IssueTracker

Certainly requests the inclusion of our RSA (R1) and ECDSA (E1) root certificates in the Android root store:

• Certainly Root R1: https://www.certainly.com/certificates/Certainly_Root_R1.pem (77:B8:2C:D8:64:4C:43:05:F7:AC:C5:CB:15:6B:45:67:50:04:03:3D:51:C6:0C:62:02:A8:E0:C3:34:67:D3:A0)
• Certainly Root E1: https://www.certainly.com/certificates/Certainly_Root_E1.pem (B4:58:5F:22:E4:AC:75:6A:4E:86:12:A1:36:1C:5D:9D:03:1A:93:FD:84:FE:BB:77:8F:A3:06:8B:0F:C4:2D:C2)

These roots will only issue TLS server and client authentication certificates.

Certainly LLC is a commercial CA with global reach that intends to secure a wide range of websites visited by Android users. We have built a modern CA that relies on automated processes to issue TLS certificates with a relatively short validity period. Our service combines the best practices pioneered by Let’s Encrypt with commercial assurances that are important to our customers.

Mozilla inclusion request: https://bugzilla.mozilla.org/show_bug.cgi?id=1727941

CCADB Case: https://ccadb-public.secure.force.com/mozilla/PrintViewForCase?CaseNumber=00000829

The CA certificates, CP/CPS, and other policy documents may be found at https://certainly.com/repository/

The following WebTrust audits were performed by Schellman & Company:

• Root Key Generation: https://www.certainly.com/repository/audit/2021_Root_Key_Generation_Report.pdf

• Key Protection period: https://www.certainly.com/repository/audit/2021_WebTrust_for_CAs_(Key_Lifecycle_Management_Activities)_Report.pdf

• WTCA point-in-time: https://www.certainly.com/repository/audit/2021_WebTrust_for_CAs_Report.pdf

• WTBR point-in-time: https://www.certainly.com/repository/audit/2021_WebTrust_for_CAs_(SSL_Baseline)_Report.pdf