7 File System
The RNWF11 provides an internal storage for storing x509 root certificates and keys to use with the Transport Layer Security (TLS).
The secured certificate store is of 64 KB in size and it is write and erase only storage space. The certificates flashed in this memory is only readable through the device firmware.
The certificate store can be accessed through the AT commands. For more details on AT commands, refer AT Commands
The manual certificate/key flashing would need a serial terminal application with X-Modem/Y-Modem file transfer support. In order to simplify this process the firmware release package includes a python based utility which can Flash these files through a simple CLI
The utility also support Send To option on Windows operating system where these files can be flashed into RNWF11 device through the right click options.
By default the RNWF11 modules include following Root Certificates in the certificate store for easier could connectivity.
Issuer | File Name | Expiry | Public Key | Signature Algorithm | Notes |
---|---|---|---|---|---|
Amazon Root CA 1 | AmazonRootCA1.der | 16 January, 2038 17:00:00 | RSA (2048 bits) | SHA256RSA | AWS cloud |
Baltimore Cyber Trust Root | BaltimoreCyberTrustRoot.der | 12 May, 2025 16:59:00 | RSA (2048 bits) | SHA1RSA | — |
DigiCert High Assurance EV Root CA | DigiCert.der | 9 November, 2031 17:00:00 | RSA (2048 bits) | SHA1RSA | — |
DigiCert Global Root G2 | DigiCertGlobalRootG2.der | 15 January, 2038 05:00:00 | RSA (2048 bits) | SHA256RA | Azure cloud |
DigiCert SHA2 High Assurance EV Root CA | DigiCertSHA2.der | 22 October, 2028 05:00:00 | RSA (2048 bits) | SHA256RSA | — |
Entrust Root Certification Authority | EnTrust.der | 27 November, 2026 13:53:42 | RSA (2048 bits) | SHA1RSA | — |
GlobalSign Root CA | GlobalSignRoot.der | 28 January, 2028 05:00:00 | RSA (2048 bits) | SHA1RSA | — |
ISRG Root X1 | ISRGRootX1.der | 4 June, 2035 04:04:38 | RSA (2048 bits) | SHA256RSA | — |
QuoVadis Root CA 2 | QuoVadis_Root.der | 24 November, 2031 11:23:33 | RSA (2048 bits) | SHA1RSA | — |
VeriSign Class 3 Public Primary Certification Authority – G5 | VeriSign.der | 16 July, 2036 16:59:59 | RSA (2048 bits) | SHA1RSA | — |
mosquito.org | mosquitto.org.der | 7 June, 2030 04:06:39 | RSA (2048 bits) | SHA256RSA | — |
Setup Details – The certificate and key utility uses the AT command interface serial port of the RNWF11 module. The PC companion mode of the setup must be used to use the certificate and key utility.