← Apple Inc. cases
Bugzilla #2052377
Self Reported Incident
Audit Finding
Audit Document
Apple: Audit Documents missing 2 Sub-CAs
UNCONFIRMED
Apple Inc.
This summary was auto-generated by AI and revised by me when needed — accuracy improves with each update.
Always refer to the official Bugzilla thread as the authoritative source.
If you spot an inaccuracy, let me know via the contact form.
AI Summary
Apple opened this case to report that its 2026 WebTrust audit reports did not include two Sub-CAs created on 2026-02-04. Apple states the two missing Sub-CAs should have appeared on the WTCA, WTBR, and WTNS reports. Apple says its root vendor, Sectigo, notified it that ALV returned errors when uploading Apple’s audit documents related to the two missing Sub-CAs. The bug includes the names and SHA-256 hashes of the two Sub-CAs. Apple indicates it will post a Full Incident Report on or before 2026-07-16. The bug is currently marked UNCONFIRMED and has no resolution recorded in the thread provided.
Chronology
- Two Sub-CAs were created by Apple.
- Apple reported that its 2026 WebTrust audit reports omitted the two Sub-CAs.
Thread Activity
- certification_authority@apple.com — Apple reported that its 2026 WebTrust audit reports did not include two Sub-CAs and said Sectigo notified it of ALV upload errors; Apple stated it would post a Full Incident Report on or before 2026-07-16.
Participants
certification_authority@apple.com
External References
Similar Local Cases
certSIGN: Findings in 2023 ETSI Audit for certSIGN ROOT CA G2 - Audit Incident Report
Entrust audit reports
Audit Documents for MSC Trustgate
CFCA audit reports 2023
Audit Info for Skaitmeninio sertifikavimo centras (SSC)
Audit documents for ISRG / Let's Encrypt
Audit info for SITHS CA v1
EA Audit for Government of India