You have plenty of options: 1) Convert pem certificate with openssl to something Windows would like. 2) Get xmlsec for Windows and use xmlsec utility. 3) Sign your examples with certificates issued by recognized CA (Versign for example). Aleksey