The client certificate/s for a Software Product and the server certificate for a Data Holder Brand will be generated from a self-signed Private Intermediate Root CA. The Sandbox Register, Data Holder Brands and Software Products will trust valid certificates that have been generated from the self-signed Private Intermediate Root CA.
For mTLS connections, Software Products are provisioned client certificates and will present the client certificate when interacting with a Data Holder Brand for consumer data sharing and with the Register when discovering Data Holder Brands and requesting a Software Statement Assertion.
The CDR Sandbox self-signed public Root and Intermediate CA certificates below will need to be trusted by your solution.
Certificate Files
Root CA
Intermediate CA
For more information, see https://consumerdatastandardsaustralia.github.io/standards/#certificate-management