apevsrsa1g1.der: CN=Apple Public EV Server RSA CA 1 - G1,O=Apple Inc.,C=US (Intermediate Certificate, Expiring 2030-04-10) detail info and audit record

CA Certificate Information and Audit Record

This certificate is intermediate certificate used for the issuance of other certificates.

• Certificate Download URL: http://certs.apple.com/apevsrsa1g1.der (in DER format )
• Serial Number : 6574396986810518357197016035267715008
• SHA-1 Fingerprint : 6e7f500db73ad6e8be963e6d15ed3484a32c8aa8
• SHA-1 Fingerprint : 6e:7f:50:0d:b7:3a:d6:e8:be:96:3e:6d:15:ed:34:84:a3:2c:8a:a8
• SHA-256 Fingerprint : 340ca5ba402d140b65a2c976e7ae8128a1505c29d190e0e034f59ccae7a92bc2
• SHA-256 Fingerprint : 34:0c:a5:ba:40:2d:14:0b:65:a2:c9:76:e7:ae:81:28:a1:50:5c:29:d1:90:e0:e0:34:f5:9c:ca:e7:a9:2b:c2
• Signature Hash Algorithm : sha256
• Subject : CN=Apple Public EV Server RSA CA 1 - G1,O=Apple Inc.,C=US
  • Country Name: US (United States of America)
  • Organization: Apple Inc.
  • Common Name: Apple Public EV Server RSA CA 1 - G1
• Not Valid Before: 2020-04-29 12:55:34
• Not Valid After: 2030-04-10 23:59:59
• Issuer (Parent Certificate):
  • Issuer Name: CN=DigiCert Global Root G2,OU=www.digicert.com,O=DigiCert Inc,C=US
  • Issuer Certificate URL: NA
• Audit Record:
  • Revocation Status: Not Revoked
  • Certificate Policy (CP) URL: https://images.apple.com/certificateauthority/pdf/Apple_Certificate_Policy_v4.0.pdf
  • Certificate Practice Statement (CPS) URL: https://images.apple.com/certificateauthority/pdf/Apple_Public_CA_CPS_v5.11.pdf
  • Auditor: Ernst & Young, LLP
  • Standard Audit URL: https://www.cpacanada.ca/generichandlers/CPACHandler.ashx?attachmentid=15b92005-0ad5-4bc7-a9f1-3f2b27097bf0
  • Standard Audit Period Start Date: 2021.04.16
  • Standard Audit Period End Date: 2022.04.15
  • Standard Audit Statement Date: 2022.07.09
  • Standard Audit Type: WebTrust
  • Full CRL Issued By This CA: http://crl.apple.com/apevsrsa1g1.crl
  • Check its issuer’s audit information: CN=DigiCert Global Root G2,OU=www.digicert.com,O=DigiCert Inc,C=US .

Download certificate through curl:

curl -sSL "http://certs.apple.com/apevsrsa1g1.der" --output cert.crt

Download certificate through wget:

wget -q "http://certs.apple.com/apevsrsa1g1.der" --output-document=cert.crt

CA Certificate Detail Information

Use openssl x509 to decode DER certificate to get detail information:

openssl x509 -in cert.crt -inform der -text -noout

Use openssl x509 to decode PEM certificate to get detail information:

