CA Policy and Practise Statement

Certificate Authority
WARNING – these certificates are totally insecure and are for test purposes only. All the tests are created to facilitate interoperability and application testing, but this is not a CA to trust for anything else than testing. We guarantee nothing. We promise nothing. Basically you are on your own. Make sure you remove the test CA certificate after testing!

This is the certificate of our no-guarantee Certificate Authority – one that is very social because anyone may sign anything in this CA You can find it lower down on this page for copy&paste. This format is called PEM and it is based on RSA keys. Put it into a file and name it “cacert.pem”.

Certificates that you want to trust should NOT be downloaded over an insecure connection. You want to have a fingerprint for verification through another channel – printed material or something else you decide to trust. It should not just be downloaded this way.

Verifying a certificate

Every certificate has an identifier called a “fingerprint” that is calculated with a well-known hash algorithm. The SHA1 fingerprint of our certificate is

3E:10:EF:D0:DA:C4:61:53:0F:E9:34:5D:54:4B:C8:D8:3F:F0:3B:80

To see the content and get a fingerprint of the file you download, you can run the following command if you have the “openssl” application on your system (most Linux and Mac systems has it).

openssl x509 -noout -text -in cacert.pem -fingerprint

 

If you are looking for our Elliptic Curve CA you want to click here.

Certificate (RSA keys)

—–BEGIN CERTIFICATE—–

MIIGOTCCBCGgAwIBAgIJAPnz6Erp7SsHMA0GCSqGSIb3DQEBCwUAMGYxQzBBBgNV

BAoMOkQmTyBUcnVzdHdvcnRoIENlcnRpZmljYXRlcyAtICJUcnVzdCBVcyBGb3Ig

WW91ciBTZWN1cml0eSIxHzAdBgNVBAMMFkNBIGZvciB0bHMtby1tYXRpYy5jb20w

HhcNMTYwMzE5MTgwNDI0WhcNMjMwMTIyMTgwNDI0WjBmMUMwQQYDVQQKDDpEJk8g

VHJ1c3R3b3J0aCBDZXJ0aWZpY2F0ZXMgLSAiVHJ1c3QgVXMgRm9yIFlvdXIgU2Vj

dXJpdHkiMR8wHQYDVQQDDBZDQSBmb3IgdGxzLW8tbWF0aWMuY29tMIICIjANBgkq

hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApKfkChD4ubNr5F03ixKzWOJJIuaAqFKH

