.com
johnhancock.com
img.retirement.johnhancock.com
johnhancock.com
rps.jhancock.com
manulife.com
johnhancock.com
manulife.com
instant-apply.johnhancockinsurance.com
manulife.com
manulife.com
rps.jhancock.com
instant-apply.johnhancockinsurance.com
qr.myplan.johnhancock.com
manulife.com
digital-uat.customer.johnhancock.com
myplanuat.johnhancock.com
manulife.com
www.jhinvestments.com
digital-uat.customer.johnhancock.com
personalizedretirementadvice.johnhancock.com
rps.jhancock.com
www.jhinvestments.com
johnhancock.com
secure.johnhancock.com
manulife.com
johnhancock.com
johnhancock.com
www.jhinvestments.com
manulife.com
ww4.johnhancock.com
johnhancock.com
johnhancock.com
manulife.com
preferences.johnhancock.com
qr.myplan.johnhancock.com
img.retirement.johnhancock.com
johnhancock.com
manulife.com
jhshsm.johnhancock.com
qr.myplan.johnhancock.com
johnhancock.com
ww4.johnhancock.com
quote-uat.johnhancock.com
stg.johnhancock.com
johnhancock.com
digital.customer.johnhancock.com
johnhancock.com
johnhancockinsurance.com
johnhancock.com
retirementinfo.johnhancock.com
jhaconnect.jhannuities.com
johnhancock.com
johnhancock.com
onboarding.retirement.johnhancock.com
protect.johnhancock.com
jhshsm.johnhancock.com
rps.jhancock.com
qr.retirement.johnhancock.com
manulife.com
johnhancock.com
newonboardingaugust2023.retirement.johnhancock.com
johnhancock.com
rps.jhancock.com
manulife.com
johnhancock.com
manulife.com
johnhancock.com
finapp.johnhancock.com
johnhancock.com
manulife.com
manulife.com
preferencesstg.johnhancock.com
Certificate
The complete raw certificate details for johnhancock.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIINPTCCDCWgAwIBAgIQSt3U0cifgFz7PjaKy9SrNDANBgkqhkiG9w0BAQsFADCB lTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMT0wOwYDVQQD EzRTZWN0aWdvIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTI0MDYxNDAwMDAwMFoXDTI1MDYxNDIzNTk1OVowYjELMAkGA1UE BhMCQ0ExEDAOBgNVBAgTB09udGFyaW8xJzAlBgNVBAoTHk1hbnVsaWZlIEZpbmFu Y2lhbCBDb3Jwb3JhdGlvbjEYMBYGA1UEAxMPam9obmhhbmNvY2suY29tMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZgCRFQeM5b9ywPuZeo6cc6ryT9S NZk2zfwj9N77svMYb2NWl+z+VdaKbFsuOah5MXyxLg68DyNfzi1HmCv2IcR/A7ll hJpPP/0nPW4/x65QSbD4ZJW8IHKpe3I/LMI8RW8WWwk/UrShLwrHrN44zxDkmP2o xH81kYneu9G/Gn8BnlnGwyubPjQxc3be4hoO/CNLd/eE6GCT45Dy26YGOnvGucKr QmIigLI/0KGA4ON8z/9rLgMwjuhT94+wuzia1wXLZHxituv1utMQYGFXEUTfnY6j NTGv4/BxCBy3uqLymJ3Kw0sMIMoUcGbcZtnwkvWIvRtNJS+O6EP/WeW5CwIDAQAB o4IJuTCCCbUwHwYDVR0jBBgwFoAUF9nWJSdn+THCSUPZMDZEjGypT+swHQYDVR0O BBYEFGZnNBb2KLiGQ9/4mOTmnNDZSwoJMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMB Af8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBKBgNVHSAEQzBB MDUGDCsGAQQBsjEBAgEDBDAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28u Y29tL0NQUzAIBgZngQwBAgIwWgYDVR0fBFMwUTBPoE2gS4ZJaHR0cDovL2NybC5z ZWN0aWdvLmNvbS9TZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFsaWRhdGlvblNlY3Vy ZVNlcnZlckNBLmNybDCBigYIKwYBBQUHAQEEfjB8MFUGCCsGAQUFBzAChklodHRw Oi8vY3J0LnNlY3RpZ28uY29tL1NlY3RpZ29SU0FPcmdhbml6YXRpb25WYWxpZGF0 aW9uU2VjdXJlU2VydmVyQ0EuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5z ZWN0aWdvLmNvbTCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcAzxFW7tUufK/z h1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGQGCMjkwAABAMASDBGAiEAu4FX5PUB kOGRK41ZmVZaCuvfxVNfwpYhi81N/wknYDICIQCJ1TfhQPG2Rehv4S1YJ0jmnVyT FCBc2jHuonAfm6PqOwB3AKLjCuRF772tm3447Udnd1PXgluElNcrXhssxLlQpEfn AAABkBgjI1gAAAQDAEgwRgIhAN4kiByF+jS/enZR+VLjGLCbaJTa6ea0KrLnGN4A EltDAiEAgEdmAp0E7DkYfl/f3DDWInF0kaYqftHSvII9nybure8AdgBOdaMnXJoQ wzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAZAYIyOoAAAEAwBHMEUCIBvTOFc2 g8jrNtyzqf54N8Z9qrF778QUGD8ptiAIPsQxAiEA2U8Vou2QYZepAI/I8jWr3hFe /m3boXHbGpBsQ4rGFUAwggZ7BgNVHREEggZyMIIGboIPam9obmhhbmNvY2suY29t ghVhZG1pbi5qaHJwc3BvcnRhbC5jb22CFmFkbWluNS5qaG5hdmlnYXRvci5jb22C ImFnZW50LXN0Zy5qb2huaGFuY29ja2luc3VyYW5jZS5jb22CJWFubnVpdGllc2Nv cGlsb3Qubm9ucHJvZC5qaGFuY29jay5jb22CImFubnVpdGllc2NvcGlsb3QucHJv ZC5qaGFuY29jay5jb22CI2FubnVpdGllc3ZvaWNlLm5vbnByb2QuamhhbmNvY2su Y29tgiBhbm51aXRpZXN2b2ljZS5wcm9kLmpoYW5jb2NrLmNvbYIiYXBwcy10ZXN0 