.

OwnerCertificate Issuer OrganizationCertificate Issuer Organizational UnitCommon Name or Certificate NameRequest StatusRoot Certificate Download URLSHA-1 FingerprintValid From [GMT]Valid To [GMT]Signing Key ParametersSignature AlgorithmTrust BitsEV Policy OID(s)Approval BugURL to Test WebsiteMozilla Applied ConstraintsCompany WebsiteCA Document RepositoryCertificate Policy (CP)Certification Practice Statement (CPS)Standard AuditBR AuditEV AuditAuditorStandard Audit TypeStandard Audit Statement DtPublicly Disclosed & Audited subCAs

.

A-TrustA-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbHA-Trust-Root-05A-Trust-Root-05Need Information from CAhttp://www.a-trust.at/certs/A-Trust-Root-05.crt2E:66:C9:84:11:81:C0:8F:B1:DF:AB:D4:FF:8D:5C:C7:2B:E0:8F:022013 Sep 232023 Sep 204096SHA-256Websites1.2.40.0.17.1.22https://bugzilla.mozilla.org/show_bug.cgi?id=1092963https://ca-train.a-trust.at/http://www.a-trust.athttp://www.a-trust.at/ATrust/Downloads.aspxhttp://www.a-trust.at/ATrust/Downloads.aspxhttps://cert.webtrust.org/SealFile?seal=1753&file=pdfhttps://cert.webtrust.org/SealFile?seal=1754&file=pdfErnst & YoungWebTrust2014.10.03

.

Consorci Administració Oberta de Catalunya (Consorci AOC, CATCert)Agencia Catalana de Certificacio (NIF Q-0801176-I)Jerarquia Entitats de Certificacio CatalanesEC-ACCNeed Information from CAhttp://www.catcert.cat/descarrega/acc_sha2.crtA1:DA:3F:18:BF:40:AF:2A:A7:48:07:9C:1F:0F:14:DC:39:D4:3C:7A2012 Apr 172031 Jan 072048SHA-256Websiteshttps://bugzilla.mozilla.org/show_bug.cgi?id=720326https://test_ev_cds.catcert.cathttp://www.aoc.cat/Inici/SERVEIS/Signatura-electronica-i-seguretat/CATCerthttps://bugzilla.mozilla.org/attachment.cgi?id=479370http://www.aoc.cat/Inici/SERVEIS/Signatura-electronica-i-seguretat/CATCert/Regulaciohttps://cert.webtrust.org/SealFile?seal=1647&file=pdfhttps://cert.webtrust.org/SealFile?seal=1648&file=pdfErnst & YoungWebTrust2014.03.10

.

Autoridad Certificadora Raíz Nacional de Uruguay (ACRN)AGESICAutoridad Certificadora Raíz Nacional de UruguayNeed Information from CAhttp://www.agesic.gub.uy/acrn7A:1C:DD:E3:D2:19:7E:71:37:43:3D:3F:99:C0:B3:69:F7:06:C7:492011 Nov 032031 Oct 294096SHA-256Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=925740http://www.agesic.gub.uy/acrnhttp://www.agesic.gub.uy/acrn/http://www.agesic.gub.uy/acrn/DeloitteWebTrust

.

ANF Autoridad de CertificaciónANF Autoridad de CertificacionANF Clase 1 CAANF Global Root CACA Action Items from Discussionhttp://www.anf.es/es/certificates_download/ANF_Global_Root_CA_SHA256.cer26:CA:FF:09:A7:AF:BA:E9:68:10:CF:FF:82:1A:94:32:6D:28:45:AA2013 Jun 102033 Jun 054096SHA-256Websites1.3.6.1.4.1.18332.55.1.1.2.22https://bugzilla.mozilla.org/show_bug.cgi?id=555156https://kerberosns.com/cloudhttp://www.anf.eshttps://www.anf.es/es/pdf/PC_SSL_Sede_EV_EN.pdfhttps://www.anf.es/es/pdf/DPC_ANF_AC_EN.pdfhttps://cert.webtrust.org/SealFile?seal=1625&file=pdfhttps://bugzilla.mozilla.org/attachment.cgi?id=8401262https://cert.webtrust.org/SealFile?seal=1626&file=pdfDNBWebTrust2013.12.20http://www.anf.es/es/certificados-de-ca-intermedias.html

.

ANF Autoridad de CertificaciónANF Autoridad de CertificaciónANF Clase 1 CAANF Server CACA Action Items from Discussionhttp://www.anf.es/es/certificates_download/ANF_Server_CA.cerCE:A9:89:0D:85:D8:07:53:A6:26:28:6C:DA:D7:8C:B5:66:D7:0C:F22009 Nov 302021 Nov 302048SHA-1WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=555156https://anf.kerberosns.com/en/http://www.anf.eshttps://www.anf.es/es/pdf/PC_SSL_Sede_EV_EN.pdfhttps://www.anf.es/es/pdf/DPC_ANF_AC_EN.pdfhttps://cert.webtrust.org/SealFile?seal=1625&file=pdfhttps://bugzilla.mozilla.org/attachment.cgi?id=8401262https://cert.webtrust.org/SealFile?seal=1626&file=pdfDNBWebTrust2013.12.20

.

Athens Stock ExchangeAthens Exchange S.A.ATHEX Root CANeed Information from CAhttp://www.helex.gr/documents/10180/681760/Certificates.zipDB:2B:7B:43:4D:FB:7F:C1:CB:59:26:EC:5D:95:21:FE:35:0F:F2:792010 Oct 182030 Oct 172048SHA-1Code; Email; Websites?https://bugzilla.mozilla.org/show_bug.cgi?id=967387https://trs.helex.gr/http://www.helex.gr/digital-certificateshttp://www.helex.gr/web/guest/digital-certificates-pki-regulationshttp://www.helex.gr/web/guest/digital-certificates-pki-regulationshttps://bug967387.bugzilla.mozilla.org/attachment.cgi?id=8380545Ernst & YoungWebTrust2013.07.31

.

Autoridad de Certificacion FirmaprofesionalAutoridad de Certificacion FirmaprofesionalAutoridad de Certificacion Firmaprofesional CIF A62634068Need Information from CAhttp://crl.firmaprofesional.com/caroot256.crt0B:BE:C2:27:22:49:CB:39:AA:DB:35:5C:53:E3:8C:AE:78:FF:B6:FE2014 Sep 232036 May 054096SHA-256Code; Email; Websites1.3.6.1.4.1.13177.10.1.3.10https://bugzilla.mozilla.org/show_bug.cgi?id=1102143https://www.firmaprofesional.comNonewww.firmaprofesional.comhttps://www.firmaprofesional.com/esp/cps-eng-2https://www.firmaprofesional.com/images/pdfs/FP_CP_Gen_Servidor_Web_SSL_6.2-EN.pdfhttps://www.firmaprofesional.com/images/pdfs/CPS/FP_CPS_6.1_english.pdfhttps://cert.webtrust.org/SealFile?seal=1617&file=pdfNEEDNEEDDNBWebTrust2013.12.20https://bugzilla.mozilla.org/show_bug.cgi?id=1012744 -- both the old SHA-1 and the new SHA-256 root certs will have the same CA hierarhcy.

.

CertinomisCertinomis0002 433998903Certinomis - Root CAIn Public Discussionhttp://www.certinomis.fr/publi/cer/AC_Racine_G3.cer9D:70:BB:01:A5:A4:A0:18:11:2E:F7:1C:01:B9:32:C5:34:E7:88:A82013 Oct 212033 Oct 214096SHA-256WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=937589https://g3-test.certinomis.com/Nonehttp://www.certinomis.frhttp://www.certinomis.com/documents-et-liens/nos-politiqueshttp://www.certinomis.com/publi/pc/DT-FL-1310-060-PC-WEB-SSL-1.2.pdfhttp://www.certinomis.com/documents-et-liens/nos-politiqueshttp://www.lsti-certification.fr/images/liste_entreprise/Liste%20PSCe.pdfhttps://bugzilla.mozilla.org/attachment.cgi?id=8451590LSTIETSI TS 102 0422014.06.30http://www.certinomis.com/documents-et-liens/nos-certificats-racines

.

