Certificates for users and servers (PKI)

The service provides the basis for trustworthy distribution of keys necessary for secured communication between servers and individuals. The basis of the public key infrastructure (PKI) is the CESNET Certification authority (CESNET CA), which issues certificates to individuals, servers and other authorities. CESNET CA is accredited by EuGridPMA – member of IGTF.

The service is provided through own certification authority – CESNET CA, or through the Trusted Certificate Service (TCS) international project.

Service options:

  • Trusted Certificate Service (TCS)
    • Issue of eScience certificates for individuals,
    • Issue of server certificates.
    • Issue of certificates for individuals;
    • Issue of certificates for servers and services;
    • Issue of certificates for chip cards;
    • Certification of registration offices;
    • Certification of certification authorities.
  • Time stamps (TSA)

Key benefits

  • High reliability (policy, technology, processes, professionalism, independence).
  • Certificates to individuals and servers are available without any additional cost.

Target audience

The service is available to association members and connected participants.


The service is available free of any additional charge to the entities connected to the CESNET e-infrastructure.


The PKI service can be provided Once the administrative contact person has been appointed and authenticated by the registration officer (Prague, Brno, Pilsen, or by responsible staff member). Users may apply for the certificate based on the authentication through the eduID.cz federation.

Related services

Last change: 21.9.2020