Created attachment 8363598 [details] AC Raíz FNMT-RCM.crt User Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:26.0) Gecko/20100101 Firefox/26.0 (Beta/Release) Build ID: 20131206145143 Steps to reproduce: 1. Go to <https://www.sede.fnmt.gob.es/certificados>. 2. Tried to renew my certificate from the National Coin and Ding Factory of Spain (FNMT). Actual results: When you try to renovate certificates; you are directed to a secure page, where Firefox says the connection is unreliable because it doesn't recognize FNMT - RCM as a valid certification authority. Expected results: To be able to renovate certificates without having to add a security exception.
Since there's a missing certificate from the attachment, ignore it. Certificates can be found at <http://preview.tinyurl.com/nwxgpko>.
Also affects Thunderbird: https://bugzilla.mozilla.org/show_bug.cgi?id=962536
Created attachment 8363633 [details] [diff] [review] Certificates.tar.gz
Created attachment 8363634 [details] Certificates.tar.gz
The FNMT-RCM root certificate is not yet included in NSS. That request is Bug #435736. There are two ways a user can work around this problem... 1) Add an exception as described here: https://support.mozilla.org/en-US/kb/connection-untrusted-error-message#w_bypassing-the-warning or 2) Manually import and trust the root certificate as described here: https://wiki.mozilla.org/CA:UserCertDB#Importing_a_Root_Certificate