OpenTrust / KEYNECTISCertplusCertplus Root CA G1Need Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=844678422:FD:D0:B7:FD:A2:4E:0D:AC:49:2C:A0:AC:A6:7B:6A:1F:E3:F7:662014 May 262038 Jan 154096SHA-512Code; Email; Websites1.3.6.1.4.1.22234.2.5.2.3.1https://bugzilla.mozilla.org/show_bug.cgi?id=1025095https://certplusrootcag1-test.opentrust.comhttp://www.opentrust.com/en/certification-policyhttps://www.opentrust.com/images/stories/OpenTrust_DMS_PC_Certificats_OpenTrust_SSL_RGS_et_ETSI_V1_1s.pdfhttp://www.opentrust.com/images/stories/DMS_RCA_Program_OpenTrust_CP_v_1_0s.pdfhttp://www.lsti-certification.fr/images/liste_entreprise/Liste%20PSCe.pdfhttps://www.opentrust.com/ca-certificate-program-opentrust/Ind_Aud_rep_LSTI_S.pdfLSTIETSI TS 102 042 and WebTrust for EV2014.01.23https://www.opentrust.com/ca-certificate-program-opentrust/ca-certificate-program-opentrust.html

.

OpenTrust / KEYNECTISCertplusCertplus Root CA G2Need Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=84467904F:65:8E:1F:E9:06:D8:28:02:E9:54:47:41:C9:54:25:5D:69:CC:1A2014 May 262038 Jan 15ECCECCCode; Email; Websites1.3.6.1.4.1.22234.2.5.2.3.1https://bugzilla.mozilla.org/show_bug.cgi?id=1025095https://certplusrootcag2-test.opentrust.comhttp://www.opentrust.com/en/certification-policyhttps://www.opentrust.com/images/stories/OpenTrust_DMS_PC_Certificats_OpenTrust_SSL_RGS_et_ETSI_V1_1s.pdfhttp://www.opentrust.com/images/stories/DMS_RCA_Program_OpenTrust_CP_v_1_0s.pdfhttp://www.lsti-certification.fr/images/liste_entreprise/Liste%20PSCe.pdfhttps://www.opentrust.com/ca-certificate-program-opentrust/Ind_Aud_rep_LSTI_S.pdfLSTIETSI TS 102 042 and WebTrust for EV2014.01.23https://www.opentrust.com/ca-certificate-program-opentrust/ca-certificate-program-opentrust.html

.

PostSignum operated by Ceska posta s.p. (Czech Post)Česká pošta, s.p. [IČ 47114983]PostSignum Root QCA 2Need Information from CAhttp://www.postsignum.cz/crt/psrootqca2.crtA0:F8:DB:3F:0B:F4:17:69:3B:28:2E:B7:4A:6A:D8:6D:F9:D4:48:A32010 Jan 192025 Jan 192048SHA-256Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=643398http://www.postsignum.cz/http://www.postsignum.cz/files/politiky/VCA_serverove_crt_v2-0.pdf

.

China Financial Certification Authority (CFCA)China Financial Certification AuthorityCFCA EV ROOTApproved, Pending Inclusion and EVhttps://bugzilla.mozilla.org/attachment.cgi?id=8356494E2:B8:29:4B:55:84:AB:6B:58:C2:90:46:6C:AC:3F:B8:39:8F:84:832012 Aug 082029 Dec 314096SHA-256Websites2.16.156.112554.3https://bugzilla.mozilla.org/show_bug.cgi?id=926029https://pub.cebnet.com.cnNonehttp://www.cfca.com.cn/http://www.cfca.com.cn/us/us-12.htmhttp://www.cfca.com.cn/us/us-12.htmhttps://bugzilla.mozilla.org/attachment.cgi?id=8545612https://cert.webtrust.org/SealFile?seal=1788&file=pdfhttps://cert.webtrust.org/SealFile?seal=1787&file=pdfhttps://cert.webtrust.org/SealFile?seal=1786&file=pdfPricewaterhouseCoopersWebTrust2014.12.05https://www.cfca.com.cn/file/EVSSL.zip

.

ComSignComSign Ltd.ComSign Global Root CANeed Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=549246AE:3B:31:BF:8F:D8:91:07:9C:F1:DF:34:CB:CE:6E:70:D3:7F:B5:B02011 Jul 182036 Jul 164096SHA-256Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=675060Not requesting websites trust bit.http://www.comsign.co.il/eng/default.asphttp://www.comsign.co.il/main.asp?id=114http://www.comsign.co.il/CPS-­‐Docs/CPS_Ver3-­‐1_English.pdfhttps://bugzilla.mozilla.org/attachment.cgi?id=8505604Not requesting websites trust bit.Sharony-SheflerETSI TS 101 4562014.09.16

.

Red AbogacíaConsejo General de la Abogacia NIF:Q-2863006IAutoridad de Certificacion de la AbogaciaNeed Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=85624107F:8A:77:83:6B:DC:6D:06:8F:8B:07:37:FC:C5:72:54:13:06:8C:A42005 Jun 132030 Jun 132048SHA-1Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1130333https://www.icahuelva.es/ NEED: Must serve up intermediate certs along with SSL cert. Error code: sec_error_unknown_issuerNEED: Please consider the types of SSL certificates that need to be issued within this CA hierarchy, and if applicable provide a list of names to constrain the CA hierarchy to. Constraints may look like: *.us, *.gov.us, *.gov, *.milredabogacia.abogacia.eshttps://documentacion.redabogacia.org/docushare/dsweb/View/Collection-1001https://documentacion.redabogacia.org/docushare/dsweb/Get/Document-3349164/CP3_ACA_002.0_GB.pdfhttps://documentacion.redabogacia.org/docushare/dsweb/Get/Document-3349086/CPS_ACA_012.0_EN.pdfhttps://cert.webtrust.org/SealFile?seal=1330&file=pdfhttps://cert.webtrust.org/SealFile?seal=1330&file=pdfErnst & Young (EY)WebTrust2014.11.20NEED: Provide URL to publicly disclosed and audited subCAs as per item #5 of https://wiki.mozilla.org/CA:Communications#May_13.2C_2014

.

Deutscher Sparkassen Verlag GmbH (S-TRUST, DSV-Gruppe)Deutscher Sparkassen Verlag GmbHS-TRUST Certification ServicesS-TRUST Universal Root CAApproved, Pending Inclusionhttps://www.s-trust.de/ablage_download_dokumente/ablage_zertifikate/S-TRUST_Universal_Root_CA1.cer1B:3D:11:14:EA:7A:0F:95:58:54:41:95:BF:6B:25:82:AB:40:CE:9A2013 Oct 222038 Oct 212048SHA-256EmailNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1011182Example Cert: https://bugzilla.mozilla.org/attachment.cgi?id=8506014None -- only email trust bit enabled.https://www.s-trust.de/https://www.s-trust.de/stn-cpshttps://www.s-trust.de/stn-cpshttps://www.s-trust.de/stn-cpshttps://www.tuvit.de/data/content_data/tuevit_en/6744UE_s.pdfNot requesting websites trust bit.TUVITETSI TS 102 0422014.04.11See #4 of https://wiki.mozilla.org/CA:CertificatePolicyV2.1#Frequently_Asked_Questions

.

EntrustEntrust, Inc.(c) 2012 Entrust, Inc. - for authorized use onlyEntrust Root Certification Authority - EC1Approved, Pending Inclusion and EVhttps://bugzilla.mozilla.org/attachment.cgi?id=81366420:D8:06:40:DF:9B:25:F5:12:25:3A:11:EA:F7:59:8A:EB:14:B5:472012 Dec 182037 Dec 18ECC P-384ECCCode; Email; Websites2.16.840.1.114028.10.1.2https://bugzilla.mozilla.org/show_bug.cgi?id=849950https://validec.entrust.netNonehttp://www.entrust.net/http://www.entrust.net/CPShttp://www.entrust.net/CPShttp://www.entrust.net/CPShttps://entrust.webtrust.org/SealFile?seal=328&file=pdfhttps://entrust.webtrust.org/SealFile?seal=328&file=pdfhttps://entrust.webtrust.org/SealFile?seal=328&file=pdfDeloitte LLPWebTrust2014.04.21http://www.entrust.net/about/third-party-sub-ca.htm

.

