MTNLTRUSTLINE RELYING PARTY AGREEMENT

YOU MUST READ THIS RELYING PARTY AGREEMENT BEFORE VALIDATING A MTNLTRUSTLINE CERTIFICATE OR ACCESSING OR USING MTNLTRUSTLINE'S DATABASE OF CERTIFICATE REVOCATIONS AND OTHER INFORMATION ("REPOSITORY") OR ANY CERTIFICATE REVOCATION LIST ISSUED BY MTNLTRUSTLINE ("MTNLTRUSTLINE CRL"). IF YOU DO NOT AGREE TO THE TERMS OF THIS RELYING PARTY AGREEMENT, DO NOT SUBMIT A QUERY AND DO NOT DOWNLOAD, ACCESS, OR USE ANY MTNLTRUSTLINE CRL BECAUSE YOU ARE NOT AUTHORIZED TO USE MTNLTRUSTLINE'S REPOSITORY OR ANY MTNLTRUSTLINE CRL.

This Relying Party Agreement details the terms and conditions regarding Your (Relying Party) reliance on a MTNLTRUSTLINE Certificate.

This Relying Party Agreement will become effective when you submit a query to search for a Certificate or CRL, or to verify a digital signature created with a private key corresponding to a public key contained in a MTNLTRUSTLINE Certificate, by downloading a MTNLTRUSTLINE Certificate or CRL, or when you otherwise use or rely upon any information or services provided by MTNLTRUSTLINE's Repository, MTNLTRUSTLINE's website, or any MTNLTRUSTLINE CRL. By submitting Your query to search for a Certificate or CRL, or by verifing a digital signature created with a private key corresponding to a public key contained in a MTNLTRUSTLINE Certificate, or by downloading a MTNLTRUSTLINE Certificate or CRL, or when you otherwise use or rely upon any information or services provided by MTNLTRUSTLINE's Repository, MTNLTRUSTLINE's website, or any MTNLTRUSTLINE CRL, You and are expressing Your agreement to the terms of this Relying Party Agreement. Reliance on MTNLTRUSTLINE certification services is governed by the MTNLTRUSTLINE Certification Practice Statement (MTNLTRUSTLINE CPS) as amended from time to time, which is incorporated by reference into this Relying Party Agreement.

You acknowledge and agree that you have access to sufficient information to ensure that you can make an informed decision as to the extent to which you will choose to rely on the information in a Certificate. You acknowledge and agree that your use of the Repository and your use of any MTNLTRUSTLINE CRL is governed by this Agreement and the MTNLTRUSTLINE CPS. (For more educational material, see the tutorial contained in MTNLTRUSTLINE's Repository at MTNLTRUSTLINE https://www.mtnltrustline.com/repository/). YOU ARE SOLELY RESPONSIBLE FOR DECIDING WHETHER OR NOT TO RELY ON THE INFORMATION IN A CERTIFICATE. You also acknowledge and agree that you shall bear the legal consequences of your failure to comply with the Relying Party obligations set forth in this Agreement.

1. DESCRIPTION OF CERTIFICATES.

A Certificate is a digitally signed message that contains a Subscriber's public key and associates it with information authenticated by MTNLTRUSTLINE or an MTNLTRUSTLINE RA. MTNLTRUSTLINE under this Agreement offers three distinct classes ("Classes") of Certificates, Classes 1, 2, and 3. Each class, of Certificates provides specific functionality and security features and corresponds to a specific level of trust. You are responsible for choosing which Class of Certificate You need. The following subsections state the appropriate uses and authentication procedures for each Class of Certificate. For more detailed information about MTNLTRUSTLINE's digital certificates, please see the MTNLTRUSTLINE Certification Practice Statement.

1.1. CLASS 1 CERTIFICATES.

Class 1 Certificates are issued to Individuals with valid e-mail addresses.
Class 1 validation procedures are based on the assurance that the subscriber’s Distinguished Name (DN) is unique and unambiguous within MTNLTRUSTLINE Repository and that the e-mail address in the DN is associated with the Public Key in the Certificate.
Class 1 Certificates are appropriate for Digital Signatures, encryption, and electronic access control for non-commercial transactions where proof of identity is not required.

1.2. CLASS 2 CERTIFICATES.

Class 2 Certificates are issued to Individuals, and Devices.
Class 2 validation procedures are based on the assurance that subscriber’s Distinguished Name (DN) is unique and unambiguous within MTNLTRUSTLINE Repository and that the identity of the Subscriber based on information provided by the Subscriber in the Certificate Application does not conflict with the information in a MTNLTRUSTLINE approved and well recognized business or consumer database(s) (Validating Database).
Class 2 Individual Certificates are appropriate for Digital Signatures, encryption, and electronic access control in transactions where proof of identity based on information in the Validating Database is sufficient.
Class 2 Device Certificates are appropriate for device authentication; message, software, and content integrity; and confidentiality encryption.

