Cannot ecnrypt using cacert X.509

Why I can use x.509 for encrypting thunderbird messages (so I suppose gpg works) but I cannot use kleopatra to encrypt any file?
If I try encrypt using my cacert x.509 certificate I get this error:
Encryption failed, Error in retrieving the registry: Not supported


I found a solution by my self.
I tick this option in Kleopatra settings:

“do not check CRLs for root certificate”

and then I can encrypt using X.509 issued by cacert.

Is it safe?

Bad news!

Even if apparently the X.509 encryption works, when I try to decrypt the file will be EMPTY!

So again there must be a bug using X.509 cacert encryption!

More exactly If I encrypt AND sign then the result will be EMPTY.
If I only encrypt WITHOUT sign then the file will be OK.

So the bug is in the signature.

Data signing succeeded


Data available


(data hash algorithm: SHA256)

Signer 1


(attr hash algorithm: SHA256)

(#133363/1.2.840.113549.1.9.1=#737570706F7274406361636572742E6F7267,CN=CA Cert Signing Authority,OU=,O=Root CA)

(/1.2.840.113549.1.9.1=#64616E69656C654073696E617073692E6F7267,1.2.840.113549.1.9.1=#64616E69656C652E70617373616C616371756140676D61696C2E636F6D,CN=CAcert WoT User)

Hi Dan,

Is this the same Issue as in your other Post[1]?

Best wishes,

[1] -

Yes indeed.
I am struggling trying to encrypt and sign using my X.509 Cacert.
I can encrypt and decrypt correctly without signature.
But if I try to encrypt and sign then the result is wrong, the file cannot be decrypted neither the sign could be verified.
I am using windows 10 and Kleopatra ver. 3.0.0


Can we then concentrate on just one of the Threads? I think it will make things easier when we discuss further in [1].

Best wishes,

[1] -

Ok, sorry.
I drop this one and continue on the other.