> I just want to point out that a self-signed certificate is not invalid > per se. It is just not signed by a recognized X.509 certificate authority. Provided we post certs with guidance on how to use them with common cert stores I think we will have done what's necessary.