← All Sectigo certificates
Root Certificate
Entrust Digital Signing Root Certification Authority - DSR1
Sectigo
Browser Trust
Apple
Not Included
CCADB status only
Chrome
Not Included
No direct match
Microsoft
Included
Not directly listed
Mozilla
Not Yet Included
No direct match
- Trust Bits (root)
Certificate Details
- Record Type
- Root Certificate
- SHA-256
- E874FE2531EAE4A4B6B62F37496BBAE90EB1D8FC8CEDBEBB00A182CFACDC7E61
- Parent SHA-256
- —
- Valid From (GMT)
- 2021.11.12
- Valid To (GMT)
- 2040.12.30
- AKI
- —
- SKI
- pmVBgfJbhwVq3f2KVE6PmHvcI7g=
- Operated By
- —
- Constrained
- False
- Revocation
- —
- Salesforce ID
- 0018Z00002mL3U7QAK
Capabilities
- EV OIDs
- —
- Status of Root
- AppleNot IncludedGoogle ChromeNot IncludedMicrosoftIncludedMozillaNot Yet Included
TLSTLS EVCode SigningS/MIME
CAA Identifiers
Recognized CAA issuer identifiers published by CCADB for this CA certificate.
Entrust Digital Signing Root Certification Authority - DSR1
SKI A6654181F25B87056ADDFD8A544E8F987BDC23B8
Audit
- Audit Firm
- Deloitte
- Firm Location
- Canada
- Same as Parent
- false
Standard
- Audit URL
- Type
- WebTrust
- Statement
- 2025.11.19
- Period
- 2025.03.01 – 2025.09.17
NetSec
- Audit URL
- Type
- WebTrust
- Statement
- 2025.11.21
- Period
- 2025.03.01 – 2025.09.17
Code Signing
- Audit URL
- Type
- WebTrust
- Statement
- 2025.11.19
- Period
- 2025.03.01 – 2025.09.17
Policy & Documentation
- CP URL
- —
- CP Effective
- —
- CPS URL
- —
- CPS Effective
- —
- CP/CPS Statement
- MD/AsciiDoc URL
- —
Policy OIDs
Certificate
X.509 certificatePolicies · cryptographic fact
No certificatePolicies extension in certificate
CCADB
EV OIDs for Root Cert · administrative declaration
No OID data in CCADB record
Comparison
No policy OIDs present in either source
Chain Validation
No parent certificate in CCADB — chain lint requires issuer
Infrastructure
- CRL (Full)
- CRL (Parts)
- —
- ACME DV
- —
- ACME OV
- —
- ACME EV
- —
- Test (Valid)
- —
- Test (Expired)
- —
- Test (Revoked)
- —
Certificate (PEM)