Skip to content

Commit

Permalink
Trust store release 2024.4.0 (#269)
Browse files Browse the repository at this point in the history 
Rolling trust store release at 2024-04-07T03:20:08+0000.
$ cfssl-trust -d ./cert.db  -b int release 504h
skipping expired certificate (SKI=be66cd9a79849f1b023edb3d1ad08f32164996e0, serial=6252724313679620825149470155455970013, subject='/Rush Health CA/C=US/O=Rush Health/OU=Orion Health Direct Secure Messaging')
skipping expired certificate (SKI=b6087b0d7accac204c8656325ecfab6e852d7057, serial=120039509, subject='/Cybertrust Global Root/O=Cybertrust, Inc')
1476 certificates rolled
2 certificates skipped
Successfully rolled new int release 2024.4.0
$ cfssl-trust -d ./cert.db  -b ca release 504h
354 certificates rolled
0 certificates skipped
Successfully rolled new ca release 2024.4.0
$ cfssl-trust -d ./cert.db  -r 2024.4.0 -b int bundle int-bundle.crt
selected release 2024.4.0
Selected 1476 certificates for this release.
$ cfssl-trust -d ./cert.db  -r 2024.4.0 -b ca bundle ca-bundle.crt
selected release 2024.4.0
Selected 354 certificates for this release.
$ certdump ca-bundle.crt  > certdata/ca-bundle.txt
$ certdump int-bundle.crt > certdata/int-bundle.txt
$ git status --porcelain -uno
M  cert.db
M  certdata/int-bundle.txt
M  int-bundle.crt

Co-authored-by: Leland Garofalo <[email protected]>
  • Loading branch information
@github-actions @lgarofalo
github-actions[bot] and lgarofalo committed Apr 8, 2024
1 parent d1f3d5f commit d287e02
Show file tree
Hide file tree
Showing 3 changed files with 20 additions and 103 deletions.
Binary file modified cert.db
View file
Binary file not shown.
59 changes: 20 additions & 39 deletions certdata/int-bundle.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2498,45 +2498,6 @@ Details:
OCSP server:
- http://ocsp.digicert.com
CERTIFICATE
Subject: /Rush Health CA/C=US/O=Rush Health/OU=Orion Health Direct Secure
Messaging
Issuer: /Orion Health Direct Secure Messaging CA/C=US/O=Orion Health
Inc./OU=Orion Health Direct Secure Messaging
Signature algorithm: RSA / SHA256
Details:
Public key: RSA-2048
Serial number: 6252724313679620825149470155455970013
AKI: A5:6E:22:FF:39:69:3A:23:FB:89:24:17:C6:60:94:00:1A:DA:8E:9E
SKI: BE:66:CD:9A:79:84:9F:1B:02:3E:DB:3D:1A:D0:8F:32:16:49:96:E0
Valid from: 2014-04-23T12:00:00+0000
until: 2024-04-23T12:00:00+0000
Key usages: cert sign, crl sign, digital signature
Basic constraints: valid, is a CA certificate, max path length 0
SANs (0):
1 AIA:
http://cacerts.digicert.com/aiaOrionHealthIssuingCAs.p7c
OCSP server:
- http://ocsp.digicert.com
CERTIFICATE
Subject: /Cybertrust Global Root/O=Cybertrust, Inc
Issuer: /Baltimore CyberTrust Root/C=IE/O=Baltimore/OU=CyberTrust
Signature algorithm: RSA / SHA256
Details:
Public key: RSA-2048
Serial number: 120039509
AKI: E5:9D:59:30:82:47:58:CC:AC:FA:08:54:36:86:7B:3A:B5:04:4D:F0
SKI: B6:08:7B:0D:7A:CC:AC:20:4C:86:56:32:5E:CF:AB:6E:85:2D:70:57
Valid from: 2014-04-23T16:11:03+0000
until: 2024-04-23T16:10:56+0000
Key usages: cert sign, content committment, crl sign, digital signature
Basic constraints: valid, is a CA certificate, max path length 2
SANs (0):
2 AIAs:
https://cacert.omniroot.com/baltimoreroot.crt
https://cacert.omniroot.com/baltimoreroot.der
OCSP server:
- http://ocsp.omniroot.com/baltimoreroot
CERTIFICATE
Subject: /Trend Micro CA/C=US/O=Trend Micro Inc
Issuer: /AffirmTrust Networking/C=US/O=AffirmTrust
Signature algorithm: RSA / SHA1
Expand Down Expand Up @@ -27935,3 +27896,23 @@ Details:
http://cacerts.digicert.com/DigiCertRSA4096RootG5.crt
OCSP server:
- http://ocsp.digicert.com
CERTIFICATE
Subject: /Cybertrust Japan SureServer EV CA G3/C=JP/O=Cybertrust Japan Co.,
Ltd.
Issuer: /C=JP/O=SECOM Trust Systems CO.,LTD./OU=Security Communication RootCA2
Signature algorithm: RSA / SHA256
Details:
Public key: RSA-2048
Serial number: 46157929531853354100488418937468587687
AKI: 0A:85:A9:77:65:05:98:7C:40:81:F8:0F:97:2C:38:F1:0A:EC:3C:CF
SKI: 82:6C:75:5D:53:F5:45:69:BC:25:2D:A4:4C:89:E6:B2:B7:41:87:A3
Valid from: 2023-12-13T06:28:45+0000
until: 2029-05-29T05:00:39+0000
Key usages: cert sign, crl sign
Extended usages: client auth, server auth
Basic constraints: valid, is a CA certificate, max path length 0
SANs (0):
1 AIA:
http://repository.secomtrust.net/SC-Root2/SCRoot2ca.cer
OCSP server:
- http://scrootca2.ocsp.secomtrust.net
64 changes: 0 additions & 64 deletions int-bundle.crt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4556,70 +4556,6 @@ xOsxaN53sv53DXyswrAsAWIVKlecpWQSnLhfyQ2wtn/+ZsTokeavELsIvFC8NmQg
1080HqAT4IklRVZCERCk22WKyXHzzU40gSCqRJ/PS5UCMQ==
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIIEdDCCA1ygAwIBAgIIPYR8G0q7MgIwDQYJKoZIhvcNAQEFBQAwRDELMAkGA1UE
BhMCVVMxFDASBgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZpcm1UcnVz
dCBOZXR3b3JraW5nMB4XDTE0MDQyOTAyMjU1NVoXDTMwMTIzMTE0MDgyNFowQDEL
Expand Down

0 comments on commit d287e02

Please sign in to comment.