Entrust: SHA-1 Issuance and other misissuance while testing

Entrust reported multiple misissuances of certificates during testing, including one certificate signed with SHA-1 and lacking a subjectAltName, as well as three certificates with incorrect OCSP URLs. All affected certificates have since been revoked or expired. The issues arose from manual errors during the issuance process, which Entrust has since addressed by implementing stricter controls and moving towards automated issuance solutions to prevent future occurrences.

1. 2019-07-04 Manual issuance of an EV SSL certificate using the wrong profile.
2. 2019-07-08 Discovery of spelling errors in OCSP URLs for three certificates.
3. 2019-07-25 Entrust provided detailed incident report and timeline of events.
4. 2019-09-16 Confirmation that all questions have been answered and remediation is complete.