1.3. CLASS 3 CERTIFICATES.

Class 3 Certificates are issued to Individuals, Organizations, Servers, Devices, and Administrators for CAs and RAs.
The validation procedures for Class 3 Certificates issued to Individuals are based on the personal (physical) presence of the Subscriber before a MTNLTRUSTLINE authorized person that confirms the identity of the Subscriber using a well-recognized form of government issued identification and one other identification credential.
The validation procedures for Class 3 Certificates issued to Organizations are based on a confirmation that the Subscriber Organization does in fact exist, that the organization has authorized the Certificate Application, and that the person submitting the Certificate Application on behalf of the Subscriber was authorized to do so.
Class 3 Individual Certificates are appropriate for Digital Signatures, encryption, and access control in transactions requiring a high assurance about the Subscriber’s identity.
Class 3 Server Certificates are appropriate for server authentication; message, software, and content integrity; and confidentiality encryption.

1.4. TEST CERTIFICATES.

In addition to the three Classes of Certificates described above, MTNLTRUSTLINE also offers ‘Test’ certificates to its Subscribers. These ‘Test’ certificates are solely intended for evaluating the technical implementation of MTNLTRUSTLINE PKI and ascertaining the interoperability of MTNLTRUSTLINE Certificates with various applications and are not to be used or relied upon for any other purposes. The ‘Test’ Certificates are offered by MTNLTRUSTLINE on an ‘as is’ basis without any assurances about the accuracy, authenticity, integrity, or reliability of information contained in ‘Test’ Certificates. MTNLTRUSTLINE disclaims all warranties whatsoever with respect to ‘Test’ Certificates.

2. YOUR OBLIGATIONS. As a Relying Party, you are obligated to:

1. Independently assess the appropriateness of the use of a Digital Certificate for any given purpose and determine that the Certificate will, in fact, be used for an appropriate purpose. MTNLTRUSTLINE, its Sub-CAs, and RAs are not responsible for assessing the appropriateness of the use of a Certificate.
2. Not to use Certificates beyond the limitations in MTNLTRUSTLINE CPS § 1.3.4.2 and for purposes prohibited in MTNLTRUSTLINE CPS § 1.3.4.3.
3. Utilize the appropriate software and/or hardware to perform digital signature verification or other cryptographic operations You wish to perform, as a condition of relying on Certificates in connection with each such operation. Such operations include identifying a Certificate chain and verifying the Digital Signatures on all Certificates in the Certificate chain. You agree that you will not rely on a Certificate unless these verification procedures are successful.
4. Check the status of a Certificate on which You wish to rely, as well as all the Certificates in its Certificate Chain in accordance with MTNLTRUSTLINE CPS §§ 4.4.10, 4.4.12. If any of the Certificates in the Certificate Chain have been revoked, then You agree that You will not rely on the Subscriber Certificate or other revoked Certificate in the Certificate Chain.
5. Rely on the Certificate only if all of the checks described above are successful, provided that reliance upon the Certificate is reasonable under the circumstances. If the circumstances indicate a need for additional assurances, You agree that it is Your responsibility to obtain such assurances for such reliance to be deemed reasonable.

You also agree not to intentionally monitor, interfere with, or reverse engineer the technical implementation of MTNLTRUSTLINE or otherwise intentionally compromise the security of the MTNLTRUSTLINE PKI.

3. LIMITATIONS ON USE.

MTNLTRUSTLINE Certificates are not designed, intended, or authorized for use or resale as control equipment in hazardous circumstances or for uses requiring fail-safe performance such as the operation of nuclear facilities, aircraft navigation or communication systems, air traffic control systems, or weapons control systems, where failure could lead directly to death, personal injury, or severe environmental damage. Also, subject to MTNLTRUSTLINE CPS § 1.3.4.1.1, Class 1 Certificates shall not be used as proof of identity or for non repudiation.

4. MTNLTRUSTLINE WARRANTIES.

MTNLTRUSTLINE warrants to Relying Parties who reasonably rely on a MTNLTRUSTLINE Certificate that:

1. There are no material misrepresentations of fact in the Digital Certificate known to or originating from MTNLTRUSTLINE or its Sub-CAs or RAs,
2. There are no errors in the information in the Digital Certificate that were introduced by MTNLTRUSTLINE or its Sub-CAs or its RAs while approving the Certificate Application or issuing the Digital Certificate as a result of a failure to exercise reasonable care in managing the Certificate Application or creating the Digital Certificate,
3. The Digital Certificate meets all material requirements of the MTNLTRUSTLINE CPS,
4. Revocation services and use of the Repository conform to the MTNLTRUSTLINE CPS in all material aspects.
5. All information in or incorporated by reference in such Certificate is accurate,
6. Certificates appearing in the MTNLTRUSTLINE Repository, have been issued to the individual or organization named in the Certificate as the Subscriber, and the Subscriber has accepted the Certificate in accordance with MTNLTRUSTLINE CPS § 4.3, and
7. The entities approving the Certificate Application and issuing the Certificate have substantially complied with this CPS when issuing the Certificate.

