when comparing an end-certificate with the trusted list compare the entire certificate