1Metadata-Version: 2.1 2Name: certifi 3Version: 2021.10.8 4Summary: Python package for providing Mozilla's CA Bundle. 5Home-page: https://certifiio.readthedocs.io/en/latest/ 6Author: Kenneth Reitz 7Author-email: me@kennethreitz.com 8License: MPL-2.0 9Project-URL: Documentation, https://certifiio.readthedocs.io/en/latest/ 10Project-URL: Source, https://github.com/certifi/python-certifi 11Platform: UNKNOWN 12Classifier: Development Status :: 5 - Production/Stable 13Classifier: Intended Audience :: Developers 14Classifier: License :: OSI Approved :: Mozilla Public License 2.0 (MPL 2.0) 15Classifier: Natural Language :: English 16Classifier: Programming Language :: Python 17Classifier: Programming Language :: Python :: 3 18Classifier: Programming Language :: Python :: 3.3 19Classifier: Programming Language :: Python :: 3.4 20Classifier: Programming Language :: Python :: 3.5 21Classifier: Programming Language :: Python :: 3.6 22Classifier: Programming Language :: Python :: 3.7 23Classifier: Programming Language :: Python :: 3.8 24Classifier: Programming Language :: Python :: 3.9 25License-File: LICENSE 26 27Certifi: Python SSL Certificates 28================================ 29 30`Certifi`_ provides Mozilla's carefully curated collection of Root Certificates for 31validating the trustworthiness of SSL certificates while verifying the identity 32of TLS hosts. It has been extracted from the `Requests`_ project. 33 34Installation 35------------ 36 37``certifi`` is available on PyPI. Simply install it with ``pip``:: 38 39 $ pip install certifi 40 41Usage 42----- 43 44To reference the installed certificate authority (CA) bundle, you can use the 45built-in function:: 46 47 >>> import certifi 48 49 >>> certifi.where() 50 '/usr/local/lib/python3.7/site-packages/certifi/cacert.pem' 51 52Or from the command line:: 53 54 $ python -m certifi 55 /usr/local/lib/python3.7/site-packages/certifi/cacert.pem 56 57Enjoy! 58 591024-bit Root Certificates 60~~~~~~~~~~~~~~~~~~~~~~~~~~ 61 62Browsers and certificate authorities have concluded that 1024-bit keys are 63unacceptably weak for certificates, particularly root certificates. For this 64reason, Mozilla has removed any weak (i.e. 1024-bit key) certificate from its 65bundle, replacing it with an equivalent strong (i.e. 2048-bit or greater key) 66certificate from the same CA. Because Mozilla removed these certificates from 67its bundle, ``certifi`` removed them as well. 68 69In previous versions, ``certifi`` provided the ``certifi.old_where()`` function 70to intentionally re-add the 1024-bit roots back into your bundle. This was not 71recommended in production and therefore was removed at the end of 2018. 72 73.. _`Certifi`: https://certifiio.readthedocs.io/en/latest/ 74.. _`Requests`: https://requests.readthedocs.io/en/master/ 75 76Addition/Removal of Certificates 77-------------------------------- 78 79Certifi does not support any addition/removal or other modification of the 80CA trust store content. This project is intended to provide a reliable and 81highly portable root of trust to python deployments. Look to upstream projects 82for methods to use alternate trust. 83 84 85