June 2011 Root Update
Updated June 29, 2011
Return to Root CA Members Page
In June 2011 Microsoft adds 4 new root certificates from two certification authorities (CAs) to distribution via the Windows Root Certificate Program.
Welcome to the Government of South Africa, South African Post Office (SAPO) Trust Centre. SAPO issues personal certificates to the general public in South Africa to bring legal status to electronic transactions.
New Root Certificate
We add one new root certificate from an existing member of the Program, AS Sertifitseerimiskeskus (SK) of Estonia.
Microsoft provides third-party contact information to help you find technical support. This contact information may change without notice. Microsoft does not guarantee the accuracy of this third-party contact information.
EXPLANATION OF TERMS
CA Name indicates the CA who currently operates the CA Root Name with the unique Thumbprint and CA Root expiration date indicated. Over time CA root certificates have changed hands, and this resource attempts to identify the current CA owner. Each Current CA owner should contain a hyperlink to the CA's website, where you can obtain additional information about their root certificates and their certificate policies.
Country is the main country from which the CA operates.
CA Root Name is the common name applied to the root certificate, which may or may not also indicate the name of the CA.
CA Root Size is the modulus of the RSA algorithm - typically 1024-bit, 2048-bit, or 4096-bit RSA. In the future you may see reference to other algorithms such as ECC or ECDSA.
Signature Hash indicates the hash algorithm chosen by the CA for this root certificate - MD2, MD5, SHA1, or SHA2 (SHA256). The hash algorithm used to issue end-use certificates may not be the same as the hash algorithm used for the root certificate. As of January 15, 2009 for example, to Microsoft's knowledge no CA issues MD5 end-use certificates from any MD5 root certificate distributed by the Windows Root Certificate Program. However, root certificates using the MD5 algorithm may still be distributed by the Program, to allow for certificate chain building for previously signed code and certain SSL-protected websites.
CA Root Expires is the expiration date of the root certificate, after which the CA cannot issue any more end-use certificates from it. Root certificates are typically kept in distribution after expiration by the Program until the last of these end-use certificates expires.
Thumbprint is the hash value which uniquely identifies the root certificate in question. It can be confirmed in the actual root certificate by examining the certificate properties (Details), under the Thumbprint field. NEW Each thumbprint contains a hyperlink to the Windows Update website, where you can access the actual root certificate, download and examine its certificate properties.