itunes.apple.com
- Apple Inc. -
Issued by Apple Public EV Server RSA CA 2 - G1
About this certificate
This digital certificate with serial number 12:87:f0:fc:3f:a0:02:b3:2c:f0:7f:db:32:37:1a:9f was issued on by Apple Inc..
With 82 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Apple Inc.
Company registration number:
C0806592
Organization: Apple Inc.
Organization: Apple Inc.
State / Province:
California
Locality: Cupertino
Country: US
Locality: Cupertino
Country: US
Apple Inc.
Organization:
Apple Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 12:87:f0:fc:3f:a0:02:b3:2c:f0:7f:db:32:37:1a:9fSerial Number (int): 24631951763523513937456428645285829279
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: cf:8a:3d:ea:10:a6:b6:2d:d4:69:b9:7d:cb:27:c7:8e:8e:f5:ac:5f
AuthorityKeyId: 50:55:ab:43:a1:af:a9:48:2b:5a:c1:a2:87:89:04:e4:7a:0e:ca:da
Fingerprint (sha1): df:34:77:31:77:be:90:fc:81:73:0a:81:d6:8d:1f:f3:1d:f1:b0:ab
Fingerprint (sha256): 03:50:ee:32:2b:0d:49:f5:17:47:f6:d9:8b:06:34:17:c7:e7:1e:50:64:84:90:36:9d:10:fb:d4:c4:10:b7:66
Issuing Certificate URL: http://certs.apple.com/apevsrsa2g1.der
Revocation information
OCSP Server: http://ocsp.apple.com/ocsp03-apevsrsa2g101CRL Distribution Point: http://crl.apple.com/apevsrsa2g1.crl
Check the revocation status for certificate itunes.apple.com
82
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for itunes.apple.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
amp-api-edge.music.apple.com
books.apple.com
videos.apple.com
b5.mzstatic.com
carrierbundle.itunes.apple.com
s2.mzstatic.com
amp-api-edge.apps.apple.com
configuration.apple.com
pcr.apple.com
b2.mzstatic.com
apps.mzstatic.com
is5-ssl.mzstatic.com
partiality.itunes.apple.com
desktop-store.itunes.apple.com
s.mzstatic.com
itc.mzstatic.com
api.podcasts.apple.com
api-edge.apps.apple.com
s5.mzstatic.com
bookkeeper.itunes.apple.com
b4.mzstatic.com
a5.mzstatic.com
se.itunes.apple.com
xp.apple.com
tf-feedback.itunes.apple.com
finance-app.itunes.apple.com
uts-api-siri.itunes.apple.com
apps.apple.com
su.itunes.apple.com
edge.itunes.apple.com
api.videos.apple.com
sb.music.apple.com
store.mzstatic.com
se-edge.itunes.apple.com
amp-api-search-edge.apps.apple.com
api.books.apple.com
bag.itunes.apple.com
podcasts.apple.com
tv.apple.com
vocabulary.itunes.apple.com
a1.mzstatic.com
search.itunes.apple.com
siri-search.itunes.apple.com
desktop-music-legacy.itunes.apple.com