xxF1+RN/odJUHLsNA617TGV3L0HPaaUBo09HfBQLCEoCrG3NZiSIEqpNHGhtRLMv

vi+Ym0QGjH8+C8PxzxX+v1fASVKsdBbNuWQx01/B3lQAkW06z/lCQdisB7mUWNwd

xLIeJDSTGUaIpNp+pSfsWvDBubiPuINTJjxUF8sQnm28JJEKjb8luX9CYdCZz6xJ

p5TRGaD5uTyaoLj6pqpY4S3oFspPvIdtp2GvFzGWzC+zD6VlScyh0H7rwVQ4lLs3

NmsXduuR5y6PsdTxalTPyxbwsaX+C6eGTPT5xuhUZxkGXBaTp67eJoHkD33UDX9J

R0ttHEJ+4E0kqXPjiiNWxijUbXPzkgNWiFbkeoL872GeIwk4IweGwDNMfcwtcK5i

P0QibSSZK5RSkoQcJQw4IiTy7UKR/P+ytv41fD1Vr+WQ8+LhQq5O9KDjZPiL9Rab

cvVtpOxzlEfV2/unaC8B/fAg/TtB58T64U2qSmjDU3batgpVAPwHHlglnV+B3UW3

n8kW9SNw/KbS3mztm6H1NnsdRW3DrfSJaUChZMGXmhSbXJwWl1iqZq3QzgDNLltJ

Iaru2vLl/o8a1fXJ2RHmrq4FPaaqy4BL/DSjjkOfyX6JCJeQaQVaHeynu2cnY/1d

dvIgSOcLwVkCAwEAAaOB6TCB5jAdBgNVHQ4EFgQU8XVkO5xND667OMqSw/szk2ay

dXAwgZgGA1UdIwSBkDCBjYAU8XVkO5xND667OMqSw/szk2aydXChaqRoMGYxQzBB

BgNVBAoMOkQmTyBUcnVzdHdvcnRoIENlcnRpZmljYXRlcyAtICJUcnVzdCBVcyBG

b3IgWW91ciBTZWN1cml0eSIxHzAdBgNVBAMMFkNBIGZvciB0bHMtby1tYXRpYy5j

b22CCQD58+hK6e0rBzAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAJ

BgNVHRIEAjAAMA0GCSqGSIb3DQEBCwUAA4ICAQBNnNqPWYFtdyE17gePPPO7bA4j

Txn48IRCfb3mszSjWDmpMCFDm04Dfr7IrhWO5MpwKVnyudrV1p7kvsbXKEbG4pDh

Y+uxpC018b2q5ZXnWIOoKAkfktB/5RG0LkrlqjBLnNNIa2nj+304ycgfmz0wM4BN

zbX6ZtHXKCGGnP5N9B6pk4Gocb+b1Q7wTcFtOLu+PuAx44Svg5EU1h6asBu172kO

TzyfKkmowfxtzpssso0OYTxZsxp59JbUrqjUl2+3YV3+osMNvjymBWiLOgUGAr/+

6E8Z4U6tTJhmT3H9DJKUShUh5lv1Q6EY8sdpT6wI0XUDe9RajXiw5P+/o7iDtj7l

iqaM6mR1lk8NY4ecsdJ2xIBvGtFbZgidC1gm4tbOm4Si1dvJBAlTsKQXmGkCJLxZ

V5LtqHJ9A2NZoKuTGeINSwIptZtAUTOjHDZe3kS3nXvWAwMLXizgrn2gcP06s/Rg

ZyRNmmo+VjpkgNvJAGHYQXAOJLI699yACgCCEDfNkbPEAomA3XNmBLj5wpJo7y4C

29ZO5HWA5O5Fg3xadvJv5jt/lPfhvfCJK1AHeTV9KCW23rC9btmEaY3XxkfLRemj

VA4sOMgP2p029BjNy2GKpP8Qr4fd2Z5tBw/77xDZ3K+2zCUBzIB0KqBMIVpUzmPn

evJWaNbIfxDxYHxZTA==

—–END CERTIFICATE—–

The current CA Certificate (RSA) from Github

This should be the same as above.