LmpvaG5oYW5jb2NraW5zdXJhbmNlLmNvbYIWYXNzZXRzLmpobmF2aWdhdG9yLmNv bYIcYXprdi11c3NlZy5wcm9kLmpoYW5jb2NrLmNvbYIgY2lhbWNvcGlsb3Qubm9u cHJvZC5qaGFuY29jay5jb22CLWNpYW12ZXJpZmljYXRpb24ucmVnaXN0cmF0aW9u LmpvaG5oYW5jb2NrLmNvbYItY3J2ZXJpZnlpZGVudGl0eS5yZWdpc3RyYXRpb24u am9obmhhbmNvY2suY29tghBkYXRhLmlncGluZm8uY29tghlkZXYtcGRmLmpoaW52 ZXN0bWVudHMuY29tgiJkZXYuaWxsdXN0cmF0aW9uc2VydmljZXNwb3J0YWwuY29t ghlkZXYuamhhZHZhbmNlZG1hcmtldHMuY29tghBkZXYuamhpbGx1c3QuY29tghlk ZXYuamhpbmZvcmNlZG93bmxvYWQuY29tghtmd2F0LmpobXlsZWFybmluZ2NlbnRl ci5jb22CC2lncGluZm8uY29tghJqaGF1ZGl0cGFja2FnZS5jb22CF2poY2FzaG91 dGNhbGN1bGF0b3IuY29tgg5qaGRpc2NvdmVyLmNvbYIVamhlbWFya2V0aW5nLWlu Zm8uY29tghlqaGktYXBpbS5kZXYubWFudWxpZmUuY29tghpqaGktYXBpbS50ZXN0 Lm1hbnVsaWZlLmNvbYIMamhpbGx1c3QuY29tghZqaG15bGVhcm5pbmdjZW50ZXIu Y29tgg9qaG5hdmlnYXRvci5jb22CCWpocnBzLmNvbYIPamhycHNwb3J0YWwuY29t gg5qaHZpdGFsaXR5LmNvbYIUcGF0dGVybmxhYi5qaHJwcy5jb22CJXByb3ZpZGVy LnJlZ2lzdHJhdGlvbi5qb2huaGFuY29jay5jb22CHnFhLnRtcC5teXNhbGVzLmpv aG5oYW5jb2NrLmNvbYIdc2FsZXMtc3RnLm1hbnVsaWZlYmVybXVkYS5jb22CHnN0 YWdlLmlkZW50aXR5LmpvaG5oYW5jb2NrLmNvbYIbc3RhZ2UuamhhZHZhbmNlZG1h cmtldHMuY29tghJzdGFnZS5qaGlsbHVzdC5jb22CG3N0YWdlLmpoaW5mb3JjZWRv d25sb2FkLmNvbYIfc3RnLnRtcC5teXNhbGVzLmpvaG5oYW5jb2NrLmNvbYIadGVz dC5pZGVudGl0eS5qaGFuY29jay5jb22CHXRlc3QuaWRlbnRpdHkuam9obmhhbmNv Y2suY29tghp0ZXN0LmpoYWR2YW5jZWRtYXJrZXRzLmNvbYIUdGVzdC5qaGFubnVp dGllcy5jb22CEXRlc3QuamhpbGx1c3QuY29tghp0ZXN0LmpoaW5mb3JjZWRvd25s b2FkLmNvbYIcdGVzdC5qb2huaGFuY29ja3ZpdGFsaXR5LmNvbYIedGVzdGMucGFy dG5lcmxpbmsuamhhbmNvY2suY29tghR1YXQuZGF0YS5pZ3BpbmZvLmNvbYIUd3d3 LmRhdGEuaWdwaW5mby5jb22CD3d3dy5pZ3BpbmZvLmNvbYIWd3d3LmpoYXVkaXRw YWNrYWdlLmNvbYIbd3d3LmpoY2FzaG91dGNhbGN1bGF0b3IuY29tghJ3d3cuamhk aXNjb3Zlci5jb22CGXd3dy5qaGVtYXJrZXRpbmctaW5mby5jb22CEHd3dy5qaGls bHVzdC5jb22CGnd3dy5qaG15bGVhcm5pbmdjZW50ZXIuY29tghN3d3cuamhuYXZp Z2F0b3IuY29tgg13d3cuamhycHMuY29tghN3d3cuamhycHNwb3J0YWwuY29tMA0G CSqGSIb3DQEBCwUAA4IBAQBahJoNbPhJNJfkVtviJFd0MXem0fNG0Y+MU6by1Bbo NB6fsWqU6cCfzoa15b1nJ1FLYe4Vff98qOsGpYlqzSaaj3dnIPzmGb1IWj72+ftP YznKxczDCB5lvujIVdtYxgvug3WRMY1JZCgpHuA/o2mjXs/r09gZ7P3o1YohgHiR iOlpjvLKKJfzwiBCRMFVJzkno3Pi4yEbuynfxahEEx5KP4fmjd7lJAAv7c+7dMoZ tq+Yv22s0mmxZB1mrngmUZR6AGDU3111xzNt3wHhO9mH9c6paRc+0m3qoD7CqpOE 1y7cDIgN7o/u/O8hQ2Lo3LZTE2jAdOUK/eRuDzn/u/c7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZgCRFQeM5b9ywPuZeo6 cc6ryT9SNZk2zfwj9N77svMYb2NWl+z+VdaKbFsuOah5MXyxLg68DyNfzi1HmCv2 IcR/A7llhJpPP/0nPW4/x65QSbD4ZJW8IHKpe3I/LMI8RW8WWwk/UrShLwrHrN44 zxDkmP2oxH81kYneu9G/Gn8BnlnGwyubPjQxc3be4hoO/CNLd/eE6GCT45Dy26YG OnvGucKrQmIigLI/0KGA4ON8z/9rLgMwjuhT94+wuzia1wXLZHxituv1utMQYGFX EUTfnY6jNTGv4/BxCBy3uqLymJ3Kw0sMIMoUcGbcZtnwkvWIvRtNJS+O6EP/WeW5 CwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 99514685785431738483865365418891062068 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manulife Financial Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'johnhancock.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20399325459727251507455510586951128977507395005350789615221451031944353803654093273651134691034736834088502921210534726024653039082133540978278298890154156319360858117882700384186893954327680188541901289999280281838429354593471478698833162957608116113203887865557874733161761769352006781101973908501533270546212900250660906179773219618965552751155276796377075395030941909268127569269973779081594012401766454732319450060262477491827301471616112625742686284256457383397397300698349845259801696342306537842625380707261517700774900955590271462861183147051258060428540716559057122413484609353016658984694138512374378117387 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 66673416f628b88643dff898e4e69cd0d94b0a09 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1650 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'admin.jhrpsportal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'admin5.jhnavigator.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agent-stg.johnhancockinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'annuitiescopilot.nonprod.