metrics.mzstatic.com
sb.tv.apple.com
a4.mzstatic.com
accertify.mzstatic.com
radio-quickplay.itunes.apple.com
vpp-app.itunes.apple.com
assets-mercury.mzstatic.com
is4-ssl.mzstatic.com
atve.tv.apple.com
pd.itunes.apple.com
sp.itunes.apple.com
api.edu.apple.com
s1.mzstatic.com
is3-ssl.mzstatic.com
radio-services.itunes.apple.com
is1-ssl.mzstatic.com
a2.mzstatic.com
itunes.apple.com
s3.mzstatic.com
api.itunes.apple.com
desktop-music.itunes.apple.com
sitemaps.itunes.apple.com
s4.mzstatic.com
upp.itunes.apple.com
images-mercury.mzstatic.com
is2-ssl.mzstatic.com
api.music.apple.com
radio.itunes.apple.com
init.itunes.apple.com
sf-api-token-service.itunes.apple.com
b1.mzstatic.com
music.apple.com
amp-api.podcasts.apple.com
b3.mzstatic.com
a3.mzstatic.com
radio-activity.itunes.apple.com
api.apps.apple.com
sync.itunes.apple.com
books.apple.com
videos.apple.com
b5.mzstatic.com
carrierbundle.itunes.apple.com
s2.mzstatic.com
amp-api-edge.apps.apple.com
configuration.apple.com
pcr.apple.com
b2.mzstatic.com
apps.mzstatic.com
is5-ssl.mzstatic.com
partiality.itunes.apple.com
desktop-store.itunes.apple.com
s.mzstatic.com
itc.mzstatic.com
api.podcasts.apple.com
api-edge.apps.apple.com
s5.mzstatic.com
bookkeeper.itunes.apple.com
b4.mzstatic.com
a5.mzstatic.com
se.itunes.apple.com
xp.apple.com
tf-feedback.itunes.apple.com
finance-app.itunes.apple.com
uts-api-siri.itunes.apple.com
apps.apple.com
su.itunes.apple.com
edge.itunes.apple.com
api.videos.apple.com
sb.music.apple.com
store.mzstatic.com
se-edge.itunes.apple.com
amp-api-search-edge.apps.apple.com
api.books.apple.com
bag.itunes.apple.com
podcasts.apple.com
tv.apple.com
vocabulary.itunes.apple.com
a1.mzstatic.com
search.itunes.apple.com
siri-search.itunes.apple.com
desktop-music-legacy.itunes.apple.com
metrics.mzstatic.com
sb.tv.apple.com
a4.mzstatic.com
accertify.mzstatic.com
radio-quickplay.itunes.apple.com
vpp-app.itunes.apple.com
assets-mercury.mzstatic.com
is4-ssl.mzstatic.com
atve.tv.apple.com
pd.itunes.apple.com
sp.itunes.apple.com
api.edu.apple.com
s1.mzstatic.com
is3-ssl.mzstatic.com
radio-services.itunes.apple.com
is1-ssl.mzstatic.com
a2.mzstatic.com
itunes.apple.com
s3.mzstatic.com
api.itunes.apple.com
desktop-music.itunes.apple.com
sitemaps.itunes.apple.com
s4.mzstatic.com
upp.itunes.apple.com
images-mercury.mzstatic.com
is2-ssl.mzstatic.com
api.music.apple.com
radio.itunes.apple.com
init.itunes.apple.com
sf-api-token-service.itunes.apple.com
