Root Store Listings

A root store is a repository of trusted root certificates used by operating systems, browsers, and other software applications to verify the authenticity of digital certificates. When a Certificate Authority (CA) is included in these root stores, any certificate they issue will be trusted by default on devices and browsers that use those stores. This is a cornerstone of Public Key Infrastructure (PKI), as it ensures that users and organizations can confidently navigate the internet, knowing that their digital connections and documents are backed by verified credentials.

As a global CA, emSign maintains its presence in multiple widely used root stores, ensuring that digital certificates issued by emSign are recognized and trusted by billions of devices worldwide. Below is an overview of emSign’s current root store inclusions and the significance of each program.

Major Root Store Programs

  1. Microsoft Trusted Root Program

  2. Apple Root Certificate Program

    • Scope: Includes macOS, iOS, iPadOS, and Safari.

    • Importance: Being part of Apple’s trust store allows emSign’s certificates to function seamlessly across Apple desktops, laptops, and mobile devices, covering a vast user base in both consumer and business contexts.

    • Version/Last Update: Root Store version 2024051500 (current for iOS 18, iPadOS 18, macOS 15, tvOS 18, visionOS 2, and watchOS 11).

  3. Mozilla Root Store

  4. Android Root Store

    • Scope: Governs the vast Android ecosystem—smartphones, tablets, and other devices running Android OS.

    • Importance: With a significant share of the global mobile market, inclusion in the Android root store means that emSign certificates are trusted on devices from a wide array of manufacturers.

    • Version/Last Update: Updated with Android OS releases; current with Android 16 (as of August 2025, includes updates via Google Play since Android 14).

  5. Java (Oracle) Root Store

    • Scope: The Java platform and applications that rely on Java’s default keystore (cacerts).

    • Importance: Many enterprise and server-side applications depend on Java’s trust store. Being included here ensures smooth integrations where Java-based applications must validate or use emSign-issued certificates.

    • URL: https://www.oracle.com/java/technologies/javase/carootcertsprogram.html (cacerts file included in JDK distributions)

    • Version/Last Update: Updated with JDK releases; current with JDK 25 (released September 2025).

Note: The specific coverage and update cycles differ by platform; some devices or operating systems may require manual updates to trust the latest root CAs.

For more information on emSign's inclusion in specific root stores, feel free to check ccadb or reach out to our support team.

Last updated

Was this helpful?