EntrustEntrust, Inc.(c) 2009 Entrust, Inc.-for authorized use onlyEntrust Root Certification Authority - G2Approved, Pending Inclusion and EVhttps://bugzilla.mozilla.org/attachment.cgi?id=5670598C:F4:27:FD:79:0C:3A:D1:66:06:8D:E8:1E:57:EF:BB:93:22:72:D42009 Jul 072030 Dec 072048SHA-256Code; Email; Websites2.16.840.1.114028.10.1.2https://bugzilla.mozilla.org/show_bug.cgi?id=849950https://validg2.entrust.net/Nonehttp://www.entrust.net/http://www.entrust.net/CPShttp://www.entrust.net/CPShttp://www.entrust.net/CPShttps://entrust.webtrust.org/SealFile?seal=328&file=pdfhttps://entrust.webtrust.org/SealFile?seal=328&file=pdfhttps://entrust.webtrust.org/SealFile?seal=328&file=pdfDeloitte LLPWebTrust2014.04.21http://www.entrust.net/about/third-party-sub-ca.htm

.

Fábrica Nacional de Moneda y Timbre (FNMT)FNMT-RCMAC RAIZ FNMT-RCMAC RAIZ FNMT-RCMNeed Information from CAhttp://www.cert.fnmt.es/certs/ACRAIZFNMTRCM.crtB8:65:13:0B:ED:CA:38:D2:7F:69:92:94:20:77:0B:ED:86:EF:BC:102008 Oct 292029 Dec 314096SHA-1Code; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=435736https://www.sede.fnmt.gob.es/certificadosNonehttp://www.cert.fnmt.es/https://www.sede.fnmt.gob.es/normativa/declaracion-de-practicas-de-certificacionhttps://www.sede.fnmt.gob.es/documents/11614/67070/dpc_componentes_english.pdf/https://www.sede.fnmt.gob.es/documents/11614/137578/dpc_english.pdf/NEED - https://bugzilla.mozilla.org/show_bug.cgi?id=435736#c133https://cert.webtrust.org/SealFile?seal=1784&file=pdfPricewaterhouseCoopersAll subCAs are disclosed in the dgpc_english.pdf document.

.

Symantec / GeoTrustGeoTrust Inc.(c) 2007 GeoTrust Inc. - For authorized use onlyGeoTrust Primary Certification Authority - G2Need Information from CAAlready Included8D:17:84:D5:37:F3:03:7D:EC:70:FE:57:8B:51:9A:99:E6:10:D7:B02007 Nov 052038 Jan 18ECCECCCode; Email; Websites1.3.6.1.4.1.14370.1.6https://bugzilla.mozilla.org/show_bug.cgi?id=834004https://ssltest42.ssl.symclab.com/http://www.geotrust.com/http://www.geotrust.com/resources/repository/legalhttp://www.geotrust.com/resources/repository/legalhttps://cert.webtrust.org/SealFile?seal=1567&file=pdfhttp://www.symantec.com/content/en/us/about/media/repository/symantec-webtrust-audit-report.pdfhttps://cert.webtrust.org/SealFile?seal=1567&file=pdfKPMGWebTrust2014.06.18https://bugzilla.mozilla.org/show_bug.cgi?id=1019860

.

Government of Taiwan, Government Root Certification Authority (GRCA)Government Root Certification AuthorityTaiwan Government Root Certification AuthorityNeed Information from CAhttp://grca.nat.gov.tw/repository/Certs/GRCA2.cerB0:91:AA:91:38:47:F3:13:D7:27:BC:EF:C8:17:9F:08:6F:3A:8C:0F2012 Nov 282037 Dec 314096SHA-256Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1065896https://gcaweb.nat.gov.tw/GCAEE/GCAPriApply/GCAPriApply.htmlconstrain to *.twhttp://grca.nat.gov.tw/01-06.htmlhttp://grca.nat.gov.tw/download/GPKI_CP_eng_v1.7.pdfhttp://grca.nat.gov.tw/download/GRCA_CPS_eng_v1.4.pdfhttps://cert.webtrust.org/SealFile?seal=1663&file=pdfKPMGWebTrust2014.04.23http://grca.nat.gov.tw/

.

Guangdong Certificate Authority CO.,LTD (GDCA)GUANG DONG CERTIFICATE AUTHORITY CO.,LTD.GDCA TrustAUTH R5 ROOTNeed Information from CAhttp://www.gdca.com.cn/cert/GDCA_TrustAUTH_R5_ROOT.der0F:36:38:5B:81:1A:25:C3:9B:31:4E:83:CA:E9:34:66:70:CC:74:B42014 Nov 262040 Dec 314096SHA-256Code; Websites1.2.156.112559.1.1.6.1https://bugzilla.mozilla.org/show_bug.cgi?id=1128392NEED: URL to a website (may be a test website) whose EV SSL cert chains up to this root.Nonehttp://www.gdca.com.cn/http://www.gdca.com.cn/cp/cphttp://www.gdca.com.cn/cps/cpsNEED: See sections11 through 17 of https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/inclusion/NEED: Please carefully review this wiki page with your auditor: https://wiki.mozilla.org/CA:BaselineRequirementsPricewaterhouseCoopers Zhong Tian LLPNEED: URL to publicly-disclosed and audited subordinate CAs. as per sections 8 through 10 of https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/inclusion/

.

ICP Brasil (Infra-Estrutura de Chaves Públicas Brasileira)ICP-BrasilInstituto Nacional de Tecnologia da Informacao - ITIAutoridade Certificadora Raiz Brasileira v1Need Information from CAhttp://acraiz.icpbrasil.gov.br/ICP-Brasil.crt70:5D:2B:45:65:C7:04:7A:54:06:94:A7:9A:F7:AB:B8:42:BD:C1:612008 Jul 292021 Jul 292048SHA-1WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=438825http://www.icpbrasil.gov.br/

.

IdenTrustIdenTrustIdenTrust Commercial Root CA 1Approved, Pending Inclusionhttps://bugzilla.mozilla.org/attachment.cgi?id=8473319DF:71:7E:AA:4A:D9:4E:C9:55:84:99:60:2D:48:DE:5F:BC:F0:3A:252014 Jan 162034 Jan 164096SHA-256Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1037590https://sha2ssl-trustidvalid.identrustssl.com/Nonehttp://www.identrust.com/https://secure.identrust.com/certificates/policy/ts/https://secure.identrust.com/certificates/policy/ts/https://secure.identrust.com/certificates/policy/ts/https://cert.webtrust.org/SealFile?seal=1720&file=pdfhttps://secure.identrust.com/certificates/policy/ts/current-baseline-requirements-audit.pdfBrightLineWebTrust2014.07.25http://testssl.identrust.com/

.

IdenTrustIdenTrustIdenTrust Public Sector Root CA 1Approved, Pending Inclusionhttps://bugzilla.mozilla.org/attachment.cgi?id=8473320BA:29:41:60:77:98:3F:F4:F3:EF:F2:31:05:3B:2E:EA:6D:4D:45:FD2014 Jan 162034 Jan 164096SHA-256Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1037590https://sha2ssl-acesvalid.identrust.com/Nonehttp://www.identrust.com/https://secure.identrust.com/certificates/policy/aces/https://secure.identrust.com/certificates/policy/aces/https://secure.identrust.com/certificates/policy/aces/https://cert.webtrust.org/SealFile?seal=1720&file=pdfhttps://secure.identrust.com/certificates/policy/ts/current-baseline-requirements-audit.pdfBrightLineWebTrust2014.07.25http://testssl.identrust.com/

.

Government of India (CCA)India PKICCA IndiaOn Hold97:22:6A:AE:4A:7A:64:A5:9B:D1:67:87:F2:7F:84:1C:0A:00:1F:D0https://bugzilla.mozilla.org/show_bug.cgi?id=557167gov.in, nic.in, ac.in, rbi.org.in, bankofindia.co.in, ncode.in. tcs.co.inhttp://www.cca.gov.in/

.

Institute for Development and Research in Banking Technology (IDRBT)India PKIIDRBT CA 2011Need Information from CAhttp://idrbtca.org.in/Download/CA_Certificate_SHA2.cerC4:76:9E:35:76:51:78:D4:DE:54:34:E6:B4:E2:58:15:E9:0D:0C:FE2011 Mar 112016 Mar 112048SHA-256Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=562764https://services.idrbtca.org.in/http://idrbtca.org.in/http://idrbtca.org.in/repository.htmhttp://idrbtca.org.in/CPS.htmlhttps://bugzilla.mozilla.org/attachment.cgi?id=472254Digital Age StrategiesWebTrust Equivalent2010.02.09

.

