Profile of every major Certificate Authority included in the Mozilla and Apple root programs. Issuance scale, validation tiers, audit and trust status. Distrusted CAs (Symantec, Entrust and predecessors) are kept on the list for historical record.
Italian CA owned by Aruba S.p.A. Significant in Italian enterprise certificates and notably offers free DV S/MIME certificates for email signing.…
Amazon's CA. Issues certificates for AWS services and, via AWS Certificate Manager, for customer workloads on AWS infrastructure. Not available for use outside the AWS ecosystem.…
Norwegian CA, the most common eIDAS qualified-certificate issuer in the Nordics. Owned jointly by Norway Post and Nets.…
French CA operated by DHIMYOTIS. Significant in French enterprise and government PKI, particularly for eIDAS-compliant qualified certificates.…
Polish CA operated by Asseco Data Systems. Common in Polish and Central European enterprise PKI; eIDAS-qualified.…
Originally a small Utah-based CA, acquired Symantec's CA business in 2017, then GeoTrust, Thawte, RapidSSL and Verisign's SSL business via the Symantec deal. The dominant commercial CA after the Symantec acquisition.…
One of the oldest commercial CAs still operating, with roots dating to 1996. Acquired by GMO Internet Group (Japan) in 2006. Significant in enterprise PKI and IoT certificate issuance.…
Google's own CA. Issues certificates for Google services and, since 2023, offers free public DV certificates via its public ACME endpoint as a Let's Encrypt alternative.…
Owned by HID Global. Cross-signed Let's Encrypt's ISRG roots, which is the historical reason Let's Encrypt became trusted by older clients quickly. Also the issuer behind several US federal PKI roots.…
Internet Security Research Group's free, automated certificate authority. The single largest issuer of TLS certificates by volume. Domain-validated (DV) only; no OV or EV. Founded 2015, became publicly trusted 2016. The …
Bermuda-based CA acquired by DigiCert in 2019. Continues to operate as a brand within DigiCert. Particular strength in European qualified-signature certificates (eIDAS).…
Spun out of Comodo CA in 2018 and renamed Sectigo. One of the largest by issuance volume in the OV / DV space, particularly via reseller channels. Roots inherited from the original Comodo Trust Network dating to 1998.…
Mid-sized commercial CA based in Houston. Significant code-signing certificate business; particularly common for Windows driver-signing certificates. Subject to a 2024 incident relating to dual-EKU certs that prompted a …
CA arm of the cybersecurity company. Historically significant in commercial OV certificates; lower issuance volume in recent years.…
Long-running commercial CA. Distrusted by Mozilla and Apple in late 2024 / early 2025 for accumulated compliance failures; new certificates after 31 October 2024 (Chrome) / January 2025 (Mozilla / Apple) will not be trus…
In total there are 67 users online: 0 registered, 62 guests and 5 bots.
Users active in the past 15 minutes. Total registered members: 396
Cookie preferences
Each category below sets a Google Consent Mode v2 signal. Necessary cookies cannot be switched off because they keep the site working. Everything else defaults to off until you choose.
Strictly necessary
Login, session, security and load-balancing cookies. Without these the site does not work.
Analytics
Google Analytics 4 (page views, time on page, source attribution). Aggregated only, never sold.
Advertising
Google AdSense and ad measurement tags. Without this category, ads are non-personalised (cookieless).
Personalisation
Remember preferences such as theme, language, and reading position so they persist between visits.