b1.mzstatic.com
music.apple.com
amp-api.podcasts.apple.com
b3.mzstatic.com
a3.mzstatic.com
radio-activity.itunes.apple.com
api.apps.apple.com
sync.itunes.apple.com
Other certificates including the domain name apple.com
(limited to 100 certificates)
itunes.apple.com
ja.ls.apple.com
origin-discussions2-us-dr-prz.apple.com
training.apple.com
reserves-prime.prz.apple.com
app001.apple.com
deployment-pv50.ls.apple.com
itunes.apple.com
reserve-prime.apple.com
gsp81-ssl-e1118.ls.apple.com
gsp102-ssl-e1502.ls.apple.com
api.searchads.apple.com
idmsa-uat.apple.com
webpay-sh-pilot.apple.com
mzstatic.com
store-029.blobstore.apple.com
beatsglobalquality-uat.corp.apple.com
rw.apple.com
stg-pod1-smp.corp.apple.com
gr-api-video-h-aapne1a.smoot.apple.com
web-ext-mmap-ce01.apple.com
assurance-jigglebilly.apple.com
usl-expe1405.apple.com
store-995.blobstore.apple.com
sapecc-prd-ext.sap.apple.com
swdlp.apple.com
gsx.apple.com
gsp-ssl-e1134.ls.apple.com
clx-dev.apple.com
noodle.apple.com
gsp11-ty21-dlb-2.ls.apple.com
mzuserxp.itunes.apple.com
gsp64-st14-ssl-dlb.ls.apple.com
gsp45-ssl-e1356.ls.apple.com
gsp12-st14-dlb-2.ls.apple.com
discussions-uat.apple.com
dc-portal.apple.com
supplier.apple.com
gsp48-kittyhawk-qs55-ssl.ls.apple.com
gsp81-ssl-e1502.ls.apple.com
gsp48-ssl-e691.ls.apple.com
mapsconnectapi.ls.apple.com
wdg01-uat.apple.com
wellnessclassic.apple.com
api-partner-connect-uat1.apple.com
people.apple.com
supplier-registration.apple.com
gsp60-ssl-e997.ls.apple.com
ssuat.apple.com
locate.apple.com
itunes.apple.com
suppliernet.apple.com
gsp79-am31-dlb.ls.apple.com
smp-device-qa3.apple.com
eurored3.apple.com
devcon-oomnshuttleist-test.apple.com
coreservices-e1506-ms11-bistunium-k8straefik.ls.apple.com
dmo-vip01-storeinfo.retailtech.apple.com
gsp70-ssl-e706.ls.apple.com
dinah05.corp.apple.com
gsp1-ssl.apple.com
gspe85-cn-ssl.ls.apple.com
vorpal-relay.apple.com
bswe.apple.com
cma.itunes.apple.com
gsp-ssl-apne1-ash.ls.apple.com
theloop-stage.apple.com
tokenvalidation.apple.com
linkmaker.itunes.apple.com
gsp70-ssl-e1633.ls.apple.com
gsp63-ms12-kittyhawk-ssl.ls.apple.com
gsp-ssl-sl61-ipv6.ls.apple.com
aws-onepulse.apple.com
nightcap-events.apple.com
argo-api.apple.com
gsp12-kh-st14-1.ls.apple.com
gsp59-ssl-e506.ls.apple.com
mr-apple-com2.apple.com
ocservice.apple.com
gsp36-ssl-e1627.ls.apple.com
marketing.apple.com
ioss-callbackservices-qa3.apple.com
gsp19-kh-ms12.ls.apple.com
madeforipodandiphone.apple.com