5. DISCLAIMERS OF WARRANTIES.

You agree that Your use of MTNLTRUSTLINE's service(s) is solely at Your own risk. You agree that all such services are provided on an "as is" and as available basis, except as otherwise noted in this Relying Party Agreement. MTNLTRUSTLINE expressly disclaims all warranties of any kind, whether express or implied, including but not limited to the implied warranties of merchantability, fitness for a particular purpose and non-infringement. Other than the warranties as set forth in section 4 above, MTNLTRUSTLINE does not make any warranty that the service will meet Your requirments, or that the service will be uninterrupted, timely, secure or error free; nor does MTNLTRUSTLINE make any warranty as to the results that may be obtained from the use of the service or to the accuracy or reliability of any information obtained through MTNLTRUSTLINE's service. You understand and agree that any material and/or data downloaded or otherwise obtained through the use of MTNLTRUSTLINE's services is done at Your own discretion and risk. No advice or information, whether oral or written, obtained by you from MTNLTRUSTLINE or through MTNLTRUSTLINE's services shall create any warranty not expressley made herein, you may not rely on any such information or advice. MTNLTRUSTLINE is not responsible for and shall have no liability with respect to any products and/or services purchased by you from a third party.

YOU ARE HEREBY NOTIFIED OF THE POSSIBILITY OF THEFT OR OTHER FORM OF COMPROMISE OF A PRIVATE KEY CORRESPONDING TO A PUBLIC KEY CONTAINED IN A CERTIFICATE, WHICH MAY OR MAY NOT BE DETECTED, AND OF THE POSSIBILITY OF USE OF A STOLEN OR COMPROMISED KEY TO FORGE A DIGITAL SIGNATURE TO A DOCUMENT.

6. INDEMNITY.

You agree to release, indemnify, defend and hold harmless MTNLTRUSTLINE and any of its contractors, agents, employees, officers, directors, shareholders, and assigns from all liabilities, claims, damages, costs and expenses, including reasonable legal fees and expenses, of third parties relating to or arising out of (i) Your failure to perform the obligations of a Relying Party, (ii) Your reliance on a Certificate that is not reasonable under the circumstances, or (iii) Your failure to check the status of such Certificate to determine if the Certificate is expired or revoked. When MTNLTRUSTLINE is threatened with suit or sued by a third party, MTNLTRUSTLINE may seek written assurances from You concerning Your promise to indemnify MTNLTRUSTLINE, Your failure to provide those assurances may be considered by MTNLTRUSTLINE to be a material breach of this Relying Party Agreement. The terms of this section will survive any termination or cancellation of this Relying Party Agreement.

7. LIMITATIONS OF LIABILITY.

This section applies to liability under contract (including breach of warranty), tort (including negligence and/or strict liability), and any other legal or equitable form of claim. If you initiate any claim, action, suit, arbitration, or other proceeding relating to services provided under this agreement, and to the extent permitted by applicable law, MTNLTRUSTLINE's total liability for damages sustained by you and any third party for any use or reliance on a specific certificate shall be limited, in the aggregate, to the amounts set forth below:

CLASS OF CERTIFICATE	CLASS 1	CLASS 2	CLASS 3
LIABILITY CAPS	INR 1,000	INR 5,000	INR 15,000

The liability limitations provided in this section shall be the same regardless of the number of digital signatures, transactions, or claims related to such certificate. MTNLTRUSTLINE shall not be obligated to pay more than the total liability limitation for each certificate.

8. FIDUCIARY RELATIONSHIPS (NOPARTNERSHIP).

MTNLTRUSTLINE expressly disclaims any intention to create a partnership, employer/ employee relationship, joint venture, joint enterprise, or fiduciary relationship with MTNLTRUSTLINE or MTNLTRUSTLINE Enterprise RA Customer or MTNLTRUSTLINE Enterprise Sub-CA Customer on one hand and You (Subscriber) on the other hand. It is understood, acknowledged, and agreed that nothing contained in this agreement nor any acts of MTNLTRUSTLINE or any subscriber shall constitute or be deemed to constitute MTNLTRUSTLINE or MTNLTRUSTLINE Enterprise RA Customer or MTNLTRUSTLINE Enterprise Sub-CA Customer on one hand and You (Subscriber) on the other hand as partners, employer and employee, joint venturer, principal and agent, trustee and beneficiary, or as in a fiduciary relationship of any kind, in any way, or for any purpose.

