From: Stuart Henderson <stu@spacehopper.org>
Subject: Re: cert.pem update
To: Theo Buehler <tb@theobuehler.org>
Cc: tech <tech@openbsd.org>
Date: Mon, 17 Nov 2025 20:14:45 +0000

On 2025/11/17 20:02, Theo Buehler wrote:
> On Mon, Nov 17, 2025 at 07:38:12PM +0100, Theo Buehler wrote:
> > On Mon, Nov 17, 2025 at 06:31:13PM +0000, Stuart Henderson wrote:
> > > ok?  adds these two:
> > > 
> > > OISTE Foundation
> > >   /C=CH/O=OISTE Foundation/CN=OISTE Server Root ECC G1
> > >   /C=CH/O=OISTE Foundation/CN=OISTE Server Root RSA G1
> > 
> > the diff adds five CA certs. why do you single these two out?

it's because I took the summary from a cronjob I run, but didn't notice
that there were further changes in the actual update.

for the sake of list archives:

+OISTE Foundation
+  /C=CH/O=OISTE Foundation/CN=OISTE Server Root ECC G1
+  /C=CH/O=OISTE Foundation/CN=OISTE Server Root RSA G1
+

 SwissSign AG
   /C=CH/O=SwissSign AG/CN=SwissSign Gold CA - G2
+  /C=CH/O=SwissSign AG/CN=SwissSign RSA TLS Root CA 2022 - 1

 TrustAsia Technologies, Inc.
   /C=CN/O=TrustAsia Technologies, Inc./CN=TrustAsia Global Root CA G3
   /C=CN/O=TrustAsia Technologies, Inc./CN=TrustAsia Global Root CA G4
+  /C=CN/O=TrustAsia Technologies, Inc./CN=TrustAsia TLS ECC Root CA
+  /C=CN/O=TrustAsia Technologies, Inc./CN=TrustAsia TLS RSA Root CA

> I see. It's the only new certification authority, the other certs are
> added to existing one.
> 
> I get the same diff, so ok tb

Thanks.