Inera AB (SITHS)Inera ABSITHS Root CA v1Need Information from CAhttp://aia.siths.se/sithsrootcav1.cer58:5F:78:75:BE:E7:43:3E:B0:79:EA:AB:7D:05:BB:0F:7A:F2:BC:CC2012 Mar 292032 Mar 294096SHA-1Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=792337https://v1.test.msoft.siths.sehttp://www.inera.se/Infrastrukturtjanster/SITHS/http://www.inera.se/Documents/TJANSTER_PROJEKT/Identifieringstjanst_SITHS/Anslutningsdokument_Inera/SITHS-certifikat/siths_certicate_policy.pdfhttp://www.inera.se/SITHSDokumenthttps://cert.webtrust.org/SealFile?seal=1383&file=pdfErnst & YoungWebTrust2012.03.31

.

Government of Japan, Ministry of Internal Affairs and CommunicationsJapanese GovernmentGPKIApplicationCA2 RootNeed Information from CAhttps://www.gpki.go.jp/apca2/APCA2Root.derF0:0F:C3:7D:6A:1C:92:61:FB:6B:C1:C2:18:49:8C:5A:A4:DC:51:FB2013 Mar 122033 Mar 122048SHA-256Code; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=870185https://www2.gpki.go.jp/apca2/apca2_eng.htmlConstrain CA hierarchy to *.go.jp domain.http://www.gpki.go.jp/https://www2.gpki.go.jp/apca2/apca2_eng.htmlhttps://www2.gpki.go.jp/apca2/cpcps/cpcps_root_eng.pdfhttps://www2.gpki.go.jp/apca2/cpcps/cpcps_sub_eng.pdfhttps://cert.webtrust.org/SealFile?seal=1793&file=pdfNEED: Public-facing BR Readiness Audit statement. Please carefully review: https://wiki.mozilla.org/CA:BaselineRequirementsKPMG AZSA LLCWebTrust2014.12.25https://www2.gpki.go.jp/apca2/apca2_eng.html

.

Korea Information Security Agency (KISA)KISAKorea Certification Authority CentralKISA RootCA 1Need Information from CAhttp://www.rootca.or.kr/certs/root-rsa-3280.der02:72:68:29:3E:5F:5D:17:AA:A4:B3:C3:E6:36:1E:1F:92:57:5E:AA2005 Aug 242025 Aug 242048Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=335197https://www.kisa.or.kr/main.jsphttp://www.rootca.or.kr/http://www.rootca.or.kr/kor/accredited/accredited02.jsphttp://www.rootca.or.kr/kor/down/cps15(en).pdfhttps://bugzilla.mozilla.org/attachment.cgi?id=479645MOPASWebTrust Equivalent2009.01.01

.

Krajowa Izba Rozliczeniowa S.A. (KIR)Krajowa Izba Rozliczeniowa S.A.SZAFIR ROOT CAIn Public Discussionhttp://www.elektronicznypodpis.pl/certyfikaty/root_ca.crtD3:EE:FB:CB:BC:F4:98:67:83:86:26:E2:3B:B5:9C:A0:1E:30:5D:B72011 Dec 062031 Dec 062048SHA-1Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=817994https://ssl.elektronicznypodpis.plNonehttp://www.kir.com.pl/Polish: http://www.elektronicznypodpis.pl/informacje/podstawy-prawne/ English: http://eng.elektronicznypodpis.pl/en/information/documents-and-agreementshttp://elektronicznypodpis.pl/files/doc/certification_policy.pdfhttp://www.elektronicznypodpis.pl/files/doc/certification_practice_statement.pdfhttps://cert.webtrust.org/SealFile?seal=1681&file=pdfhttps://cert.webtrust.org/SealFile?seal=1681&file=pdfEYWebTrust2014.05.05https://bugzilla.mozilla.org/show_bug.cgi?id=817994

.

LAWtrustLAWtrustLAW Trusted Third Party Services PTY Ltd.LAWtrust Root Certification Authority 2048Need Information from CAhttps://www.lawtrust.co.za/documents/LAWTRUST-ROOT-CA-CERTIFICATE.cer33:5A:7F:F0:09:27:CF:2D:F2:78:E2:C9:19:2F:7A:4D:55:34:F8:0C2012 May 162032 May 162048SHA-1EmailNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1023726Not requesting Websites trust bit, so do not need a test website. Please provide an example cert.None.https://www.lawtrust.co.zahttps://www.lawtrust.co.za/repository/CP Not Publishedhttps://www.lawtrust.co.za/documents/LAWTRUST-ROOT-CPS.pdfhttps://cert.webtrust.org/SealFile?seal=1664&file=pdfKPMGWebTrust2014.04.29Item #4 of https://wiki.mozilla.org/CA:CertificatePolicyV2.1#Frequently_Asked_Questions

.

LuxTrustLuxTrust s.a.LuxTrust Global RootIn Public Discussionhttps://www.luxtrust.lu/downloads/root/LTGRCA_der.cerC9:3C:34:EA:90:D9:13:0C:0F:03:00:4B:98:BD:8B:35:70:91:56:112011 Mar 172021 Mar 172048SHA-256Code; Websites1.3.171.1.1.10.5.2https://bugzilla.mozilla.org/show_bug.cgi?id=944783https://www.trustme.lu/Nonehttps://www.luxtrust.luhttps://repository.luxtrust.luhttps://www.luxtrust.lu/upload/data/repository/LuxTrust%20Global%20Root%20CA%20-%20Certificate%20Profiles%20v1.20.pdfhttps://www.luxtrust.lu/upload/data/repository/LuxTrust_Global_Root%20CA_Certification_Practice_Statements_v1_08.pdfhttp://www.lsti-certification.fr/images/fichiers/11085.pdfhttp://www.lsti-certification.fr/images/fichiers/11085.pdf With note: https://bugzilla.mozilla.org/show_bug.cgi?id=944783#c31http://www.lsti-certification.fr/images/fichiers/11085.pdfLSTIETSI TS 102 0422014.07.23https://www.luxtrust.lu/downloads/root/LTSSLCA_der.cer

.

MULTICERTMULTICERT - Serviços de Certificação Electrónica S.A.MULTICERT Root Certification Authority 01Need Information from CAhttp://pkiroot.multicert.com/cert/46:AF:7A:31:B5:99:46:0D:46:9D:60:41:14:5B:13:65:1D:F9:17:0A2014 Apr 042039 Apr 044096SHA-256Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1040072https://promotor.teste.multicert.com/https://www.multicert.com/pt/https://pki.multicert.com/pol/cp/webserver.htmlhttps://pki.multicert.com/pol/cps/MULTICERT_CA.htmlhttp://www.gns.gov.pt/media/1891/TSLPTHR.pdfGNSETSI TS 102 0422014.06.20

.

NetrustNetrust Certificate Authority 1Netrust CA1Netrust CA1Need Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=51286855:C8:6F:74:14:AC:8B:DD:68:14:F4:D8:6A:F1:5F:37:10:E1:04:D02001 Mar 292012 Mar 292048SHA-1Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=632292http://www.netrust.net/https://www.netrust.net/ourpractices.phphttps://www.netrust.net/docs/ourpractices/cps.pdfhttps://bugzilla.mozilla.org/attachment.cgi?id=532149

.

Open Access Technology International, Inc. (OATI)Open Access Technology International IncOATI WebCARES Root CANeed Information from CAhttp://www.oaticerts.com/repository/OATICA2.crt4B:6B:D2:D3:88:4E:46:C8:0C:E2:B9:62:BC:59:8C:D9:D5:D8:40:132008 Jun 032038 Jun 034096SHA-1Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=848766https://www.oaticerts.com/http://www.oati.com/http://www.oaticerts.com/repository/http://www.oaticerts.com/repository/OATI-webCARES-CPS.pdfhttps://cert.webtrust.org/SealFile?seal=1447&file=pdfSchellman & CompanyWebTrust2013.01.09

.

