Sorry I hadn't seen the other replies yet, I answered to Robert via mail and had not yet seen the code references Wan-Teh posted. Thanks for all your help!
Hmm it's really weird - the code references seem to indicate that the missing (extended) key usage extension is not the reason for the certificate being filtered out. But I again checked the trust settings for the CA certificates. They're fine... Regards, Martin -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
