Root Store Listings
A root store is a repository of trusted root certificates used by operating systems, browsers, and other software applications to verify the authenticity of digital certificates. When a Certificate Authority (CA) is included in these root stores, any certificate they issue will be trusted by default on devices and browsers that use those stores. This is a cornerstone of Public Key Infrastructure (PKI), as it ensures that users and organizations can confidently navigate the internet, knowing that their digital connections and documents are backed by verified credentials.
As a global CA, emSign maintains its presence in multiple widely used root stores, ensuring that digital certificates issued by emSign are recognized and trusted by billions of devices worldwide. Below is an overview of emSign’s current root store inclusions and the significance of each program.
Major Root Store Programs
Microsoft Trusted Root Program
Scope: Covers Microsoft Windows operating systems (e.g., Windows 10, Windows 11, and their server equivalents) and Microsoft’s products like Internet Explorer and Edge.
Importance: Inclusion ensures that emSign certificates are trusted on all supported Windows environments by default, allowing seamless usage in enterprise networks and consumer devices.
Version/Last Update: Monthly releases; latest deployment notice as of June 26, 2025.
Apple Root Certificate Program
Scope: Includes macOS, iOS, iPadOS, and Safari.
Importance: Being part of Apple’s trust store allows emSign’s certificates to function seamlessly across Apple desktops, laptops, and mobile devices, covering a vast user base in both consumer and business contexts.
URL: https://support.apple.com/en-us/103272 (current list at https://support.apple.com/en-us/121672)
Version/Last Update: Root Store version 2024051500 (current for iOS 18, iPadOS 18, macOS 15, tvOS 18, visionOS 2, and watchOS 11).
Mozilla Root Store
Scope: Impacts Mozilla Firefox and derivative browsers or applications using Mozilla’s root store.
Importance: Firefox is a popular cross-platform browser, used extensively on Windows, macOS, Linux, and Android. Inclusion here ensures that emSign certificates work smoothly across diverse computing environments.
URL: https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/ (included certificates report at https://ccadb-public.secure.force.com/mozilla/IncludedCACertificateReport)
Version/Last Update: Mozilla Root Store Policy version 3.0 (effective March 15, 2025).
Android Root Store
Scope: Governs the vast Android ecosystem—smartphones, tablets, and other devices running Android OS.
Importance: With a significant share of the global mobile market, inclusion in the Android root store means that emSign certificates are trusted on devices from a wide array of manufacturers.
Version/Last Update: Updated with Android OS releases; current with Android 16 (as of August 2025, includes updates via Google Play since Android 14).
Java (Oracle) Root Store
Scope: The Java platform and applications that rely on Java’s default keystore (cacerts).
Importance: Many enterprise and server-side applications depend on Java’s trust store. Being included here ensures smooth integrations where Java-based applications must validate or use emSign-issued certificates.
URL: https://www.oracle.com/java/technologies/javase/carootcertsprogram.html (cacerts file included in JDK distributions)
Version/Last Update: Updated with JDK releases; current with JDK 25 (released September 2025).
Note: The specific coverage and update cycles differ by platform; some devices or operating systems may require manual updates to trust the latest root CAs.
For more information on emSign's inclusion in specific root stores, feel free to check ccadb or reach out to our support team.
Last updated
Was this helpful?