—–BEGIN CERTIFICATE—–
MIIGJjCCBA6gAwIBAgIJALrCrjesi/tyMA0GCSqGSIb3DQEBCwUAMGYxQzBBBgNV
BAoMOkQmTyBUcnVzdHdvcnRoIENlcnRpZmljYXRlcyAtICJUcnVzdCBVcyBGb3Ig
WW91ciBTZWN1cml0eSIxHzAdBgNVBAMMFkNBIGZvciB0bHMtby1tYXRpYy5jb20w
HhcNMTUwMzAxMTkyMTUzWhcNMjIwMTAzMTkyMTUzWjBmMUMwQQYDVQQKDDpEJk8g
VHJ1c3R3b3J0aCBDZXJ0aWZpY2F0ZXMgLSAiVHJ1c3QgVXMgRm9yIFlvdXIgU2Vj
dXJpdHkiMR8wHQYDVQQDDBZDQSBmb3IgdGxzLW8tbWF0aWMuY29tMIICIjANBgkq
hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA613xK2q7igMq/j/c8kd3z8Zv21RnOwOg
tlLSulWe0d0kqtToARGIr+02B6OBEB0wBiRPXUSbx0CFxdzBzse29VMorYZR6vEc
tjCpSd/xh9qPG3kx4eEBL3f6I8M8EpXF8mnXDKwyd7e2vA9CWrRrFRHt63lS4Avs
sJv5X1scomlH60+guLb92spOkl8zkfspJsjALQmvs3AW0ma1dY3mjSnIjz1jydRv
q9qvAwVr7OSRo8HRzSWK7N2Op3BAXALiFIUtbbziak2zwUtIzRC0ctECJUX12kwm
p52+lcvoRjoIUsvDnQrNx0qMMjM1vceMFGGR6XVlr8VjIf2wJgmIjSQjbLisAaLQ
KAOVX+TQc8hE+1eKl3mkiQ+I7OcmBZiQy8Q0MWp8SLrmAsTsMXUAMN/7mzbm1NiX
4ioB4tOqRr+6vchlv3HKtcVKWqg6sHLvspG0E3eM9zwJ3X2ADpw/4eloM636bHt7
HJCdtlVW1e2agA1d4IJsGEbUn11TwNOin1bLyW+K96nO6sXlnmpJYQBnrJ2weVNW
k5cVu0jrRLCx9McoIcIiSfEXZt/XThA2jR2jcUwl71jLVLglXyHpHTc8rtN0/G57
ItNA5BRm4YDDjFsPC8Su1rzO4zuX85E9hAjA6ryk8+GGnEkcOQlh9agaaCbvSDYz
OTPaBBXTpLUCAwEAAaOB1jCB0zAdBgNVHQ4EFgQUBNaiGgDaXheIzzHGyqGj0/ef
eyowgZgGA1UdIwSBkDCBjYAUBNaiGgDaXheIzzHGyqGj0/efeyqhaqRoMGYxQzBB
BgNVBAoMOkQmTyBUcnVzdHdvcnRoIENlcnRpZmljYXRlcyAtICJUcnVzdCBVcyBG
b3IgWW91ciBTZWN1cml0eSIxHzAdBgNVBAMMFkNBIGZvciB0bHMtby1tYXRpYy5j
b22CCQC6wq43rIv7cjAMBgNVHRMEBTADAQH/MAkGA1UdEgQCMAAwDQYJKoZIhvcN
AQELBQADggIBANYJHRuXJqIUOWehRB3G7BPAe/M0pW/fd5olTp+bURXkG3LLzyvA
d8aEPHkLfsqoYva6csSRU+Qt3eHZxmWxJA7DkZsjyt9BxS3bqs3M/rYni19lrFGH
dyvg6SV+lhJmxSY9vMavnF5YE/2PvMiQfe0u4I9C6eFodRukFng97jstvkmVYOOJ
2rFKR+XPEj1lxwAYam+587XNOeWkOYswtd4YOEzJrYoMdjhC0rlSabWDmkvsFkmr
BCYgASa4F+yQVLUR8k/NK9Yp6nMiU9wbjPZQAx0AcdDYjd1IeI3v2e1wfT9G/9I7
+Z5GINEEX9mCNIP/pnoOgCkPIt/6obinvxD54iiqzdlWMcyQEw66WkcUd7xjrdG0
fsGQ1PFeUrpKeLxsG0xjmImc2kTrxlP/6PygKh8mR1FzkGTwPULijIJ4HCgYNjOV
+sHQ94PMhnRvKlwD1UlnDJMZVk4DYOi2MhYTMDdmTf+GWuWyVKfTiUlOJ1fwWsl+
u2bjURQNp9pErqUuQEoqfWW3R8iYYWjKuXuTTLH+JDT1iXQbyOzePzHmYgQPU/3m
nNA1Eb6fvexF+bUmLNLMSGAAFB57kMu+6BR+TILmp1Eqx62Jae64zygjtlYhk8si
DeBJgVZZhbBjUIA1iv751szIrdz6WtVV6aPGrZG5qrPkqJ4iY8Re5Lga
—–END CERTIFICATE—–