My Email Signing Authority

This page describes the certificate authority used to sign my email. If you receive a digitally signed email from me, it should chain back to this authority.

What this authority is

I operate a private certificate authority for signing email using S/MIME. This allows me to sign messages cryptographically, so that recipients can verify that a message genuinely comes from me and has not been altered.

How trust is established

To verify signed email from me, you may trust this authority certificate once. After that, any email certificate issued by this authority should be recognised by your email application, subject to the behaviour of your email client.

This authority is self-managed and not issued by a public certificate authority. Trust must therefore be established manually by comparing the certificate fingerprint published here.

Root Authority certificate

Name: Matthew Charlesworth S/MIME Authority

Valid from: 2026-04-06 until: 2126-03-13

Download root certificate: root-ca.pem.crt

SHA-256 fingerprint

A0 B2 BD 94 35 F2 ED AF 47 61 AA 1F BB 31 C3 64 5B 9B F0 DE CA 9A 88 F6 99 D8 05 D8 F5 9B 5B 29

SHA-1 fingerprint

70 F6 EB 1F 69 00 9B 4B 10 D8 E2 18 DB 4A 1F 5F FC 19 07 12

Intermediate issuing certificate

Valid from: 2026-04-06 until: 2046-04-01

Issuing certificate SHA-256 fingerprint

32 A6 58 E3 93 D8 24 3A F3 03 4A DE 7D D2 8C 2E 92 E7 45 AE 26 0E 96 AD 54 71 9A 43 AC 56 65 10

Issuing certificate SHA-1 fingerprint

1C EB 84 1C 24 2E AC C5 77 12 AB 46 DE A8 F2 7B 1C C2 1F 4C

Before trusting this certificate

• Ensure that you are viewing this page on my official website.
• Download the certificate from the link above.
• Compare the fingerprint shown in your system with the fingerprint published here.
• Only trust the certificate if the fingerprint matches exactly.

Signed email identities

• matthew [at] mcharlesworth [dot] fr
• matthew [at] jesuits [dot] net
• matthew.charlesworth [at] jesuits [dot] net
• development [at] jesuitssouthern [dot] africa

Revocation

If this authority or any certificate issued by it is ever replaced or compromised, updated certificates and fingerprints will be published on this website.

Certificates not listed here should not be trusted.

Validity

This authority certificate is intended to remain stable for a long period, but it may be replaced if necessary for security or operational reasons.

If you are unsure

If you are uncertain whether to trust this authority, please contact me through a known and trusted channel before proceeding.

← Back to email verification pages