Version 2023-07 TrustCB and TrustCB TRUST AND VERIFY are registered trademarks. Any use or application requires prior approval. Certificate Standard ISO/IEC 15408-1 :2009, -2 :2008, -3 :2008, Common Criteria for Information Technology Security Evaluation (CC) v3.1 rev 5 and ISO/IEC 18045 :2008, Common Criteria Evaluation Methodology for Information Security Evaluation (CEM) v3.1 rev 5 Certificate number NSCIB-CC-23-2300012-01.2 TrustCB B.V. certifies: Certificate holder The Government of Japan Digital Agency, Tokyo Garden Terrace Kioicho 19F, Kioicho 1-3, Chiyoda-ku, Tokyo 102- 0094, Japan Ministry of Internal Affairs and Communications, Kasumigaseki 1-2-1, Chiyoda-ku, Tokyo 100-8926, Japan Developer FeliCa Networks, Inc. West Tower 16F, Gate City Osaki, 1-11-1, Osaki, Shinagawa-ku, Tokyo 141-0032, Japan Product and assurance level JPKI applet v1.0 on Combo CE 4.2.3 ST54J/K Assurance Package: ▪ EAL4 augmented with ALC_DVS.2 and AVA_VAN.5 Protection Profile Conformance: ▪ EN 419 211-2:2013, Protection profiles for secure signature creation device - Part 2: Device with key generation, V2.0.1, registered under the reference BSI-CC-PP-0059-2009-MA-02 ▪ EN 419 211-4:2013, Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application, registered under the reference BSI-CC-PP-0071-2012-MA-01 Project number NSCIB-2300012-01 Evaluation facility Common Criteria Recognition Arrangement for components up to EAL2 and ALC_FLR.3 SOGIS Mutual Recognition Agreement for components up to EAL 7 and ALC_FLR 3 SGS Brightsight located in Delft, the Netherlands Applying the Common Methodology for Information Technology Security Evaluation (CEM), Version 3.1 Revision 5 (also published as ISO/IEC 18045) The IT product identified in this certificate has been evaluated at an accredited and licensed/approved evaluation facility using the Common Methodology for IT Security Evaluation version 3.1 Revision 5 for conformance to the Common Criteria for IT Security Evaluation version 3.1 Revision 5. CC and CEM are also published as ISO/IEC 15408-1 :2009, -2 :2008, -3 :2008 and ISO/IEC 18045:2008. This certificate applies only to the specific version and release of the product in its evaluated configuration and in conjunction with the complete certification report. The evaluation has been conducted in accordance with the provisions of the Netherlands scheme for certification in the area of IT security [NSCIB] and the conclusions of the evaluation facility in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsement of the IT product by TrustCB B.V. or by other organisation that recognises or gives effect to this certificate, and no warranty of the IT product by TrustCB B.V. or by any other organisation that recognises or gives effect to this certificate, is either expressed or implied. Validity Date of 1st issue : 27-04-2023 Admin re-issue : 06-07-2023 Certificate expiry : 27-04-2028 Wouter Slegers, CEO TrustCB B.V. Van den Berghlaan 48, 2132 AT Hoofddorp, The Netherlands