9. FORCE MAJEURE.

Except for payment and indemnity obligations hereunder, neither party shall be deemed in default hereunder, nor shall it hold the other party responsible for, any cessation, interruption or delay in the performance of its obligations hereunder due to earthquake, flood, fire, storm, natural disaster, act of God, war, armed conflict, terrorist action, labor strike, lockout, boycott, provided that the Party relying upon this Section 7 shall have given the other party written notice thereof promptly and, in any event, within five (5) days of discovery thereof and (ii) shall take all reasonable steps reasonably necessary under the circumstances to mitigate the effects of the force majeure event upon which such notice is based; provided further, that in the event a force majeure event described in this Section 7 extends for a period in excess of thirty (30) days in aggregate, the other party may immediately terminate this Relying Party Agreement.

10. SEVERABILITY.

You agree that the terms of this Relying Party Agreement are severable. If any term or provision is declared invalid or unenforceable, in whole or in part, that term or provision will not affect the remainder of this Relying Party Agreement; this Relying Party Agreement will be deemed amended to the extent necessary to make this Relying Party Agreement enforceable, valid and, to the maximum extent possible consistent with applicable law, consistent with the original intentions of the parties; and the remaining terms and provisions will remain in full force and effect.

11. GOVERNING LAW.

You and MTNLTRUSTLINE agree that the information technology act 2000, information technology (certifying authorities) rules 2000 and information technology (certifying authority) regulations 2001, and any subsequent updates shall govern all services provided under this agreement.

12. DISPUTE RESOLUTION.

To the extent permitted by law, any and all disputes, claims or controversies arising out of or in any way connected with this agreement, its negotiation, performance, breach, existence, termination or validity shall be resolved by a meeting between the parties attended by individuals with decision making authority regarding the dispute, to attempt in good faith to negotiate a resolution of the dispute. If the parties are not successful in negotiating a resolution of the dispute within 30 days after such meeting, they must submit the dispute to the controller of certifying authorities (cca). Under the IT Act 2000, the controller of certifying authorities (cca) is authorized to resolve disputes arising out of CA services.

13. NON-ASSIGNMENT.

Except as otherwise set forth herein, Your rights under this Agreement are not assignable or transferable. Any attempt by Your creditors to obtain an interest in Your rights under this Relying Party Agreement, whether by attachment, levy, garnishment or otherwise, renders this Relying Party Agreement voidable at MTNLTRUSTLINE's option.

14. SURVIVAL.

This Relying Party Agreement shall be applicable for as long as the Certificate remains valid and You have not breached any provision of this Relying Party Agreement. All payment obligations shall survive any termination or expiration of this agreement.

15. PRIVACY.

You agree that MTNLTRUSTLINE may place in Your Certificate certain information that You provide for inclusion in Your Certificate. You also agree that MTNLTRUSTLINE may publish Your Certificate and information about its status in MTNLTRUSTLINE's repository of Certificate information and make this information available to other repositories.

16. MODIFICATIONS TO AGREEMENT.

Except as otherwise provided in this Relying Party Agreement, You agree, during the term of this Relying Party Agreement, that MTNLTRUSTLINE Management may (i) Revise the terms and conditions of this Relying Party Agreement; and/or (ii) Change part of the services provided under this Relying Party Agreement at any time. Any such revision or change will be binding and effective seven (07) days after posting of the revised Relying Party Agreement or change to the service(s) on MTNLTRUSTLINE's web site, or upon notification to You by e-mail or postal mail. You agree to periodically review MTNLTRUSTLINE's web site, including the current version of this Relying Party Agreement available on MTNLTRUSTLINE's web site, to be aware of any such revisions. If You do not agree with any revision to the Relying Party Agreement, You may terminate this Relying Party Agreement at any time by providing notice to MTNLTRUSTLINE. Notice of Your termination will be effective on receipt and processing by MTNLTRUSTLINE. Any fees paid by You if You terminate this Relying Party Agreement are nonrefundable. By continuing to use MTNLTRUSTLINE services after any revision to this Relying Party Agreement or change in service(s), You agree to abide by and be bound by any such revisions or changes.

17. NOTICES.

You will make all notices, demands or requests to MTNLTRUSTLINE with respect to this Relying Party Agreement in writing to:

MTNLTRUSTLINE Relying Party Notice Mahanagar Telephone Nigam Limited Jeevan Bharati, 124 Connaught Circus, New Delhi - 110 001 Tel: +91 11 2374 2212, Fax: +91 11 2335 9425 E-mail: notice@mtnltrustline.com