gspe19-ssl.ls.apple.com
gsp19-1-kittyhawk-ci77-ssl.ls.apple.com
cs-integrations-stage.apple.com
gsp35-ty21-ssl.ls.apple.com
gbiportal-apps-external.apple.com
plmtest2.apple.com
gsp3-sy02-ssl.ls.apple.com
gspe35-ssl.ls.apple.com
gsp76-ty21-01.ls.apple.com
ne-access.apple.com
profilebroker.apple.com
axm-scim-qa12.apple.com
gsp95-hk02-stage-ssl.ls.apple.com
contactretail.apple.com
caffemacs-aa-prz.apple.com
bam.corp.apple.com
ja.ls.apple.com
origin-discussions2-us-dr-prz.apple.com
training.apple.com
reserves-prime.prz.apple.com
app001.apple.com
deployment-pv50.ls.apple.com
itunes.apple.com
reserve-prime.apple.com
gsp81-ssl-e1118.ls.apple.com
gsp102-ssl-e1502.ls.apple.com
api.searchads.apple.com
idmsa-uat.apple.com
webpay-sh-pilot.apple.com
mzstatic.com
store-029.blobstore.apple.com
beatsglobalquality-uat.corp.apple.com
rw.apple.com
stg-pod1-smp.corp.apple.com
gr-api-video-h-aapne1a.smoot.apple.com
web-ext-mmap-ce01.apple.com
assurance-jigglebilly.apple.com
usl-expe1405.apple.com
store-995.blobstore.apple.com
sapecc-prd-ext.sap.apple.com
swdlp.apple.com
gsx.apple.com
gsp-ssl-e1134.ls.apple.com
clx-dev.apple.com
noodle.apple.com
gsp11-ty21-dlb-2.ls.apple.com
mzuserxp.itunes.apple.com
gsp64-st14-ssl-dlb.ls.apple.com
gsp45-ssl-e1356.ls.apple.com
gsp12-st14-dlb-2.ls.apple.com
discussions-uat.apple.com
dc-portal.apple.com
supplier.apple.com
gsp48-kittyhawk-qs55-ssl.ls.apple.com
gsp81-ssl-e1502.ls.apple.com
gsp48-ssl-e691.ls.apple.com
mapsconnectapi.ls.apple.com
wdg01-uat.apple.com
wellnessclassic.apple.com
api-partner-connect-uat1.apple.com
people.apple.com
supplier-registration.apple.com
gsp60-ssl-e997.ls.apple.com
ssuat.apple.com
locate.apple.com
itunes.apple.com
suppliernet.apple.com
gsp79-am31-dlb.ls.apple.com
smp-device-qa3.apple.com
eurored3.apple.com
devcon-oomnshuttleist-test.apple.com
coreservices-e1506-ms11-bistunium-k8straefik.ls.apple.com
dmo-vip01-storeinfo.retailtech.apple.com
gsp70-ssl-e706.ls.apple.com
dinah05.corp.apple.com
gsp1-ssl.apple.com
gspe85-cn-ssl.ls.apple.com
vorpal-relay.apple.com
bswe.apple.com
cma.itunes.apple.com
gsp-ssl-apne1-ash.ls.apple.com
theloop-stage.apple.com
tokenvalidation.apple.com
linkmaker.itunes.apple.com
gsp70-ssl-e1633.ls.apple.com
gsp63-ms12-kittyhawk-ssl.ls.apple.com
gsp-ssl-sl61-ipv6.ls.apple.com
aws-onepulse.apple.com
nightcap-events.apple.com
argo-api.apple.com
gsp12-kh-st14-1.ls.apple.com
gsp59-ssl-e506.ls.apple.com
mr-apple-com2.apple.com
