AltIdTrustList

Issuer trust-list certificates for AltID SignedQR validation.

Source: "Integrating with AltID" v1.0.1, Appendix G (Table 13). AltID publishes its issuer certificates as leaf certificates; a signing certificate is trusted when it byte-matches a trust-list entry, or when a valid chain from it terminates in a trust-list CA (see AltIdTrustEvaluator).

The authoritative long-term source is the EU Age Verification Trusted List (https://eidas.ec.europa.eu/efda/trust-services/browse/av-tl, TSP NTRDK-34051178); these embedded certificates are the directly-published ones from the integration document and should be refreshed when Digitaliseringsstyrelsen publishes new ones.

Properties

Link copied to clipboard

Both published environments — convenient default for wallet-side verification demos.

Link copied to clipboard

The production trust list.

Link copied to clipboard

Production issuer leaf: CN=DKTB Credential Issuer, O=Digitaliseringsstyrelsen issued by Buypass Class 3 CA G2 ST Business (valid 2026-05-06 → 2029-05-06).

Link copied to clipboard

Test/development issuer leaf: CN=DKTB Credential Issuer issued by DKTB Issuing CA. NOTE: expired 2026-06-18; kept for validating older test material until a refreshed certificate is published.

Link copied to clipboard

The test/development trust list.

Functions

Link copied to clipboard

Parses one or more PEM CERTIFICATE blocks into certificates (invalid blocks skipped).