The other day I was wondering where Firefox, or to be exact, Mozilla keeps its pre-shipped trusted CA certificates. Googling around I found out that the certificates are compiled as a shared library. Fortunately, I also found out how to manipulate the shared library for my own use.

http://groups.google.com/group/mozilla.dev.tech.crypto/browse_thread/thr... explains that the certificates are compiled as a shared library.

http://groups.google.com/group/mozilla.dev.tech.crypto/browse_thread/thr... gives the way to manipulate the pre-shipped CA certificates.