The Mozilla CA root certificate bundle
Go to file
2014-02-10 20:13:22 +01:00
.gitignore update to r1.78, removing trust from DigiNotar root (#734679) 2011-09-01 14:36:45 +01:00
blacklist.txt * Fri Jan 04 2013 Paul Wouters <pwouters@redhat.com> - 2012.87-1 2013-01-04 12:50:54 -05:00
ca-certificates.spec remove openjdk build requirement 2014-02-10 20:13:22 +01:00
certdata2pem.py - added a manual page and related build requirements 2013-07-09 00:59:15 +02:00
certdata.txt * Thu Jan 09 2014 Kai Engert <kaie@redhat.com> - 2013.1.96-1 2014-01-09 17:38:04 +01:00
fetch.sh - update to r1.65 2010-11-09 08:24:29 +00:00
nssckbi.h * Thu Jan 09 2014 Kai Engert <kaie@redhat.com> - 2013.1.96-1 2014-01-09 17:38:04 +01:00
README.etc - added a manual page and related build requirements 2013-07-09 00:59:15 +02:00
README.extr - added a manual page and related build requirements 2013-07-09 00:59:15 +02:00
README.java - added a manual page and related build requirements 2013-07-09 00:59:15 +02:00
README.openssl - added a manual page and related build requirements 2013-07-09 00:59:15 +02:00
README.pem - added a manual page and related build requirements 2013-07-09 00:59:15 +02:00
README.src - added a manual page and related build requirements 2013-07-09 00:59:15 +02:00
README.usr - added a manual page and related build requirements 2013-07-09 00:59:15 +02:00
sources Setup of module ca-certificates 2008-05-30 20:08:46 +00:00
trust-fixes The PKCS#11 attributes of a stapled extension changed slightly 2013-09-06 17:22:25 +02:00
update-ca-trust - added a manual page and related build requirements 2013-07-09 00:59:15 +02:00
update-ca-trust.8.txt - improve manpage 2013-07-17 15:39:41 +02:00

This directory /usr/share/pki/ca-trust-source/ contains CA certificates and 
trust settings in the PEM file format. The trust settings found here will be
interpreted with a low priority - lower than the ones found in 
/etc/pki/ca-trust/source/ .

=============================================================================
QUICK HELP: To add a certificate in the simple PEM or DER file formats to the
            list of CAs trusted on the system:

            Copy it to the
                    /usr/share/pki/ca-trust-source/anchors/
            subdirectory, and run the
                    update-ca-trust
            command.

            If your certificate is in the extended BEGIN TRUSTED file format,
            then place it into the main source/ directory instead.
=============================================================================

Please refer to the update-ca-trust(8) manual page for additional information.