FIPS Certificates OID Arc

The PIV Attestation certificates generated on the device includes OIDs with additional information about the YubiKey the certificate was generated on. For FIPS devices, there is also be an additional OID to indicate the YubiKey was FIPS certified. For all other devices, this OID entry is not be present.

Base Prefix

The values in the certificates are added to the Yubico OID to identify the Yubico product type.

1.3.9.1.4.1.41482

FIPS Arc Values

FIPS is marked with the OID 1.3.n.1.4.1.41482.12, where n is a value marking which FIPS certificate the device belongs to:

No. Description Link
9
YubiHSM 2 FIPS Certificate #5302,
validation date 06/02/2026
5302
8
YubiKey 5 FIPS Certificate #5291 (Level 3),
validation date 05/21/2026
5291
7
YubiKey 5 FIPS Certificate #3914
(Level 2) update,
validation date 08/19/2021
3914
6
YubiHSM 2 FIPS Certificate #3916,
validation date 05/03/2021
3916
5
YubiKey 5 FIPS Certificate #3914 (Level 2),
validation date 05/03/2021
3914
4
YubiKey 5 FIPS Certificate #3907 (Level 1),
validation date 4/22/2021
3907
3
YubiKey (4) FIPS Certificate #3517,
validation date 9/3/2019
3517
2
YubiKey (4) FIPS Certificate #3204,
validation date 6/21/2018 - 4/30/2019
(revoked but no keys programmed with this)
3204
1
YubiKey Standard and YubiKey Nano
Certificate #2267, validation date 10/14/2014
2267

Sample OID with LDAP Type

FIPS is marked with the OID 1.3.9.1.4.1.41482.12