Certificate Policies

ID-card, Digi-ID, RP-card and Diplomatic-ID

Requirements for the Qualified Electronic Signature and Authentication Certificates that are issued for Estonian identity card, residence permit card, digital identity card and diplomatic identity card. Certificates issued under this policy are issued and served by the intermediate CA ESTEID2018.

Certificate Policy is published here

ID-CARD

Requirements for the Qualified Electronic Signature and Authentication Certificates that are issued for Estonian identity card and residence permit card. Certificates issued under this policy are served by ESTEID-SK 2015 and ESTEID-SK 2011.

Version 9.0 / OID: 1.3.6.1.4.1.10015.1.1 / PDF / valid from 10.04.2020

Older versions:

Version 8.0 / PDF / valid from 01.05.2019
Version 7.0 / PDF / valid from 01.11.2017
Version 6.0 / PDF (ENG) / PDF (EST) / valid from 01.11.2016

DIGI-ID

Requirements for the Qualified Electronic Signature and Authentication Certificates that are issued for Estonian digital identity card. Certificates issued under this policy are served by ESTEID-SK 2015 and ESTEID-SK 2011.

Version 11.0 / OID: 1.3.6.1.4.1.10015.1.2 / PDF / valid from 10.04.2020

Older versions:

Version 10.0 / PDF / valid from 03.07.2019
Version 9.0 / PDF / valid from 01.05.2019
Version 8.0 / PDF / valid from 01.11.2018
Version 7.0 / PDF / valid from 01.11.2017
Version 6.0 / PDF (ENG) / PDF (EST) / valid from 01.11.2016

Older versions of ESTEID Card Certificate Policies

Version 5.0 / PDF (ENG) / PDF (EST) / valid from 25.01.2016
Version 4.0 / PDF (ENG) / PDF (EST) / valid from 01.12.2014
Version 3.3 / PDF (ENG) / PDF (EST) / valid from 01.09.2012
Version 3.2 / PDF (ENG) / PDF (EST) / valid from 01.01.2011

Version 3.1 PDF (EST) / valid from 01.10.2010
Version 2.2 / PDF (ENG) / PDF (EST) / valid from 01.01.2010

Version 2.1 PDF (EST) / valid from 09.09.2009
Version 2.0 PDF (EST) / valid from 19.06.2006
Version 1.2 PDF (EST) / valid from 17.10.2002
Version 1.1 PDF (EST) / valid from 15.12.2001

DIGITAL IDENTITY CARD IN FORM OF THE MOBILE-ID

Requirements for the Qualified Electronic Signature and Authentication Certificates that are issued for Estonian digital identity card in form of the Mobile-ID. Certificates issued under this policy are served by ESTEID-SK 2015 and ESTEID-SK 2011.

Version 12.0 / OID: 1.3.6.1.4.1.10015.1.3 / PDF / valid from 15.04.2024

Older versions:

Version 11.0 / PDF / valid from 02.07.2022

Version 10.0 / PDF / valid from 27.05.2021
Version 9.0 / PDF / valid from 15.08.2020
Version 8.0 / PDF / valid from 10.04.2020
Version 7.0 / PDF / valid from 01.05.2019
Version 6.0 / PDF / valid from 24.10.2017
Version 5.0 / PDF (ENG)/ PDF (EST) / valid from 01.11.2016
Version 4.0 / PDF (ENG) / PDF (EST) / valid from 27.06.2016
Version 3.0 / PDF (ENG) / PDF (EST) / valid from 01.01.2016
Version 2.0 / PDF (ENG) / PDF (EST) / valid from 01.01.2015
Version 1.1 / PDF (ENG) / PDF (EST) / valid from 01.02.2011

MOBILE-ID

Requirements for issuing and service of Qualified Electronic Signature Certificates and Authentication Certificates for Mobile-ID of Lithuania and for Mobile-ID issued in Estonia starting from 02.07.2022.

Version 4.1 / OID: 1.3.6.1.4.1.10015.18.1 / PDF / valid from 15.04.2024

Older versions:

Version 4.0 / PDF / valid from 02.07.2022

Version 3.0 / PDF / valid from 12.05.2021
Version 2.0 / PDF / valid from 10.04.2020
Version 1.0 / PDF / valid from 01.03.2018

Qualified Smart-ID

Requirements fo issuing Qualified Certificates for Electronic Signatures and Authentication Certificates for Qualified Smart-ID.

