Mozilla SSL root certificates
Michael S. Fischer
michael@dynamine.net
Wed, 10 Oct 2001 01:12:49 -0700
On Tue, Oct 09, 2001 at 11:14:26PM -0700, Ian Zimmerman wrote:
> Background. I want to use fetchmail-ssl with SSL encrypted IMAP (port
> 993) and verify the server certificate against man-in-the-middle. But
> the server certificate is chained to the Verisign/RSA root, and
> Verisign doesn't seem to provide any way to download the root (at
> least I haven't found any during my interminable journey through their
> $$$ oriented Web maze).
Found it.
http://www.verisign.com/server/cus/rootcert/VeriSignRoots.zip
They can be viewed with "openssl x509 -in <file>.cer".
--
Michael S. Fischer / michael at dynamine.net / +1 650-533-4684
Lead Hacketeer, Dynamine Consulting, Silicon Valley, CA