Version 2020-4 © TOV, TUEV and TUV are registered trademarks. Any use or application requires prior approval. Certificate Standard Certificate number Certificate holder and developer Product and assurance level Project number Evaluation facility + ® ‘Common Criteria Recognition ‘Arrangement for components up to EALZ and ALC_FLR3 SOGIS Mutuel Recognition ‘Agreement for components up 10 EALA or 7 and ALC_FLR3 Validity : A RIX I PEN, UT, Dutch Council for Accreditation www.tuv.com/nl Common Criteria for Information Technology Security Evaluation (CC), Version 3.1 Revision 5 Parts 1, 2 & 3 (ISO/IEC 15408-1, ISO/IEC 15408-2 & ISO/IEC 15408-3) CC-21-0108263 TUV Rheinland Nederland B.V. certifies: NXP Semiconductors Germany GmbH Troplowitzstrasse 20, 22529 HAMBURG, GERMANY NXP SmartePP on P71, version 03 00 00 10 Assurance Package: = EALS5 augmented with AVA_VAN.5, ALC_DVS.2 and ALC_FLR.1 Protection Profile Conformance: Common Criteria Protection Profile Machine Readable Travel Document with “ICAO Application”, Extended Access Control with PACE (EAC PP), v1.3.2, registered under BSI-CC-PP-0056-V2-2012-MA-02. = Protection Profile ‘Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE PP), v1.01, registered under BSI-CC-PP-0068-V2-2011-MA-01. 0108263 Riscure BV located in Delft, the Netherlands Applying the Common Methodology for Information Technology Security Evaluation (CEM), Version 3.1 Revision 5 (ISO/IEC 18045) The IT product identified in this certificate has been evaluated at an accredited and licensed/approved evaluation facility using the Common Methodology for IT Security Evaluation version 3.1 Revision 5 for conformance to the Common Criteria for IT Security Evaluation version 3.1 Revision 5. This certificate applies only to the specific version and release of the product in its evaluated configuration and in conjunction with the complete certification report. The evaluation has been conducted in accordance with the provisions of the Netherlands scheme for certification in the area of IT security INSCIB] and the conclusions of the evaluation facility in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsement of the IT product by TUV Rheinland Nederland B.V. or by other organisation that recognises or gives effect to this certificate, and no warranty of the IT product by TÜV Rheinland Nederland B.V. or by any other organisation that recognises or gives effect to this certificate, Is elther expressed or implied. Date of 1% issue : 12-05-2021 Certificate expiry : 12-05-2026 R.L. Kruit, LFM Systems TÜV Rheinland Nederland B.V. Westervoortsedijk 73, 6827 AV Amhem P.O. Box 2220, NL-6802 CE Arnhem The Netherlands A TUVRheinland® Precisely Right.