openssl x509 -in cert.crt -inform pem -text -noout

Decoded detail certificate information:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:f2:2e:cc:21:fc:b4:38:2a:c2:8b:8f:2d:64:1f:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2
        Validity
            Not Before: Apr 29 12:55:34 2020 GMT
            Not After : Apr 10 23:59:59 2030 GMT
        Subject: C=US, O=Apple Inc., CN=Apple Public EV Server RSA CA 1 - G1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:9f:97:dd:57:40:38:70:23:45:bb:41:2f:52:
                    07:6e:65:53:f2:3d:98:ad:cb:8a:bc:45:ed:53:70:
                    4f:6a:1b:25:a8:56:9c:c7:9b:d3:a5:b8:39:6a:c1:
                    cb:ee:75:b2:f0:05:ed:b9:3d:60:36:67:dc:45:a5:
                    52:8a:f6:31:96:e9:5b:7b:f4:de:e2:7f:b7:5f:8b:
                    dc:36:fb:6c:c6:fb:fc:09:bb:56:7a:4c:0f:11:10:
                    d4:d5:b8:94:da:33:0a:90:5f:0d:5d:4e:46:44:3a:
                    08:c2:10:a6:bb:e6:ec:b3:5e:5f:a6:21:ad:2c:e0:
                    67:71:90:20:5c:94:62:3d:58:3b:14:16:52:e3:dc:
                    0e:9e:04:8c:de:4e:89:93:97:b2:e1:21:5f:a7:41:
                    41:16:4e:a9:30:1b:93:dc:c5:c9:22:bf:b5:e7:d6:
                    6b:bb:11:55:94:ba:46:56:63:cb:8b:f8:a8:5c:4c:
                    94:19:62:dc:4d:8f:73:de:33:bd:d6:67:77:eb:6a:
                    2c:4f:03:e4:41:91:59:c6:e4:d8:0e:6d:19:eb:93:
                    95:47:c2:39:ed:6e:2b:7d:f3:dd:a4:a7:b1:08:49:
                    92:b8:23:37:e6:f7:d4:20:3f:85:76:22:a1:c5:b0:
                    ac:5f:0a:76:6a:7f:05:07:8a:4c:5f:b4:85:64:8d:
                    72:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                D3:BD:C1:3C:A0:CF:35:B9:34:C5:D4:DB:DA:10:0E:4C:DE:6A:FE:58
            X509v3 Authority Key Identifier: 
                keyid:4E:22:54:20:18:95:E6:E3:6E:E6:0F:FA:FA:B9:12:ED:06:17:8F:39

            X509v3 Key Usage: critical
                Digital Signature, Certificate Sign, CRL Sign
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl3.digicert.com/DigiCertGlobalRootG2.crl

            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114412.2.1
                  CPS: https://www.digicert.com/CPS
                  User Notice:
                    Explicit Text: Any use of this Certificate constitutes acceptance of the Relying Party Agreement located at https://www.digicert.com/rpa-ua
                Policy: 2.23.140.1.1

    Signature Algorithm: sha256WithRSAEncryption
         43:f5:ce:92:9a:d3:31:1a:34:70:73:f0:35:6c:f8:8c:fa:bd:
         6a:8f:9c:5b:0f:31:a7:ea:ce:a6:ea:88:20:9b:d5:1e:04:b0:
         92:50:d2:6d:84:a7:df:34:fa:aa:c2:d5:0b:79:e5:1d:76:cb:
         1e:c1:a3:99:5f:eb:87:8c:6f:5b:63:f3:bd:27:55:50:b4:6b:
         57:23:68:67:77:20:0f:8a:5a:2a:36:37:f9:88:15:b5:ea:1d:
         d9:21:41:50:2f:7d:7d:84:84:a2:a0:8b:45:54:96:67:55:ee:
         20:8c:d1:16:8a:8d:59:47:03:b9:03:87:bf:1f:af:7f:94:f0:
         17:db:de:32:1a:d6:06:96:50:1d:bf:63:5e:c6:15:0c:7e:33:
         83:84:26:a3:a1:32:66:91:76:f2:22:96:33:4c:d9:20:0d:7b:
         d0:a6:d4:de:72:bb:eb:d2:b3:f3:10:c5:9f:4e:d1:92:a6:96:
         ce:0b:eb:3f:e6:31:b7:68:9e:86:26:7e:3d:45:a9:b5:64:b1:
         06:1d:3c:7d:3d:65:28:1e:d8:7d:2e:3e:ef:c0:50:43:f7:ae:
         bb:c7:d9:bd:9d:48:6e:11:3f:5a:dd:7b:cd:7a:9f:8d:ef:0f:
         7a:66:a1:f6:7c:0a:94:05:6d:64:97:ab:b7:bb:ae:c3:ea:6b:
         c3:b0:24:2b

CA Certificate in PEM Format

Use openssl x509 to convert certificate from DER format to PEM format:

openssl x509 -in cert.crt -inform der

Converted PEM format certificate:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Decode PEM Certificate online

