It appears that the DigiNotar CA cert is still available on precise (package ca-certificates-java 20110912ubuntu4), except the keystore is now in /etc/ssl/certs/java/cacerts:
etienne@curst:~$ keytool -v -list -alias diginotar_root_ca -keystore /etc/ssl/certs/java/cacerts Enter keystore password: ***************** WARNING WARNING WARNING ***************** * The integrity of the information stored in your keystore * * has NOT been verified! In order to verify its integrity, * * you must provide your keystore password. * ***************** WARNING WARNING WARNING ***************** Alias name: diginotar_root_ca Creation date: 11-Apr-2010 Entry type: trustedCertEntry Owner: EMAILADDRESS=i...@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL Issuer: EMAILADDRESS=i...@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL Serial number: c76da9c910c4e2c9efe15d058933c4c Valid from: Wed May 16 13:19:36 EDT 2007 until: Mon Mar 31 14:19:21 EDT 2025 Certificate fingerprints: MD5: 7A:79:54:4D:07:92:3B:5B:FF:41:F0:0E:C7:39:A2:98 SHA1: C0:60:ED:44:CB:D8:81:BD:0E:F8:6C:0B:A2:87:DD:CF:81:67:47:8C Signature algorithm name: SHA1withRSA Version: 3 Extensions: #1: ObjectId: 2.5.29.15 Criticality=true KeyUsage [ Key_CertSign Crl_Sign ] #2: ObjectId: 2.5.29.19 Criticality=true BasicConstraints:[ CA:true PathLen:2147483647 ] #3: ObjectId: 2.5.29.14 Criticality=false SubjectKeyIdentifier [ KeyIdentifier [ 0000: 88 68 BF E0 8E 35 C4 3B 38 6B 62 F7 28 3B 84 81 .h...5.;8kb.(;.. 0010: C8 0C D7 4D ...M ] ] -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/920758 Title: DigiNotar Root CA still present in ca-certificates-java To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ca-certificates-java/+bug/920758/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs