diff --git a/README.md b/README.md
index 68e4a8a..1252b01 100644
--- a/README.md
+++ b/README.md
@@ -1,9 +1,39 @@
# DigiCert Official Oids
-v1.1 Updated **23 January 2023** by Chuck Blevins
+v2.2 Updated **27 January 2025** by Chuck Blevins
OIDs in this list and in DigiCert certificates belong to their respective owners.
+| Object Identifier (OID) Types | OIDs (Digicert Registered) | CABF OIDs (Required) | Symantec OIDs |
+|------------------------------------------------------------------------------------------------------------------------|----------------------------|----------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| Issuer CA (Baseline Any Policy) | | 2.5.29.32.0 | |
+| Practice & Policy Statements | 2.16.840.1.114412.0 | | |
+| Certificate Policy, version 4.14 | 2.16.840.1.114412.0.1.4 | | |
+| Certificates Issued Pursuant to Certificate Practice Statement (CPS) | 2.16.840.1.114412.0.2.4 | | |
+| Identifies practices around operation of a consortium-based and purely private Public-Key Infrastructure (PKI) | 2.16.840.1.114412.0.2.5 | | |
+| DigiCert Specific | 2.16.840.1.114412.1 | | |
+| Individual Vetted (IV) SSL/TLS Server Certificates per the Baseline Requirements | 2.16.840.1.114412.1.1 | 2.23.140.1.2.3 | |
+| Organization Vetted (OV) SSL/TLS Server Certificates per the Baseline Requirements | 2.16.840.1.114412.1.1 | 2.23.140.1.2.2 | |
+| Domain Vetted (DV) SSL/TLS Server Certificates per the Baseline Requirements | 2.16.840.1.114412.1.2 | 2.23.140.1.2.1 | |
+| IGTF Grid Host – Public Trust | 2.16.840.1.114412.1.31.1 | | |
+| Certificate extension identifying the Legal Entity Identifier (LEI) of an entity verified by the certificate authority | 2.16.840.1.114412.133 | | |
+| Grid | 2.16.840.1.114412.19.31.1 | | |
+| Extended Validation (EV) SSL/TLS Server Certificates per the EV SSL Guidelines | 2.16.840.1.114412.2.1 | 2.23.140.1.1 | 1.3.6.1.4.1.6334.1.100.1
2.16.840.1.113733.1.7.23.6 |
+| Object Signing Certificates | 2.16.840.1.114412.3 | | |
+| Code Signing Certificates | 2.16.840.1.114412.3.1 | | |
+| Code Signing per the Baseline Requirements for Code-Signing Certificates | 2.16.840.1.114412.3.1.1 | 2.23.140.1.4.1 | |
+| Windows Kernel Driver Signing | 2.16.840.1.114412.3.11 | | |
+| Extended Validation Code Signing per the Baseline Requirements for Code-Signing Certificates | 2.16.840.1.114412.3.2 | 2.23.140.1.3 | |
+| Adobe Authentic Documents Trust (CDS) | 1.2.840.113583.1.1.5 | | |
+| Adobe Signing Certificate | 2.16.840.1.114412.3.21 | | **Private prod**
2.16.840.1.113733.1.7.55 id-symc-private-AATL
2.16.840.1.113733.1.7.55.1 id-symc-private-AATL-org
2.16.840.1.113733.1.7.55.2 id-symc-private-AATL-indiv
2.16.840.1.113733.1.7.55.3 id-test-symc-private-AATL-org
2.16.840.1.113733.1.7.55.4 id-test-symc-private-AATL-indiv
**Private test drive**
2.16.840.1.113733.1.7.21.4 id-test-aatl
2.16.840.1.113733.1.7.21.4.1 id-test-aatl-indiv
**Public Class 2 Prod**
2.16.840.1.113733.1.7.23.2.2 id-stn-aatl-class2
2.16.840.1.113733.1.7.23.2.2.1 id-stn-aatl-class2-indiv
Public Class 3 Prod
2.16.840.1.113733.1.7.23.3.3 id-stn-aatl-class3 |
+| Adobe Signing Certificate for Individuals | 2.16.840.1.114412.3.21.1 | | |
+| Adobe Signing Certificate for Orginizations | 2.16.840.1.114412.3.21.2 | | |
+| Document signing certificate for use in products other than Adobe document signing program | 2.16.840.1.114412.3.25 | | |
+| Grid Certificate OID Arcs (Grid-only arc) | 2.16.840.1.114412.31 | | |
+| IGTF Grid Host Certificate | 2.16.840.1.114412.31.1.1.1 | | 1.2.840.113612.5.2.2.1.x |
