IRS Logo
Print - Click this link to Print this page

Digital certificates

Digital certificates bind digital information to physical identities and provide non-repudiation and data integrity. Before you begin the IDES enrollment process, each entity should obtain one valid digital certificate issued by an approved certificate authority (CA). IDES stores your public key and related digital certificate.  IDES only recognizes and accepts digital certificates issued by IRS approved certificate authorities, listed below.

IRS Public Key

The IRS Public Key is a certificate that can be downloaded from the IDES Enrollment site. The public certificate should be included in the FATCA data packet (transmission archive) to the IRS.

Certificate File Format

Supported formats for the digital certificate are:

  • Distinguished Encoding Rules (DER) binary X.509
  • Privacy Enhanced eMail (PEM) ASCII (Base-64) encoded X.509

IDES will convert digital certificates received in DER format to Base64 for storage and retrieval.

Certificate Authority Type of Certificate
DigiCert SSL Plus (Single Name)
Entrust Standard SSL
GlobalSign Organization SSL
IdenTrust TrustID Server (SSL)
IdenTrust Organization non-SSL
StartCom StartSSL EV
Symantec/Verisign Secure Site SSL
Thawte SSL Web Server


Page Last Reviewed or Updated: 24-May-2016