← Apple Inc. cases
Bugzilla #1771398 Certificate Problem Report

Apple: OCSP responders return ‘unknown’ for valid S/MIME and TLS certificates

RESOLVED FIXED Apple Inc.
AI Summary

Apple's OCSP validation service was found to be returning 'unknown' instead of 'good' for valid S/MIME certificates, which violated their stated practices. The issue was identified on May 23, 2022, and was resolved the same day by updating the OCSP publisher configuration. Affected certificates were monitored, and no problematic certificates were issued in error. The CA has since implemented measures to ensure compliance with OCSP response standards.

Model: gpt-4o-mini Generated: 2026-06-13 15:13 UTC Confidence: 1.00
Chronology
  1. Issue identified with OCSP responses for valid S/MIME certificates.
  2. OCSP publisher configuration updated to resolve the issue.
  3. Initial report filed detailing the incident and remediation steps.
  4. All lints are now run on every public certificate issued.
Participants
certification_authority@apple.com
External References
Original Bugzilla Case images.apple.com images.apple.com bugzilla.mozilla.org
Similar Local Cases
#1588001 RESOLVED Certificate Problem Report Opened 2019-10-11 · Closed 2023-02-22 · 60% similar
Apple: OCSP responders return responses with incorrect issuer
AI Summary CA Owner
#1843676 RESOLVED Certificate Problem Report Opened 2023-07-15 · Closed 2023-09-22 · 59% similar
Apple: Revocation Delay for TLS certificates issued outside the TTL of the CAA record
AI Summary CA Owner
#1841534 RESOLVED Certificate Problem Report Opened 2023-07-03 · Closed 2023-08-30 · 59% similar
Apple: TLS certificates issued outside the TTL of the CAA record
AI Summary CA Owner
#1955365 RESOLVED Certificate Problem Report Opened 2025-03-20 · Closed 2025-05-19 · 58% similar
Apple: Public Key Reuse
AI Summary CA Owner
#1730291 RESOLVED Certificate Problem Report Opened 2021-09-11 · Closed 2024-06-30 · 58% similar
Apple: Test website certificates expired
AI Summary CA Owner
#1659316 RESOLVED Certificate Problem Report Opened 2020-08-16 · Closed 2023-02-22 · 58% similar
Apple: EV Certificate Approver Authorization
AI Summary CA Owner
#1793210 RESOLVED Certificate Problem Report Opened 2022-09-30 · Closed 2022-11-14 · 55% similar
Apple: CRLs for dormant CAs will not be populated in CCADB
AI Summary CA Owner
#1677234 RESOLVED Certificate Problem Report Opened 2020-11-13 · Closed 2023-02-22 · 55% similar
Apple: OCSP availability 2020-11-12
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action