ocservice.apple.com
gsp36-ssl-e1627.ls.apple.com
marketing.apple.com
ioss-callbackservices-qa3.apple.com
gsp19-kh-ms12.ls.apple.com
madeforipodandiphone.apple.com
gspe19-ssl.ls.apple.com
gsp19-1-kittyhawk-ci77-ssl.ls.apple.com
cs-integrations-stage.apple.com
gsp35-ty21-ssl.ls.apple.com
gbiportal-apps-external.apple.com
plmtest2.apple.com
gsp3-sy02-ssl.ls.apple.com
gspe35-ssl.ls.apple.com
gsp76-ty21-01.ls.apple.com
ne-access.apple.com
profilebroker.apple.com
axm-scim-qa12.apple.com
gsp95-hk02-stage-ssl.ls.apple.com
contactretail.apple.com
caffemacs-aa-prz.apple.com
bam.corp.apple.com
Certificate
The complete raw certificate details for itunes.apple.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIOkjCCDXqgAwIBAgIQEofw/D+gArMs8H/bMjcanzANBgkqhkiG9w0BAQsFADBR MQswCQYDVQQGEwJVUzETMBEGA1UEChMKQXBwbGUgSW5jLjEtMCsGA1UEAxMkQXBw bGUgUHVibGljIEVWIFNlcnZlciBSU0EgQ0EgMiAtIEcxMB4XDTIzMTEzMDAxNTQw NloXDTI0MDUyODAyMDQwNlowgcoxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0 aW9uMRMwEQYLKwYBBAGCNzwCAQMTAlVTMRswGQYLKwYBBAGCNzwCAQIMCkNhbGlm b3JuaWExETAPBgNVBAUTCEMwODA2NTkyMQswCQYDVQQGEwJVUzETMBEGA1UECAwK Q2FsaWZvcm5pYTESMBAGA1UEBwwJQ3VwZXJ0aW5vMRMwEQYDVQQKDApBcHBsZSBJ bmMuMRkwFwYDVQQDDBBpdHVuZXMuYXBwbGUuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAsEbSaHx7vci+eO08jK109GvhqwMVENlKBOMe5mOxEvJr cG/r41YwprdVWgntpBU5xVqsaeGO3yV47g8u3nwcVgWoV7sQdMEGXb5uJsGQyvep sPRpm71ISAN23RbJu89qGrYZgtwVFA4Qt/QUhTb8TLR0rls3droMOHTpgPDM+qPu sC4idZAUaWN/qb6/RAZb+z0q792mY6sYvi3WViLk1zTnV9nzdIcVmPH3nDMHx49m rJYQUnd0GC+nFhyAZB5z2CCLUbYNeM87dD2Xq8HSwCUSrYzAN126MDCw/MevDFUk u76ugBsn588KkBvez3hTfuVp4TZSRBHRKRdu58St6QIDAQABo4IK6jCCCuYwDAYD VR0TAQH/BAIwADAfBgNVHSMEGDAWgBRQVatDoa+pSCtawaKHiQTkeg7K2jB6Bggr BgEFBQcBAQRuMGwwMgYIKwYBBQUHMAKGJmh0dHA6Ly9jZXJ0cy5hcHBsZS5jb20v YXBldnNyc2EyZzEuZGVyMDYGCCsGAQUFBzABhipodHRwOi8vb2NzcC5hcHBsZS5j b20vb2NzcDAzLWFwZXZzcnNhMmcxMDEwggdhBgNVHREEggdYMIIHVIIcYW1wLWFw aS1lZGdlLm11c2ljLmFwcGxlLmNvbYIPYm9va3MuYXBwbGUuY29tghB2aWRlb3Mu YXBwbGUuY29tgg9iNS5tenN0YXRpYy5jb22CHmNhcnJpZXJidW5kbGUuaXR1bmVz LmFwcGxlLmNvbYIPczIubXpzdGF0aWMuY29tghthbXAtYXBpLWVkZ2UuYXBwcy5h cHBsZS5jb22CF2NvbmZpZ3VyYXRpb24uYXBwbGUuY29tgg1wY3IuYXBwbGUuY29t gg9iMi5tenN0YXRpYy5jb22CEWFwcHMubXpzdGF0aWMuY29tghRpczUtc3NsLm16 c3RhdGljLmNvbYIbcGFydGlhbGl0eS5pdHVuZXMuYXBwbGUuY29tgh5kZXNrdG9w LXN0b3JlLml0dW5lcy5hcHBsZS5jb22CDnMubXpzdGF0aWMuY29tghBpdGMubXpz dGF0aWMuY29tghZhcGkucG9kY2FzdHMuYXBwbGUuY29tghdhcGktZWRnZS5hcHBz