FERGANI Primary Root Certification

Welcome...

First, it can be interesting to define what is a digital certificate,

and an certification authority:

To make simple and not to complicate the things, let us say that a certificate is an electronic file making it possible to identify a physical or moral entity. The certificate is signed and emitted by an certification authority which is used as third of trust (between the entity for which it issued the certificate and you). When an authority announces you that a certificate is valid, that amounts telling: "I assure you that such entity is well that which it claims to be". And when that it announces that a certificate is not valid, that can be due to the fact that it expired, that it is corrupted or that the entity east cannot be not that which she claims to be. Your system is delivered with certificates of known authorities certification, which makes it possible to check the emitted certificates. When the certificate root of an certificate authority is not installed on your system, you are not able to check the validity of the certificates which it emitted.

FERGANI Primary Root Certification :

is an certification authority which will be used as third of trust.

FERGANI_CA.cer :

The FERGANI_CA.cer certificate self-signed contains the public-key of the certificate root of FERGANI Primary Root Certification. By installing this certificate root (see below), your system will be able to check the validity of the certificates signed and emitted by: FERGANI Primary Root Certification.

FERGANI Primary Root Certification, will sign, for the moment, only certificates for "its" needs (FERGANI) and possibly that for its partners: Certificates for signature of codes (.exe, .cab…), certificates for email. Perhaps this offer will evolve in the future with a larger audience.

Note that the emitted certificates will use an algorithm SHA1 so that they can be "also" installed under Microsoft® Windows XP. Indeed, to date, this system does not recognize the algorithms SHA256 and superior… a gap which apparently will not be corrected.

Serial number of the root certificate: 01

Issuer : FERGANI Primary Root Certification

Validate from: Sunday, December 23, 2007 00:00:00
Validate until: Friday, December 22, 2017 23:59:59
Algorithm of signature: sha1RSA
Identifier of the key: a7 92 a8 d3 c6 18 31 ab 72 b4 4f 59 dd 35 5a 32 c6 58 91 ba

MD5 hash : 6c7be1f449f053fccc33d747ccb9e1c8

"FERGANI Primary Root Certification" Certificate installation :

To install the certificate root, follow these instructions:

* Under Internet Explorer :

Click here
In the dialog box, click "Open" Then "Install the certificate..."
Click "Next"
Choose "Place all the certificates in the following store"
Click "Browse"
Choose "Trusted Root Certification Authorities Certificate"
Click "OK"
Click "Next"
Click "Finish"
To the question "Want you to install this certification ?"… Answer: "Yes"

* Under Mozilla/Firefox/Netscape :

Click here
Choose "Save"
Import the file : Tools menu > Options > Advanced > Encryption > Display the certificates > import
Select the three (3) options
Click "OK"

Revocations lists CRL :

The lists of revocations make it possible to check the digital certificates having been cancelled (revoked), the lists are brought up to date every month.

URL : http://certification.fergani.org/CRL_1.crl

* Under Internet Explorer :

The system will check the list automatically.

* Under Mozilla/Firefox/Netscape :

The standard procedure is the following: Click on the URL or import it via the "Tools" menu > Options > Advanced > Encryption > Lists of revocation > import. Thereafter, the checking of the list will be automatically made, except if you disable the upgrade option… This is the "normal" procedure, nevertheless, these browsers will not accept lists resulting from a certificate with SHA1 algorithm (see higher, why our certificates use SHA1 algorithm).

BACK