← MULTICERT cases
Bugzilla #1532333 Certificate Problem Report

Camerfirma: Unrevocation of MULTICERT SSL Certification Authority 001 certificate

RESOLVED FIXED MULTICERT
AI Summary

Camerfirma faced a significant incident involving the unrevocation of the MULTICERT SSL Certification Authority 001 certificate due to a misissued Certificate Revocation List (CRL). The issue arose from human error, where a CRL was published with an incorrect serial number, leading to confusion between two similar CA certificates. This incident raised serious concerns about the immutability of revocations and the entropy of serial numbers. Camerfirma has since implemented measures to improve their processes, including enhanced controls for certificate issuance and CRL publication to prevent such occurrences in the future.

Model: gpt-4o-mini Generated: 2026-06-13 18:05 UTC Confidence: 0.90
Chronology
  1. MULTICERT reported revocation alerts for the CA certificate.
  2. Camerfirma improved CRL publishing procedures.
  3. EJBCA pre-production environment deployment completed.
  4. EJBCA production environment deployment completed.
  5. Camerfirma deployed an internal tool to manage CA certificates.
Participants
Eusebio Herrera Ryan Sleevi Juan Angel Martin Wayne Thayer Ana Lopes
External References
Original Bugzilla Case
Similar Local Cases
#1532333 RESOLVED Certificate Problem Report Opened 2019-03-04 · Closed 2023-02-22 · 78% similar
Camerfirma: Unrevocation of MULTICERT SSL Certification Authority 001 certificate
AI Summary CA Owner
#1509002 RESOLVED Certificate Problem Report Opened 2018-11-21 · Closed 2023-02-22 · 74% similar
Camerfirma: MULTICERT certificates with a validity period greater than 825 days
AI Summary CA Owner
#1623384 RESOLVED Certificate Problem Report Opened 2020-03-18 · Closed 2023-02-22 · 68% similar
Camerfirma: Invalid authorityKeyIdentifier - recurrent incident
AI Summary CA Owner
#1672423 RESOLVED Certificate Problem Report Opened 2020-10-21 · Closed 2023-02-22 · 67% similar
Camerfirma: certificate for unregistered domain cuatis.net
AI Summary CA Owner
#1672409 RESOLVED Certificate Problem Report Opened 2020-10-21 · Closed 2023-02-22 · 66% similar
Camerfirma: suspicious certificate for com.com
AI Summary CA Owner
#1667430 RESOLVED Certificate Problem Report Opened 2020-09-25 · Closed 2023-02-22 · 65% similar
Camerfirma: Invalid stateOrProvinceName field
AI Summary CA Owner
#1509002 RESOLVED Certificate Problem Report Opened 2018-11-21 · Closed 2023-02-22 · 65% similar
Camerfirma: MULTICERT certificates with a validity period greater than 825 days
AI Summary CA Owner
#1649944 RESOLVED Certificate Problem Report Opened 2020-07-02 · Closed 2023-02-22 · 64% similar
Camerfirma: Incorrect OCSP Delegated Responder Certificate
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action