OpenTrust / KEYNECTISOpenTrustOpenTrust Root CA G1Need Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=844679179:91:E8:34:F7:E2:EE:DD:08:95:01:52:E9:55:2D:14:E9:58:D5:7E2014 May 262038 Jan 154096SHA-256Code; Email; Websites1.3.6.1.4.1.22234.2.5.2.3.1https://bugzilla.mozilla.org/show_bug.cgi?id=1025095https://opentrustrootcag1-test.opentrust.comhttp://www.opentrust.com/en/certification-policyhttps://www.opentrust.com/images/stories/OpenTrust_DMS_PC_Certificats_OpenTrust_SSL_RGS_et_ETSI_V1_1s.pdfhttp://www.opentrust.com/images/stories/DMS_RCA_Program_OpenTrust_CP_v_1_0s.pdfhttp://www.lsti-certification.fr/images/liste_entreprise/Liste%20PSCe.pdfhttps://www.opentrust.com/ca-certificate-program-opentrust/Ind_Aud_rep_LSTI_S.pdfLSTIETSI TS 102 042 and WebTrust for EV2014.01.23https://www.opentrust.com/ca-certificate-program-opentrust/ca-certificate-program-opentrust.html

.

OpenTrust / KEYNECTISOpenTrustOpenTrust Root CA G2Need Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=844679279:5F:88:60:C5:AB:7C:3D:92:E6:CB:F4:8D:E1:45:CD:11:EF:60:0B2014 May 262038 Jan 154096SHA-512Code; Email; Websites1.3.6.1.4.1.22234.2.5.2.3.1https://bugzilla.mozilla.org/show_bug.cgi?id=1025095https://opentrustrootcag2-test.opentrust.comhttp://www.opentrust.com/en/certification-policyhttps://www.opentrust.com/images/stories/OpenTrust_DMS_PC_Certificats_OpenTrust_SSL_RGS_et_ETSI_V1_1s.pdfhttp://www.opentrust.com/images/stories/DMS_RCA_Program_OpenTrust_CP_v_1_0s.pdfhttp://www.lsti-certification.fr/images/liste_entreprise/Liste%20PSCe.pdfhttps://www.opentrust.com/ca-certificate-program-opentrust/Ind_Aud_rep_LSTI_S.pdfLSTIETSI TS 102 042 and WebTrust for EV2014.01.23https://www.opentrust.com/ca-certificate-program-opentrust/ca-certificate-program-opentrust.html

.

OpenTrust / KEYNECTISOpenTrustOpenTrust Root CA G3Need Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=84467936E:26:64:F3:56:BF:34:55:BF:D1:93:3F:7C:01:DE:D8:13:DA:8A:A62014 May 262038 Jan 15ECCECCCode; Email; Websites1.3.6.1.4.1.22234.2.5.2.3.1https://bugzilla.mozilla.org/show_bug.cgi?id=1025095https://opentrustrootcag3-test.opentrust.comhttp://www.opentrust.com/en/certification-policyhttps://www.opentrust.com/images/stories/OpenTrust_DMS_PC_Certificats_OpenTrust_SSL_RGS_et_ETSI_V1_1s.pdfhttp://www.opentrust.com/images/stories/DMS_RCA_Program_OpenTrust_CP_v_1_0s.pdfhttp://www.lsti-certification.fr/images/liste_entreprise/Liste%20PSCe.pdfhttps://www.opentrust.com/ca-certificate-program-opentrust/Ind_Aud_rep_LSTI_S.pdfLSTIETSI TS 102 042 and WebTrust for EV2014.01.23https://www.opentrust.com/ca-certificate-program-opentrust/ca-certificate-program-opentrust.html

.

French Institute of Certified Public Accountants (CSOEC)Ordre des Experts-Comptables0002 775670003Ordre des Experts-ComptablesOn Holdhttps://www.signexpert.fr/cms/index.php/content/download/770/3228/version/1/file/AC-R.cer82:71:9A:76:9D:88:18:2C:70:B9:C0:C9:24:73:6B:D7:A7:11:CF:C72011 May 092031 May 094096SHA-256EmailNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=844163Not requesting websites trust bit.https://www.signexpert.frhttps://www.signexpert.fr/cms/index.php/Cadre-legal/La-politique-de-certificationhttps://www.signexpert.fr/cms/index.php/Cadre-legal/La-politique-de-certificationhttps://bugzilla.mozilla.org/attachment.cgi?id=792857Not requesting websites trust bit.LSTIETSI TS 101 4562012.11.26

.

SECOM Trust Systems Co. Ltd.SECOM Trust Systems CO.,LTD.Security Communication RootCA2Security Communication RootCA2Need Information from CAhttps://repository.secomtrust.net/SC-Root2/SCRoot2ca.cer5F:3B:8C:F2:F8:10:B3:7D:78:B4:CE:EC:19:19:C3:73:34:B9:C7:742009 May 292029 May 292048SHA-256Code; Email; Websites1.2.392.200091.100.721.1https://bugzilla.mozilla.org/show_bug.cgi?id=1096205https://pfwtest.secomtrust.net/Nonehttp://www.secomtrust.net/https://repository.secomtrust.net/SC-Root2/index.htmlhttps://bugzilla.mozilla.org/attachment.cgi?id=8519807https://repository.secomtrust.net/SC-Root/SCRootCPS.pdfhttps://cert.webtrust.org/SealFile?seal=1717&file=pdfhttps://bugzilla.mozilla.org/attachment.cgi?id=8519802https://cert.webtrust.org/SealFile?seal=1717&file=pdfPricewaterhouseCoopers AarataWebTrust2014.07.31https://www.secomtrust.net/service/pfw/apply/sr/3_2.html https://www.secomtrust.net/service/pfw/apply/ev/3_2.html

.

Latvian State Radio and Television Centre (LVRTC)Sertifikacijas pakalpojumu dalaE-ME SSI (RCA)CA Action Items from Discussionhttp://www.eme.lv/aia/E-ME%20SSI%20(RCA).crtC9:32:1D:E6:B5:A8:26:66:CF:69:71:A1:8A:56:F2:D3:A8:67:56:022009 May 192027 May 194096SHA-1Code; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=518098https://www.eme.lv/csp-web/certsearch.aspx?lang=LAThttp://www.e-me.lv/http://info.e-me.lv/wp-content/uploads/2010/01/E-ME_CP_SP_v2-3_LAT_ENG.pdfhttp://info.e-me.lv/wp-content/uploads/2011/08/E-ME-SN-v1_9-LatEng.pdfhttps://bugzilla.mozilla.org/attachment.cgi?id=628079KPMGETSI TS 101 4562011.05.02

.

Superintendencia de Servicios de Certificación Electrónica (SUSCERTE)Sistema Nacional de Certificacion ElectronicaSuperintendencia de Servicios de Certificacion ElectronicaAutoridad de Certificacion Raiz del Estado VenezolanoOn Holdhttps://bugzilla.mozilla.org/attachment.cgi?id=375214DD:83:C5:19:D4:34:81:FA:D4:C2:2C:03:D7:02:FE:9F:3B:22:F5:172007 Feb 162027 Feb 114096SHA-1Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=489240http://www.suscerte.gob.ve/

.

PSC-FIISistema Nacional de Certificacion ElectronicaSuperintendencia de Servicios de Certificacion ElectronicaPSC Publico del MCT para el Estado VenezolanoNeed Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=542275B2:60:C7:09:D5:B7:D0:BD:97:42:DE:DA:AF:EF:87:6B:33:6C:A7:392008 Jul 112018 Jul 094096SHA-1Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=667466https://ar.fii.gob.ve/https://ar.fii.gob.ve/https://ar.fii.gob.ve/pub/docs/https://ar.fii.gob.ve/pub/docs/DPC1.pdfhttp://www.suscerte.gob.ve/index.php/es/certificacion/proveedores-acreditadosSUSCERTE Registered AuditorETSI TS 101 456

.

SSC, Skaitmeninio Sertifkavimo CentrasSkaitmeninio sertifikavimo centrasCA ROOT ServicesSSC GDL CA Root ANeed Information from CAhttps://gdl.repository.ssc.lt/certs/roota.crt0C:20:09:A4:A8:8D:8B:42:02:18:52:50:54:0C:C4:2B:DF:B5:B0:892013 Jun 042033 Jun 044096SHA-256Code; EmailNot EVhttp://bugzilla.mozilla.org/show_bug.cgi?id=379152Example Cert: https://gdl.repository.ssc.lt/certs/test-v-class2-4qca.cerNonehttp://www.ssc.lt/https://gdl.repository.ssc.lt/en/repository/documents/https://gdl.repository.ssc.lt/en/repository/documents/certificate-policy-ssc-gdl-ca-v4.4.pdfhttps://gdl.repository.ssc.lt/en/repository/documents/certificate-practice-statement-ssc-gdl-ca-v4.7.pdfhttps://gdl.repository.ssc.lt/en/audit/2015/TÜV Informationstechnik GmbHETSI TS 101 4562014.07.04https://gdl.repository.ssc.lt/en/repository/authority-certificates-and-crls/

.

