For your convenience, RACF® supplies certificates for some certificate authorities so you do not need to define them yourself. These certificates are not connected to any key ring and are defined as untrusted. This means that they are not used for authenticating these certificate authorities until you decide to use them.

Restriction: Do not delete the supplied certificates. If they do not exist at IPL time, RACF initialization automatically adds them. Therefore, if you delete them, they are recreated at the next IPL.

Each certificate is identified in RACF by its RACF label (a 32-character name). See Listings of RACF supplied certificates for a list of the certificates using their complete names as issued by the certificate authority, and the label for each supplied certificate.