CodeB · Trust anchors

EU List of Trusted Lists — cache

Cached from ec.europa.eu/tools/lotl/eu-lotl.xml · last refresh
HAIP notes

What this is. The European Commission publishes a signed List of Trusted Lists (LOTL) that points at each EU Member State's national Trusted List. Each MS list in turn contains the X.509 certificates of the qualified trust service providers operating in that country — the entities allowed to issue qualified certificates, timestamps and, from eIDAS 2 onwards, elements of the EU Digital Identity Wallet.

What this page shows. A live snapshot of the trust anchors the CodeB verifier has fetched from that structure. When a wallet presents an x5c-based OpenID4VP request, our verifier chains the leaf certificate up to one of the anchors listed below. Refreshed daily; last-refresh timestamp shown above.

Scope. The cache is iter-2 (storage layer). XAdES verification of the LOTL XML and per-Member-State signature verification are on the iter-3 roadmap — see HAIP implementation notes. This page is safe to link to; nothing here is tenant-specific.

API. This page reads /lotl.ashx?status. The public endpoints /lotl.ashx?anchors (with optional &country=XX filter) and /lotl.ashx?anchor=<sha256hex> (returns one cert as PEM) are documented on the API reference page. The refresh endpoint requires an admin bearer token.

What we do not claim. Presence of a certificate in this cache means the European Commission's LOTL structure points at a national Trusted List that includes it. It does not constitute a self-claim that the CodeB verifier is a Qualified Trust Service Provider under eIDAS 2 — see the HAIP implementation notes for the boundary. We are not a QTSP and we do not issue qualified certificates.