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'annuitiescopilot.prod.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'annuitiesvoice.nonprod.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'annuitiesvoice.prod.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps-test.johnhancockinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.jhnavigator.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azkv-usseg.prod.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ciamcopilot.nonprod.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ciamverification.registration.johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crverifyidentity.registration.johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.igpinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-pdf.jhinvestments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.illustrationservicesportal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.jhadvancedmarkets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.jhillust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.jhinforcedownload.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fwat.jhmylearningcenter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'igpinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhauditpackage.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhcashoutcalculator.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhdiscover.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhemarketing-info.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhi-apim.dev.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhi-apim.test.manulife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhillust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhmylearningcenter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhnavigator.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhrps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhrpsportal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhvitality.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'patternlab.jhrps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provider.registration.johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.tmp.mysales.johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sales-stg.manulifebermuda.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.identity.johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.jhadvancedmarkets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.jhillust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.jhinforcedownload.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.tmp.mysales.johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.identity.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.identity.johnhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.jhadvancedmarkets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.jhannuities.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.jhillust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.jhinforcedownload.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.johnhancockvitality.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'testc.partnerlink.jhancock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.data.igpinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.data.igpinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.igpinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhauditpackage.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhcashoutcalculator.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhdiscover.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhemarketing-info.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhillust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhmylearningcenter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhnavigator.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhrps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jhrpsportal.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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