Root CA certificates
A certification hierarchy consists of a hierarchical structure of CAs starting from a root CA (self-signed), which signs intermediate CA certificates and lists of intermediate CA revoked certificates (ARL's). At each level, there are one or more intermediate CAs that sign end-entity certificates and lists of revoked certificates (CRLs).
PKI managed by ANF AC follows a vertical Certification Hierarchy in accordance with the IETF document RFC 4158 "Internet X.509 Public Key Infrastructure: Certification Path Building". The Certification Path is built from the Root Certificate of the Certification Authority.
ANF Certification Authority, as stated in its Certification Practices Statement, has the following root CA and intermediate CA certificates: