← Apple Inc. cases
Bugzilla #1793210 Certificate Problem Report

Apple: CRLs for dormant CAs will not be populated in CCADB

RESOLVED FIXED Apple Inc.
AI Summary

Apple Inc. reported that it would not populate the CCADB with CRLs for eight dormant CA certificates capable of issuing TLS certificates, as they have never produced a CRL nor signed a certificate. This decision was made in light of the Mozilla Root Store Policy requirements effective October 1, 2022. The incident raised discussions among involved parties, including Sectigo and DigiCert, regarding compliance with the policy and the implications for non-issuing CAs. Ultimately, the case was resolved with the understanding that the policy would be updated to clarify requirements for dormant CAs.

Model: gpt-4o-mini Generated: 2026-06-13 15:13 UTC Confidence: 0.90
Chronology
  1. DigiCert issued six CAs to Apple.
  2. Sectigo issued two CAs to Apple.
  3. Mozilla Root Store Policy version 2.8 effective.
  4. Mozilla noted intent to modify policy.
  5. Apple concluded discussions with root vendors.
  6. Apple Root Program Policy updated.
  7. Incident report acknowledged by Sectigo.
Participants
certification_authority@apple.com tim.callan@sectigo.com jeremy.rowley@digicert.com bwilson@mozilla.com
External References
Original Bugzilla Case www.mozilla.org github.com groups.google.com www.apple.com
Similar Local Cases
#1843676 RESOLVED Certificate Problem Report Opened 2023-07-15 · Closed 2023-09-22 · 66% similar
Apple: Revocation Delay for TLS certificates issued outside the TTL of the CAA record
AI Summary CA Owner
#1955365 RESOLVED Certificate Problem Report Opened 2025-03-20 · Closed 2025-05-19 · 65% similar
Apple: Public Key Reuse
AI Summary CA Owner
#1841534 RESOLVED Certificate Problem Report Opened 2023-07-03 · Closed 2023-08-30 · 64% similar
Apple: TLS certificates issued outside the TTL of the CAA record
AI Summary CA Owner
#1730291 RESOLVED Certificate Problem Report Opened 2021-09-11 · Closed 2024-06-30 · 64% similar
Apple: Test website certificates expired
AI Summary CA Owner
#1659316 RESOLVED Certificate Problem Report Opened 2020-08-16 · Closed 2023-02-22 · 64% similar
Apple: EV Certificate Approver Authorization
AI Summary CA Owner
#1677234 RESOLVED Certificate Problem Report Opened 2020-11-13 · Closed 2023-02-22 · 62% similar
Apple: OCSP availability 2020-11-12
AI Summary CA Owner
#1588001 RESOLVED Certificate Problem Report Opened 2019-10-11 · Closed 2023-02-22 · 57% similar
Apple: OCSP responders return responses with incorrect issuer
AI Summary CA Owner
#1771398 RESOLVED Certificate Problem Report Opened 2022-05-26 · Closed 2023-02-22 · 55% similar
Apple: OCSP responders return ‘unknown’ for valid S/MIME and TLS certificates
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action