SSC, Skaitmeninio Sertifkavimo CentrasSkaitmeninio sertifikavimo centrasCA ROOT ServicesSSC GDL CA Root BNeed Information from CAhttps://gdl.repository.ssc.lt/certs/rootb.crtC8:60:A3:18:FC:F5:B7:13:0B:10:07:AD:7F:61:4A:40:FF:FF:18:5F2013 Jun 042033 Jun 044096SHA-256Code; Email; Websites0.4.0.2042.1.4 (ETSI EVCP) 0.4.0.2042.1.5 (ETSI EVCP+) 2.23.140.1.1 (CAB Forum) QUESTION: Do you need all of these in https://mxr.mozilla.org/mozilla-central/source/security/certverifier/ExtendedValidation.cpp ? Or just the first one?http://bugzilla.mozilla.org/show_bug.cgi?id=379152https://evssl.gdl.ssc.lt/Nonehttp://www.ssc.lt/https://gdl.repository.ssc.lt/en/repository/documents/https://gdl.repository.ssc.lt/en/repository/documents/certificate-policy-ssc-gdl-ca-v4.4.pdfhttps://gdl.repository.ssc.lt/en/repository/documents/certificate-practice-statement-ssc-gdl-ca-v4.7.pdfhttps://gdl.repository.ssc.lt/en/audit/2015/https://www.tuvit.de/data/content_data/tuevit_en/6729UE_s.pdfhttps://www.tuvit.de/data/content_data/tuevit_en/6729UE_s.pdfTÜV Informationstechnik GmbHETSI TS 102 0422014.07.04https://gdl.repository.ssc.lt/en/repository/authority-certificates-and-crls/

.

SSC, Skaitmeninio Sertifkavimo CentrasSkaitmeninio sertifikavimo centrasVS ROOT ServicesSSC GDL CA VS RootNeed Information from CAhttps://gdl.repository.ssc.lt/certs/rootvs.crtD2:69:5E:12:F5:92:E9:C8:EE:2A:4C:B8:D5:5E:29:5F:EE:6B:2D:312013 Jun 042033 Jun 044096SHA-256EmailNot EVhttp://bugzilla.mozilla.org/show_bug.cgi?id=379152Example Cert: https://gdl.repository.ssc.lt/certs/test-v-vsclass2-4qca.cerNonehttp://www.ssc.lt/https://gdl.repository.ssc.lt/en/repository/documents/https://gdl.repository.ssc.lt/en/repository/documents/certificate-policy-ssc-gdl-ca-v4.4.pdfhttps://gdl.repository.ssc.lt/en/repository/documents/certificate-practice-statement-ssc-gdl-ca-v4.7.pdfhttps://gdl.repository.ssc.lt/en/audit/2015/TÜV Informationstechnik GmbHETSI TS 101 4562014.07.04https://gdl.repository.ssc.lt/en/repository/authority-certificates-and-crls/

.

South African Post Office Limited (SAPO)South African Post Office LimitedSAPO Trust CentreSAPO Class 2 Root CANeed Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=8505789E4:55:01:60:8A:A1:EF:89:E2:7B:8C:D3:C3:B3:4C:03:B0:38:E6:D72010 Sep 152030 Sep 142048SHA-1EmailNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1067887Doesn't issue SSL certshttp://www.postoffice.co.za/https://www.trustcentre.co.za/links.phphttps://www.trustcentre.co.za/docs/cps.pdfhttps://cert.webtrust.org/SealFile?seal=1739&file=pdfDoesn't issue SSL certsKPMGWebTrust2014.08.28

.

South African Post Office Limited (SAPO)South African Post Office LimitedSAPO Trust CentreSAPO Class 3 Root CANeed Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=850579038:DD:76:59:C7:35:10:0B:00:A2:37:E4:91:B7:BC:0F:FC:D2:31:6C2010 Sep 152030 Sep 144096SHA-1Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1067887https://www.trustcentre.co.za/http://www.postoffice.co.za/https://www.trustcentre.co.za/links.phphttps://www.trustcentre.co.za/docs/cps.pdfhttps://cert.webtrust.org/SealFile?seal=1739&file=pdfKPMGWebTrust2014.08.28

.

South African Post Office Limited (SAPO)South African Post Office LimitedSAPO Trust CentreSAPO Class 4 Root CANeed Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=850579220:A8:F5:FF:C4:3A:F4:A9:BC:89:88:1E:BF:99:20:FF:91:E9:FD:0A2010 Sep 152030 Sep 144096SHA-1EmailNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1067887Doesn't issue SSL certshttp://www.postoffice.co.za/https://www.trustcentre.co.za/links.phphttps://www.trustcentre.co.za/docs/cps.pdfhttps://cert.webtrust.org/SealFile?seal=1739&file=pdfDoesn't issue SSL certsKPMGWebTrust2014.08.28

.

Government of The Netherlands, PKIoverheidStaat der NederlandenStaat der Nederlanden EV Root CAApproved, Pending Inclusion and EVhttp://cert.pkioverheid.nl/EVRootCA.cer76:E2:7E:C1:4F:DB:82:C1:C0:A6:75:B5:05:BE:3D:29:B4:ED:DB:BB2010 Dec 082022 Dec 084096SHA-256Websites2.16.528.1.1003.1.2.7https://bugzilla.mozilla.org/show_bug.cgi?id=1016568https://pkioevssl-v.quovadisglobal.comNonehttps://www.logius.nl/languages/english/pkioverheid/https://www.logius.nl/languages/english/pkioverheid/https://www.logius.nl/languages/english/pkioverheid/https://www.logius.nl/languages/english/pkioverheid/http://cert.webtrust.org/SealFile?seal=1652&file=pdfhttp://cert.webtrust.org/SealFile?seal=1652&file=pdfhttps://bugzilla.mozilla.org/attachment.cgi?id=8429540KPMGWebTrust2014.03.20https://bugzilla.mozilla.org/show_bug.cgi?id=551399

.

Government of The Netherlands, PKIoverheidStaat der NederlandenStaat der Nederlanden Root CA - G3Approved, Pending Inclusionhttp://cert.pkioverheid.nl/RootCA-G3.cerD8:EB:6B:41:51:92:59:E0:F3:E7:85:00:C0:3D:B6:88:97:C9:EE:FC2013 Nov 142028 Nov 134096SHA-256Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1016568https://roottest-g3.pkioverheid.nlNonehttps://www.logius.nl/languages/english/pkioverheid/https://www.logius.nl/languages/english/pkioverheid/https://www.logius.nl/languages/english/pkioverheid/https://www.logius.nl/languages/english/pkioverheid/http://cert.webtrust.org/SealFile?seal=1652&file=pdfhttp://cert.webtrust.org/SealFile?seal=1652&file=pdfKPMGWebTrust2014.03.20https://bugzilla.mozilla.org/show_bug.cgi?id=551399

.

SymantecSymantec CorporationSymantec Trust NetworkSymantec Class 1 Public Primary Certification Authority - G6Ready for Public Discussionhttps://www.symantec.com/content/en/us/enterprise/verisign/roots/PCA_1_G6.pem51:7F:61:1E:29:91:6B:53:82:FB:72:E7:44:D9:8D:C3:CC:53:6D:642011 Oct 182037 Dec 012048SHA-256Emailhttps://bugzilla.mozilla.org/show_bug.cgi?id=833986example cert: https://bugzilla.mozilla.org/attachment.cgi?id=717223Nonehttp://www.symantec.com/https://www.symantec.com/content/en/us/about/media/repository/https://www.symantec.com/content/en/us/about/media/repository/stn-cp.pdfhttps://www.symantec.com/content/en/us/about/media/repository/stn-cps.pdfhttps://cert.webtrust.org/SealFile?seal=1565&file=pdfKPMGWebTrust2014.06.18Only the email trust bit will be set for this root. See item #4 of https://wiki.mozilla.org/CA:CertificatePolicyV2.1#Frequently_Asked_Questions

.