Version 10.0 / OID: 1.3.6.1.4.1.10015.17.2 / PDF / valid from 15.04.2024

Older versions:

Version 9.0 / PDF / valid from 17.05.2022

Version 8.0 / PDF / valid from 17.02.2022
Version 7.0 / PDF / valid from 12.05.2021
Version 6.0 / PDF / valid from 21.02.2020
Version 5.0 / PDF / valid from 08.11.2018
Version 4.1 / PDF / valid from 06.07.2018
Version 4.0 / PDF / valid from 01.06.2017
Version 3.0 / PDF / valid from 01.04.2017
Version 2.0 / PDF / valid from 16.01.2017
Version 1.0 / PDF / valid from 01.01.2017

Non-qualified Smart-ID

Requirements for issuing non-qualified Electronic Signature Certificates and Authentication Certificates for non-qualified Smart-ID.

Version 4.0 / OID: 1.3.6.1.4.1.10015.17.1 / PDF / valid from 12.05.2021

Older versions:

Version 3.0 / PDF / valid from 01.07.2019
Version 2.0 / PDF / valid from 25.06.2019
Version 1.1 / PDF / valid from 09.02.2017
Version 1.0 / PDF / valid from 01.01.2017

Organisation Certificates

Requirements for issuing of e-Seal Certificates, Certificates for Encryption and Certificates for Authentication.

Version 15.0 / OID: 1.3.6.1.4.1.10015.7.3 / PDF / valid from 09.04.2024

Older versions:

Version 14.0 / PDF / valid from 11.03.2024

Version 13.0 / PDF / valid from 17.04.2022

Version 12.0 / PDF / valid from 12.07.2021
Version 11.0 / PDF / valid from 15.08.2019
Version 10.0 / PDF / valid from 30.11.2017
Version 9.0 / PDF / valid from 03.07.2017
Version 8.0 / PDF / valid from 01.06.2017
Version 7.0 / PDF / valid from 03.02.2017
Version 6.0 / PDF / valid from 01.07.2016
Version 5.0 / PDF (ENG) / PDF (EST) / valid from 22.06.2016
Version 4.0 / PDF (ENG) / PDF (EST) / valid from 01.02.2016
Version 3.0 / PDF (ENG) / PDF (EST) / valid from 13.02.2015
Version 2.6 / PDF (ENG) / PDF (EST) / valid from 20.06.2014
Version 2.5 / PDF (ENG) / PDF (EST) valid from 21.12.2012
Version 2.4 / PDF (ENG) / PDF (EST) / valid from 28.09.2012
Version 2.3 / PDF (ENG) / PDF (EST) / valid from 20.07.2012
Version 2.2 / PDF (ENG) / PDF (EST) / valid from 10.05.2010
Version 2.1 / PDF (EST) / valid from 13.08.2009
Version 1.1 / PDF (EST) / valid from 13.10.2006
Version 1.0 / PDF (EST) / valid from 10.04.2002
Version 0.3 / PDF (EST) / valid from 12.05.2003

INVALID CERTIFICATE POLICIES

Certificate Polices for the services that are no longer provided by SK.

TLS Server Certificates

Requirements for issuing and managing TLS Server Certificates.

Expired versions:

Version 8.0 / PDF / valid from 12.05.2021
Version 7.0 / PDF  / valid from 10.04.2020
Version 6.0 / PDF / valid from 22.05.2019
Version 5.0 / PDF / valid from 30.11.2017
Version 4.0 / PDF / valid from 03.07.2017
Version 3.0 / PDF / valid from 01.06.2017
Version 2.0 / PDF / valid from 03.02.2017
Version 1.0 / PDF / valid from 01.07.2016

EE Certification Centre Root CA

Requirements for issuing and managing certificates issued by SK’s Root CA for intermediate CAs. Certificate policy for EE Certification Centre Root CA is expired. SK’s activity in issuing and managing certificates issued by Root CA for intermediate CAs has been transferred to certification practice statement of EECCRCA.

Expired versions:

Version 2.0 / PDF (EST) / valid from 17.12.2015
Version 1.1 / PDF (EST) / valid from 01.10.2010

SEB-card

Requirements for the organisation cards certificates for natural persons.

Expired versions:

Version 6.0 / PDF / valid from 10.04.2020
Version 5.0 / PDF / valid from 01.11.2017
Version 4.0 / PDF / valid from 01.04.2017
Version 3.0 / PDF / valid from 01.01.2017
Version 2.0 / PDF (ENG) / PDF (EST) / valid from 30.03.2015
Version 1.0 / PDF (ENG) / PDF (EST) / valid from 21.09.2012

Mobile-ID

Requirements for issuing Mobile-ID Certificates. Certificate Policy for Mobile-ID has expired.

Expired versions:

Version 2.0 / PDF (ENG) / PDF (EST) / valid from 16.12.2009

Version 1.0 PDF (EST) / valid from 11.04.2007

Lithuanian Mobile-ID

Requirements for issuing Lithuanian Mobile-ID Certificates. Certificate Policy for Lithuanian Mobile-ID has expired.

Expired versions:

Version 2.0 / PDF / valid from 01.01.2016
Version 1.1 / PDF / valid from 16.03.2015