+| IGTF Classic X.509 Authorities with secured infrastructure for individuals (IGTF) | 2.16.840.1.114412.31.4.1.1 | | 1.2.840.113612.5.2.2.1.x |
+| IGTF Classic X.509 Authorities with secured infrastructure for business (IGTF) | 2.16.840.1.114412.31.4.1.2 | | 1.2.840.113612.5.2.2.1.x
+| IGTF Classic X.509 Authorities with secured infrastructure for individual or business with high assurance (IGTF) | 2.16.840.1.114412.31.4.2 | | 1.2.840.113612.5.2.2.1.x
| Object Identifier (OID) Types | OIDs (Digicert Registered) | CABF OIDs (Required) | Symantec OIDs |
|------------------------------------------------------------------------------------------------------------------------|----------------------------|----------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Issuer CA (Baseline Any Policy) | | 2.5.29.32.0 | |
@@ -40,15 +70,18 @@ OIDs in this list and in DigiCert certificates belong to their respective owners
| Level 1 Certificates – Personal | 2.16.840.1.114412.4.1.1 | | 2.16.840.1.113733.1.7.23.1 (Class1 EE, CP OID) |
| Level 1 Certificates – Enterprise | 2.16.840.1.114412.4.1.2
2.16.840.1.114412.5.2 | | 2.16.840.1.113733.1.7.23.2 (Class2 EE, CP OID) |
| Level 2 Certificates | 2.16.840.1.114412.4.2 | | 2.16.840.1.113733.1.7.23.1 (Class1 EE, CP OID )
2.16.840.1.113733.1.7.23.2 (Class2 EE, CP OID)
2.16.840.1.113733.1.7.23.3 (Class3 EE, CP OID) |
+| Level 2 Certificates | 2.16.840.1.114412.4.2 | | 2.16.840.1.113733.1.7.23.1 (Class1 EE, CP OID )
2.16.840.1.113733.1.7.23.2 (Class2 EE, CP OID)
2.16.840.1.113733.1.7.23.3 (Class3 EE, CP OID) |
| Level 3 Certificates – Client | 2.16.840.1.114412.4.3 | | |
| Level 3 certificates - US | 2.16.840.1.114412.4.3.1 | | |
| Level 3 certificates - Customs and Border Protection (CBP) | 2.16.840.1.114412.4.3.2 | | |
| Grid Certificate OID Arcs | 2.16.840.1.114412.31.4 | | |
| IGTF Member Integrated X.509 Credential Services with Secured Infrastructure Certificates | 2.16.840.1.114412.31.4.5 | | 1.2.840.113612.5.2.2.5.x |
+| IGTF Member Integrated X.509 Credential Services with Secured Infrastructure Certificates | 2.16.840.1.114412.31.4.5 | | 1.2.840.113612.5.2.2.5.x |
| Level 4 Certificates | 2.16.840.1.114412.4.4 | | |
| Level 4 Certificates - US | 2.16.840.1.114412.4.4.1 | | |
| Level 4 Certificates - Customs and Border Protection (CBP): | 2.16.840.1.114412.4.4.2 | | |
| IGTF Classic X.509 Authorities with secured infrastructure Client w/ Public | 2.16.840.1.114412.4.31.1 | | |
+| IGTF Classic X.509 Authorities with secured infrastructure Client w/ Public | 2.16.840.1.114412.4.31.1 | | |
| PIV-I hardware | 2.16.840.1.114412.5.1 | | 2.16.840.1.113733.1.7.23.1 |
| PIV-I Card Authentication | 2.16.840.1.114412.5.2 | | 2.16.840.1.113733.1.7.23.2 |
| MPKI8 | 2.16.840.1.114412.5.3 | | |
@@ -60,6 +93,7 @@ OIDs in this list and in DigiCert certificates belong to their respective owners
| Class 1Authentication-Only Certificates | 2.16.840.1.114412.6.1.1 | | |
| Class 1Authentication-Only Certificates | 2.16.840.1.114412.6.1.2 | | |
| Class 2 Authentication-Only Certificates | 2.16.840.1.114412.6.2 | | |
+| Class 2 Authentication-Only Certificates | 2.16.840.1.114412.6.2 | | |
| Time-stamping | 2.16.840.1.114412.7 | | |
| Trusted Time-stamping | 2.16.840.1.114412.7.1 | 2.23.140.1.4.2 | |
| Legacy arc1 | 2.16.840.1.114412.81 | | |
@@ -70,6 +104,12 @@ OIDs in this list and in DigiCert certificates belong to their respective owners
| QCP-l: certificate policy for European Union (EU) qualified certificates issued to legal persons | 0.4.0.194112.1.1 | | |