SymantecSymantec CorporationSymantec Trust NetworkSymantec Class 2 Public Primary Certification Authority - G6Ready for Public Discussionhttps://www.symantec.com/content/en/us/enterprise/verisign/roots/PCA_2_G6.pem40:B3:31:A0:E9:BF:E8:55:BC:39:93:CA:70:4F:4E:C2:51:D4:1D:8F2011 Oct 182037 Dec 012048SHA-256Emailhttps://bugzilla.mozilla.org/show_bug.cgi?id=833986example cert: https://bugzilla.mozilla.org/attachment.cgi?id=717223Nonehttp://www.symantec.com/https://www.symantec.com/content/en/us/about/media/repository/https://www.symantec.com/content/en/us/about/media/repository/stn-cp.pdfhttps://www.symantec.com/content/en/us/about/media/repository/stn-cps.pdfhttps://cert.webtrust.org/SealFile?seal=1565&file=pdfKPMGWebTrust2014.06.18Only the email trust bit will be set for this root. See item #4 of https://wiki.mozilla.org/CA:CertificatePolicyV2.1#Frequently_Asked_Questions

.

SymantecSymantec CorporationSymantec Trust NetworkSymantec Class 3 Public Primary Certification Authority - G7Need Information from CAhttps://knowledge.verisign.com/support/ssl-certificates-support/index?page=content&id=AR1916&actp=search&viewlocale=en_US&searchid=141745259250575:92:75:24:04:90:C9:E4:03:F3:B4:86:99:40:33:FF:F4:D7:E5:662012 Oct 152037 Dec 012048DSACode; Email; Websites2.16.840.1.113733.1.7.23.6https://bugzilla.mozilla.org/show_bug.cgi?id=833986https://ssltest37.ssl.symclab.com/Nonehttp://www.symantec.com/https://www.symantec.com/content/en/us/about/media/repository/https://www.symantec.com/content/en/us/about/media/repository/stn-cp.pdfhttps://www.symantec.com/content/en/us/about/media/repository/stn-cps.pdfhttps://cert.webtrust.org/SealFile?seal=1565&file=pdfhttp://www.symantec.com/content/en/us/about/media/repository/symantec-webtrust-audit-report.pdfhttps://cert.webtrust.org/SealFile?seal=1565&file=pdfKPMGWebTrust2014.06.18What is the link to the publicly disclosed/audited subCAs for this root? i.e. for the subCAs that are not technically constrained. See https://wiki.mozilla.org/CA:CertificatePolicyV2.1#Frequently_Asked_Questions

.

Orange / SignetTelekomunikacja Polska S.A.Signet Certification AuthoritySignet Root CANeed Information from CAhttp://www.signet.pl/repository/signetrootca/rootca_der.crtB2:BD:90:31:AA:6D:0E:14:F4:C5:7F:D5:48:25:8F:37:B1:FB:39:E42013 May 062038 May 064096SHA-256WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1024418https://ssl-test.signet.plhttp://www.signet.pl/http://www.signet.pl/docs/pc_csiu_1_7.pdfhttp://www.signet.pl/docs/kpc.pdfhttps://cert.webtrust.org/SealFile?seal=1665&file=pdfErnst & YoungWebTrust2014.01.16http://www.signet.pl/repository/index.html

.

Symantec / Thawtethawte, Inc."(c) 2007 thawte, Inc. - For authorized use only"thawte Primary Root CA - G2Need Information from CAAlready IncludedAA:DB:BC:22:23:8F:C4:01:A1:27:BB:38:DD:F4:1D:DB:08:9E:F0:122007 Nov 052038 Jan 18ECCECCCode; Websites2.16.840.1.113733.1.7.48.1https://bugzilla.mozilla.org/show_bug.cgi?id=833998https://ssltest40.ssl.symclab.com/http://www.thawte.com/http://www.thawte.com/repositoryhttp://www.thawte.com/cps/index.htmlhttps://cert.webtrust.org/SealFile?seal=1566&file=pdfhttp://www.symantec.com/content/en/us/about/media/repository/symantec-webtrust-audit-report.pdfhttps://cert.webtrust.org/SealFile?seal=1566&file=pdfKPMGWebTrust2014.06.18https://bugzilla.mozilla.org/show_bug.cgi?id=1019863

.

Swiss BIT, Swiss Federal Office of Information Technology, Systems and Telecommunication (FOITT)The Federal Authorities of the Swiss ConfederationCertification AuthoritiesSwiss Government Root CA IICA Action Items from Discussionhttps://bugzilla.mozilla.org/attachment.cgi?id=549069C7:F7:CB:E2:02:36:66:F9:86:02:5D:4A:3E:31:3F:29:EB:0C:5B:382011 Feb 162035 Feb 164096SHA-256Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=435026https://www.regular.pki.admin.chhttp://www.bit.admin.ch/index.html?lang=enhttp://www.bit.admin.ch/adminpki/00243/index.html?lang=dehttp://www.bit.admin.ch/adminpki/00243/index.html?lang=de

.

Telekom Applied Business Malaysia (TMCA)TMTM Applied Business Certification AuthorityTM Applied Business Root CertificateNeed Information from CAhttps://www.tmca.com.my/portal/info/repositoryPage.html99:57:C5:3F:C5:9F:B8:E7:39:F7:A4:B7:A7:0E:9B:8E:65:9F:20:8C2011 Oct 102031 Oct 102048SHA-256Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1090014https://www.tmca.com.myNonehttps://www.tmca.com.myhttps://www.tmca.com.my/portal/info/legalRepository.htmlhttps://www.tmca.com.my/portal/documents/repositories/TMCA%20CP%20version%201.0.pdfhttps://www.tmca.com.my/portal/documents/repositories/TMCA%20CPS%20version%201.13.pdfhttps://cert.webtrust.org/SealFile?seal=1670&file=pdfNEED URL to BR audit statement: Need an audit statement specific to the Baseline Requirements. Please carefully review: https://wiki.mozilla.org/CA:BaselineRequirements (also have your auditor carefully review this wiki page)PricewaterhouseCoopersWebTrust2014.04.30https://www.tmca.com.my/portal/info/repositoryPage.html

.

TurkTrustTÜRKTRUST Bilgi İletişim ve Bilişim Güvenliği Hizmetleri A.Ş.TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H5In Public Discussionhttp://www.turktrust.com.tr/sertifikalar/TURKTRUST_Elektronik_Sertifika_Hizmet_Saglayicisi_h5.crtC4:18:F6:4D:46:D1:DF:00:3D:27:30:13:72:43:A9:12:11:C6:75:FB2013 Apr 302023 Apr 282048SHA-256Code; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=1007683https://testsuite12001.turktrust.com.trNonehttp://www.turktrust.com.tr/enhttp://www.turktrust.com.tr/en/bilgi-deposuhttp://dl.turktrust.com.tr/pdf/TURKTRUST-CP-v09-SSL.pdfhttp://dl.turktrust.com.tr/pdf/TURKTRUST-CP-v09-SSL.pdfhttps://www.tuvit.de/en/certification-overview-1265-trusted-site-etsi-certificates-1334.htmhttps://www.tuvit.de/en/certification-overview-1265-trusted-site-etsi-certificates-1334.htmhttps://www.tuvit.de/en/certification-overview-1265-trusted-site-etsi-certificates-1334.htmTUVITETSI TS 102 0422014.12.19http://www.turktrust.com.tr/en/bilgi-deposu/kok-sertifikalari-kurulumu-ve-iptal-listeleri/

.