Download PEM Certificate

Also see Top 1 Millions Domains CA Certificate List

Related Certificates

• AppleAAI2CA.cer: C=US,O=Apple Inc.,OU=Apple Certification Authority,CN=Apple Application Integration 2 Certification Authority (Expiring: 2028-05-24)
• AppleAAICAG3.cer: C=US,O=Apple Inc.,OU=Apple Certification Authority,CN=Apple Application Integration CA - G3 (Expiring: 2029-05-06)
• AppleApplicationIntegrationCA5G1.cer: C=US,O=Apple Inc.,OU=Apple Certification Authority,CN=Apple Application Integration CA 5 - G1 (Expiring: 2034-03-22)
• AppleRootCA-G2.cer: C=US,O=Apple Inc.,OU=Apple Certification Authority,CN=Apple Root CA - G2 (Expiring: 2039-04-30)
• AppleRootCA-G3.cer: C=US,O=Apple Inc.,OU=Apple Certification Authority,CN=Apple Root CA - G3 (Expiring: 2039-04-30)
• AppleTimestampCA.cer: C=US,O=Apple Inc.,OU=Apple Certification Authority,CN=Apple Timestamp Certification Authority (Expiring: 2027-04-05)
• AppleWWDRCAG2.cer: C=US,O=Apple Inc.,OU=Apple Certification Authority,CN=Apple Worldwide Developer Relations CA - G2 (Expiring: 2029-05-06)
• DeveloperIDCA.cer: C=US,O=Apple Inc.,OU=Apple Certification Authority,CN=Developer ID Certification Authority (Expiring: 2027-02-01)
• DevAuthCA.cer: C=US,O=Apple Inc.,OU=Apple Worldwide Developer Relations,CN=Developer Authentication Certification Authority (Expiring: 2028-04-29)
• applecorpserverca1.der: C=US,O=Apple Inc.,OU=Certification Authority,CN=Apple Corporate Server CA 1 (Expiring: 2029-03-26)
• appleistca2g1_bc.cer: C=US,O=Apple Inc.,OU=Certification Authority,CN=Apple IST CA 2 - G1 (Expiring: 2025-05-07)
• AppleISTCA2G1.cer: C=US,O=Apple Inc.,OU=Certification Authority,CN=Apple IST CA 2 - G1 (Expiring: 2025-05-07)
• appleistca8g1_bc.cer: C=US,O=Apple Inc.,OU=Certification Authority,CN=Apple IST CA 8 - G1 (Expiring: 2025-05-07)
• AppleISTCA8G1.cer: C=US,O=Apple Inc.,OU=Certification Authority,CN=Apple IST CA 8 - G1 (Expiring: 2031-06-08)
• AppleSoftwareUpdateCertificationAuthority.cer: C=US,O=Apple Inc.,OU=Certification Authority,CN=Apple Software Update Certification Authority (Expiring: 2031-10-15)
• DeveloperIDG2CA.cer: C=US,O=Apple Inc.,OU=G2,CN=Developer ID Certification Authority (Expiring: 2031-09-17)
• AppleWWDRCAG3.cer: C=US,O=Apple Inc.,OU=G3,CN=Apple Worldwide Developer Relations Certification Authority (Expiring: 2030-02-20)
• AppleWWDRCAG4.cer: C=US,O=Apple Inc.,OU=G4,CN=Apple Worldwide Developer Relations Certification Authority (Expiring: 2030-12-10)
• AppleWWDRCAG5.cer: C=US,O=Apple Inc.,OU=G5,CN=Apple Worldwide Developer Relations Certification Authority (Expiring: 2030-12-10)
• AppleWWDRCAG6.cer: C=US,O=Apple Inc.,OU=G6,CN=Apple Worldwide Developer Relations Certification Authority (Expiring: 2036-03-19)
• apsecc12g1.der: C=US,ST=California,O=Apple Inc.,CN=Apple Public Server ECC CA 12 - G1 (Expiring: 2028-12-06)
• apsrsa12g1.der: C=US,ST=California,O=Apple Inc.,CN=Apple Public Server RSA CA 12 - G1 (Expiring: 2028-12-06)
• AppleAAICA.cer: CN=Apple Application Integration Certification Authority,OU=Apple Certification Authority,O=Apple Inc.,C=US (Expiring: 2026-10-21)
• apevsecc1g1.der: CN=Apple Public EV Server ECC CA 1 - G1,O=Apple Inc.,C=US (Expiring: 2030-04-10)
• apevsrsa2g1.der: CN=Apple Public EV Server RSA CA 2 - G1,O=Apple Inc.,C=US (Expiring: 2030-04-10)
• AppleIncRootCertificate.cer: CN=Apple Root CA,OU=Apple Certification Authority,O=Apple Inc.,C=US (Expiring: 2035-02-09)
• AppleComputerRootCertificate.cer: CN=Apple Root Certificate Authority,OU=Apple Computer Certificate Authority,O=Apple Computer, Inc.,C=US (Expiring: 2025-02-10)
• AppleWWDRCAG7.cer: CN=Apple Worldwide Developer Relations Certification Authority,OU=G7,O=Apple Inc.,C=US (Expiring: 2023-11-17)