| QCP-n-qscd: certificate policy for European Union (EU) qualified certificates issued to natural persons with private key related to the certified public key in a Qualified electronic Signature/seal Creation Device (QSCD) | 0.4.0.194112.1.2 | | |
| QCP-l-qscd: certificate policy for European Union (EU) qualified certificates issued to legal persons with private key related to the certified public key< in a Qualified electronic Signature/seal Creation Device (QSCD) | 0.4.0.194112.1.3 | | |
+| Qualified Certificate Statement (QCS) claiming that the private key related to the certified public key resides in a qualified electronic Signature/Seal Creation Device (SSCD) | 0.4.0.1862.1.4 | | |
+| Qualified Certificate Statement (QCS) regarding location of Public-key infrastructure Disclosure Statements (PDSs) | 0.4.0.1862.1.5 | | |
+| QCP-n: certificate policy for European Union (EU) qualified certificates issued to natural persons | 0.4.0.194112.1.0 | | |
+| QCP-l: certificate policy for European Union (EU) qualified certificates issued to legal persons | 0.4.0.194112.1.1 | | |
+| QCP-n-qscd: certificate policy for European Union (EU) qualified certificates issued to natural persons with private key related to the certified public key in a Qualified electronic Signature/seal Creation Device (QSCD) | 0.4.0.194112.1.2 | | |
+| QCP-l-qscd: certificate policy for European Union (EU) qualified certificates issued to legal persons with private key related to the certified public key< in a Qualified electronic Signature/seal Creation Device (QSCD) | 0.4.0.194112.1.3 | | |
| MPKI8 | 1.2.840.113583.1.2.1 | | |
| MPKI8 | 1.2.840.113583.1.2.3 | | |
| MPKI8 | 2.16.840.1.113733.1.7.1.6 | | |
@@ -93,15 +133,15 @@ OIDs in this list and in DigiCert certificates belong to their respective owners
| Digital Sign | 1.3.6.1.4.1.25596.1.2.102 |||
| Digital Sign | 1.3.6.1.4.1.25596.1.2.103 |||
| Digital Sign | 1.3.6.1.4.1.25596.1.2.104 |||
-| Mailbox-validated Legacy | | 2.23.140.1.5.1.1
-| Mailbox-validated Multipurpose | | 2.23.140.1.5.1.2 | ||
-| Mailbox-validated Strict | | 2.23.140.1.5.1.3 | ||
-| Organization-validated Legacy | | 2.23.140.1.5.2.1 | ||
-| Organization-validated Multipurpose | | 2.23.140.1.5.2.2 | ||
-| Organization-validated Strict | | 2.23.140.1.5.2.3 | ||
-| Sponsor-validated Legacy | | 2.23.140.1.5.3.1 | ||
-| Sponsor-validated Multipurpose || 2.23.140.1.5.3.2 | ||
-| Sponsor-validated Strict | | 2.23.140.1.5.3.3 | ||
-| Individual-validated Legacy || 2.23.140.1.5.4.1 | ||
-| Individual-validated Multipurpose | | 2.23.140.1.5.4.2 | ||
-| Individual-validated Strict || 2.23.140.1.5.4.3 | |
\ No newline at end of file
+| CABF SMIME BR Mailbox-validated Legacy | | 2.23.140.1.5.1.1
+| CABF SMIME BR Mailbox-validated Multipurpose | | 2.23.140.1.5.1.2 | ||
+| CABF SMIME BR Mailbox-validated Strict | | 2.23.140.1.5.1.3 | ||
+| CABF SMIME BR Organization-validated Legacy | | 2.23.140.1.5.2.1 | ||
+| CABF SMIME BR Organization-validated Multipurpose | | 2.23.140.1.5.2.2 | ||
+| CABF SMIME BR Organization-validated Strict | | 2.23.140.1.5.2.3 | ||
+| CABF SMIME BR Sponsor-validated Legacy | | 2.23.140.1.5.3.1 | ||
+| CABF SMIME BR Sponsor-validated Multipurpose || 2.23.140.1.5.3.2 | ||
+| CABF SMIME BR Sponsor-validated Strict | | 2.23.140.1.5.3.3 | ||
+| CABF SMIME BR Individual-validated Legacy || 2.23.140.1.5.4.1 | ||
+| CABF SMIME BR Individual-validated Multipurpose | | 2.23.140.1.5.4.2 | ||
+| CABF SMIME BR Individual-validated Strict || 2.23.140.1.5.4.3 | |
\ No newline at end of file