TurkTrustTÜRKTRUST Bilgi İletişim ve Bilişim Güvenliği Hizmetleri A.Ş.TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6In Public Discussionhttp://www.turktrust.com.tr/sertifikalar/TURKTRUST_Elektronik_Sertifika_Hizmet_Saglayicisi_h6.crt8A:5C:8C:EE:A5:03:E6:05:56:BA:D8:1B:D4:F6:C9:B0:ED:E5:2F:E02013 Dec 182023 Dec 182048SHA-256Websites2.16.792.3.0.3.1.1.5https://bugzilla.mozilla.org/show_bug.cgi?id=1007683https://testsuite12002.turktrust.com.trNonehttp://www.turktrust.com.tr/enhttp://www.turktrust.com.tr/en/bilgi-deposuhttp://dl.turktrust.com.tr/pdf/TURKTRUST-CP-v09-SSL.pdfhttp://dl.turktrust.com.tr/pdf/TURKTRUST-CP-v09-SSL.pdfhttps://www.tuvit.de/en/certification-overview-1265-trusted-site-etsi-certificates-1334.htmhttps://www.tuvit.de/en/certification-overview-1265-trusted-site-etsi-certificates-1334.htmhttps://www.tuvit.de/en/certification-overview-1265-trusted-site-etsi-certificates-1334.htmTUVITETSI TS 102 0422014.12.19http://www.turktrust.com.tr/en/bilgi-deposu/kok-sertifikalari-kurulumu-ve-iptal-listeleri/

.

U.S. Federal Public Key Infrastructure (US FPKI)U.S. GovernmentFPKIFederal Common Policy CANeed Information from CAhttp://http.fpki.gov/fcpca/fcpca.crt90:5F:94:2F:D9:F2:8F:67:9B:37:81:80:FD:4F:84:63:47:F6:45:C12010 Dec 012030 Dec 012048SHA-256Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=478418NEED: URL to website whose SSL cert chain up to this root.Mozilla plans to constrain this CA hierarchy, because of the size and complexity of the hierarchy (i.e. FBCA). NEED: Please confirm the list of domains to constrain this hierarchy to. Comment #36 and #46: *gov.us, *.gov, *.mil (CP section 3.1.1)http://www.idmanagement.gov/federal-public-key-infrastructurehttp://www.idmanagement.gov/federal-public-key-infrastructure-policy-authorityhttp://www.idmanagement.gov/sites/default/files/documents/FCPCA%20CP%20v1%2023_0.pdfEach SSP has their own CPS.NEED: URL to list of SSPs and their Current audit statement(s) NEED: Audit statement regarding the root.NEED: URL to the SSPs that can issue SSL certs, and their BR audit statement(s) Please see https://wiki.mozilla.org/CA:BaselineRequirementsNEED: URL to publicly disclosed subCAs, included their CP/CPS documents and their annual audit statements.

.

Shanghai Electronic Certification Authority Co., Ltd. (SHECA)UniTrustUCA Global RootNeed Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=84711420B:97:2C:9E:A6:E7:CC:58:D9:3B:20:BF:71:EC:41:2E:72:09:FA:BF2008 Jan 012037 Dec 314096SHA-1Code; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=566310https://ziguan.xcsc.com/NEED: Please consider the types of SSL certificates that need to be issued within this CA hierarchy, and if applicable provide a list of names to constrain the CA hierarchy to. For example: *.gov, *.mil, *.gov.ushttp://www.sheca.com/http://www.sheca.com/policy/http://www.sheca.com/service/driver/SHECACPENV1.1.2.1.pdfhttp://www.sheca.com/service/driver/SHECACPSENV3.4.2.1.pdfhttps://cert.webtrust.org/SealFile?seal=1683&file=pdfhttps://bug566310.bugzilla.mozilla.org/attachment.cgi?id=8440548PricewaterhouseCoopersWebTrust2014.06.06https://ef-gb.wwwtrust.org/ NEED: I am not able to browse to this site.

.

Shanghai Electronic Certification Authority Co., Ltd. (SHECA)UniTrustUCA RootNeed Information from CAhttps://bugzilla.mozilla.org/attachment.cgi?id=847114082:50:BE:D5:A2:14:43:3A:66:37:7C:BC:10:EF:83:F6:69:DA:3A:672004 Jan 012029 Dec 312048SHA-1Code; Email; WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=566310https://mobile.haier.net/-custom/index_p.htmlNEED: Please consider the types of SSL certificates that need to be issued within this CA hierarchy, and if applicable provide a list of names to constrain the CA hierarchy to. For example: *.gov, *.mil, *.gov.ushttp://www.sheca.com/http://www.sheca.com/policy/http://www.sheca.com/service/driver/SHECACPENV1.1.2.1.pdfhttp://www.sheca.com/service/driver/SHECACPSENV3.4.2.1.pdfhttps://cert.webtrust.org/SealFile?seal=1683&file=pdfhttps://bug566310.bugzilla.mozilla.org/attachment.cgi?id=8440548PricewaterhouseCoopersWebTrust2014.06.06https://ef-g21.wwwtrust.org NEED: I am not able to browse to this site.

.

Unizeto CertumUnizeto Technologies S.A.Certum Certification AuthorityCertum Trusted Network CA 2Need Information from CAhttps://repository.certum.pl/ctnca2.cer3E:5D:35:8F:28:3A:0F:64:7C:1C:92:7F:FB:AA:D4:85:2D:99:72:562011 Oct 062046 Oct 064096SHA-512Code; Email; Websites1.2.616.1.113527.2.5.1.1https://bugzilla.mozilla.org/show_bug.cgi?id=999378https://valid-certum-ctncav2.certificates.certum.pl/http://www.certum.eu/certum/313016.xmlhttp://www.certum.eu/upload_module/wysiwyg/Certum_CP_v3_3.pdfhttp://www.certum.eu/upload_module/wysiwyg/certum/cert_doc/cps/Certum_CPS_v3_6_en.pdfhttps://cert.webtrust.org/SealFile?seal=1697&file=pdfhttps://cert.webtrust.org/SealFile?seal=1699&file=pdfhttps://cert.webtrust.org/SealFile?seal=1698&file=pdfErnst & YoungWebTrust2014.07.09http://www.certum.eu/certum/cert,expertise_root_certificates.xml

.

Finnish Population RegisterVaestorekisterikeskus CAVarmennepalvelutVRK Gov. Root CANeed Information from CAhttp://vrk.fineid.fi/certs/vrkrootc.crtFA:A7:D9:FB:31:B7:46:F2:00:A8:5E:65:79:76:13:D8:16:E0:63:B52002 Dec 182023 Dec 182048SHA-1WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=463989https://www.intermin.fi/http://www.vrk.fi/http://www.fineid.fi/default.aspx?docid=4164http://www.fineid.fi/default.aspx?docid=4162https://bugzilla.mozilla.org/attachment.cgi?id=720615Inspecta FinlandETSI TS 102 0422012.06.15

.

Symantec / VeriSignVeriSign, Inc."VeriSign Trust NetworkVeriSign Class 3 Public Primary Certification Authority - G4Need Information from CAAlready Included22:D5:D8:DF:8F:02:31:D1:8D:F7:9D:B7:CF:8A:2D:64:C9:3F:6C:3A2007 Nov 052038 Jan 18ECCECCCode; Email; Websites2.16.840.1.113733.1.7.23.6https://bugzilla.mozilla.org/show_bug.cgi?id=833974https://ssltest48.ssl.symclab.com/http://www.symantec.com/http://www.verisign.com/repository/vtnCp.htmlhttp://www.verisign.com/repository/CPS/https://cert.webtrust.org/SealFile?seal=1565&file=pdfhttp://www.symantec.com/content/en/us/about/media/repository/symantec-webtrust-audit-report.pdfhttps://cert.webtrust.org/SealFile?seal=1565&file=pdfKPMGWebTrust2014.06.18https://bugzilla.mozilla.org/show_bug.cgi?id=1019864

.

VisaVISAVisa International Service AssociationVisa Information Delivery Root CANeed Information from CAhttp://enroll.visaca.com/VisaInfoDeliveryRootCA.crt5A:4D:0E:8B:5F:DC:FD:F6:4E:72:99:A3:6C:06:0D:B2:22:CA:78:E42005 Jun 272025 Jun 292048SHA-1WebsitesNot EVhttps://bugzilla.mozilla.org/show_bug.cgi?id=636557https://enroll.visaca.com/Nonehttp://www.visa.com/http://www.visa.com/pkihttp://www.visa.com/pki/pdf/VisaPublicKeyInfrastructureCertificatePolicy.pdfNot published. See CP.https://bug636557.bugzilla.mozilla.org/attachment.cgi?id=8475469NEED: BR audit statement for this root and hierarchy. Please see: https://wiki.mozilla.org/CA:BaselineRequirementsKMPGWebTrust2014.06.06http://www.visa.com/pki/RootCerts.html