Missing root CAs in cacerts

Florian Weimer fweimer at redhat.com
Mon May 18 09:12:04 UTC 2020

* Magnus Ihse Bursie:

> On 2020-05-17 01:09, Martin Buchholz wrote:
>> The mozilla team seems to be doing a good job of maintaining their
>> collection of cacerts, and they have become something of an industry
>> standard.

> I know wget uses this database as their source for cacarts. Are there
> more?

Most GNU/Linux distributions use the Mozilla list to populate the system
certificate store, and patch OpenJDK to use it.


More information about the jdk-dev mailing list