diff --git a/README.md b/README.md
index 8fd0a1bcf76e84255d5b16959bf4ad62a83e8db2..1dbd221ab26d75ba457bc6edf0d93726bc44e1fc 100644
--- a/README.md
+++ b/README.md
@@ -10,6 +10,7 @@ It's `config` file is based on the config provided by a Ubuntu 22.04 installatio
 - The `preemption model` is set to `Fully Preemptible Kernel (RT)`.
 - `Compile the kernel with debug info (DEBUG_INFO)` is set to `no`.
 - `Additional X.509 keys for default system keyring` (`CONFIG_SYSTEM_TRUSTED_KEYS`) set to ""
+- `X.509 certificates to be preloaded into the system blacklist keyring` (`CONFIG_SYSTEM_REVOCATION_KEYS`) is set to ""
 
 Before the build, if the new kernel version contains new config keys, the corresponding values are set to their defaults.
 
diff --git a/config b/config
index 6fb68f0f5fdd3655f35e5823548a9d8e6bd84e1f..b992e0ede1937f7657fb40071b9e266311165965 100644
--- a/config
+++ b/config
@@ -10743,7 +10743,7 @@ CONFIG_SECONDARY_TRUSTED_KEYRING=y
 CONFIG_SYSTEM_BLACKLIST_KEYRING=y
 CONFIG_SYSTEM_BLACKLIST_HASH_LIST=""
 CONFIG_SYSTEM_REVOCATION_LIST=y
-CONFIG_SYSTEM_REVOCATION_KEYS="debian/canonical-revoked-certs.pem"
+CONFIG_SYSTEM_REVOCATION_KEYS=""
 # end of Certificates for signature checking
 
 CONFIG_BINARY_PRINTF=y