LmFwcGxlLmNvbYIPczUubXpzdGF0aWMuY29tghtib29ra2VlcGVyLml0dW5lcy5h cHBsZS5jb22CD2I0Lm16c3RhdGljLmNvbYIPYTUubXpzdGF0aWMuY29tghNzZS5p dHVuZXMuYXBwbGUuY29tggx4cC5hcHBsZS5jb22CHHRmLWZlZWRiYWNrLml0dW5l cy5hcHBsZS5jb22CHGZpbmFuY2UtYXBwLml0dW5lcy5hcHBsZS5jb22CHXV0cy1h cGktc2lyaS5pdHVuZXMuYXBwbGUuY29tgg5hcHBzLmFwcGxlLmNvbYITc3UuaXR1 bmVzLmFwcGxlLmNvbYIVZWRnZS5pdHVuZXMuYXBwbGUuY29tghRhcGkudmlkZW9z LmFwcGxlLmNvbYISc2IubXVzaWMuYXBwbGUuY29tghJzdG9yZS5tenN0YXRpYy5j b22CGHNlLWVkZ2UuaXR1bmVzLmFwcGxlLmNvbYIiYW1wLWFwaS1zZWFyY2gtZWRn ZS5hcHBzLmFwcGxlLmNvbYITYXBpLmJvb2tzLmFwcGxlLmNvbYIUYmFnLml0dW5l cy5hcHBsZS5jb22CEnBvZGNhc3RzLmFwcGxlLmNvbYIMdHYuYXBwbGUuY29tght2 b2NhYnVsYXJ5Lml0dW5lcy5hcHBsZS5jb22CD2ExLm16c3RhdGljLmNvbYIXc2Vh cmNoLml0dW5lcy5hcHBsZS5jb22CHHNpcmktc2VhcmNoLml0dW5lcy5hcHBsZS5j b22CJWRlc2t0b3AtbXVzaWMtbGVnYWN5Lml0dW5lcy5hcHBsZS5jb22CFG1ldHJp Y3MubXpzdGF0aWMuY29tgg9zYi50di5hcHBsZS5jb22CD2E0Lm16c3RhdGljLmNv bYIWYWNjZXJ0aWZ5Lm16c3RhdGljLmNvbYIgcmFkaW8tcXVpY2twbGF5Lml0dW5l cy5hcHBsZS5jb22CGHZwcC1hcHAuaXR1bmVzLmFwcGxlLmNvbYIbYXNzZXRzLW1l cmN1cnkubXpzdGF0aWMuY29tghRpczQtc3NsLm16c3RhdGljLmNvbYIRYXR2ZS50 di5hcHBsZS5jb22CE3BkLml0dW5lcy5hcHBsZS5jb22CE3NwLml0dW5lcy5hcHBs ZS5jb22CEWFwaS5lZHUuYXBwbGUuY29tgg9zMS5tenN0YXRpYy5jb22CFGlzMy1z c2wubXpzdGF0aWMuY29tgh9yYWRpby1zZXJ2aWNlcy5pdHVuZXMuYXBwbGUuY29t ghRpczEtc3NsLm16c3RhdGljLmNvbYIPYTIubXpzdGF0aWMuY29tghBpdHVuZXMu YXBwbGUuY29tgg9zMy5tenN0YXRpYy5jb22CFGFwaS5pdHVuZXMuYXBwbGUuY29t gh5kZXNrdG9wLW11c2ljLml0dW5lcy5hcHBsZS5jb22CGXNpdGVtYXBzLml0dW5l cy5hcHBsZS5jb22CD3M0Lm16c3RhdGljLmNvbYIUdXBwLml0dW5lcy5hcHBsZS5j b22CG2ltYWdlcy1tZXJjdXJ5Lm16c3RhdGljLmNvbYIUaXMyLXNzbC5tenN0YXRp Yy5jb22CE2FwaS5tdXNpYy5hcHBsZS5jb22CFnJhZGlvLml0dW5lcy5hcHBsZS5j b22CFWluaXQuaXR1bmVzLmFwcGxlLmNvbYIlc2YtYXBpLXRva2VuLXNlcnZpY2Uu aXR1bmVzLmFwcGxlLmNvbYIPYjEubXpzdGF0aWMuY29tgg9tdXNpYy5hcHBsZS5j b22CGmFtcC1hcGkucG9kY2FzdHMuYXBwbGUuY29tgg9iMy5tenN0YXRpYy5jb22C D2EzLm16c3RhdGljLmNvbYIfcmFkaW8tYWN0aXZpdHkuaXR1bmVzLmFwcGxlLmNv bYISYXBpLmFwcHMuYXBwbGUuY29tghVzeW5jLml0dW5lcy5hcHBsZS5jb20wYAYD VR0gBFkwVzBIBgVngQwBATA/MD0GCCsGAQUFBwIBFjFodHRwczovL3d3dy5hcHBs ZS5jb20vY2VydGlmaWNhdGVhdXRob3JpdHkvcHVibGljMAsGCWCGSAGG/WwCATAT BgNVHSUEDDAKBggrBgEFBQcDATA1BgNVHR8ELjAsMCqgKKAmhiRodHRwOi8vY3Js LmFwcGxlLmNvbS9hcGV2c3JzYTJnMS5jcmwwHQYDVR0OBBYEFM+KPeoQprYt1Gm5 fcsnx46O9axfMA4GA1UdDwEB/wQEAwIFoDCCAfUGCisGAQQB1nkCBAIEggHlBIIB 4QHfAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGMHfgZCwAA BAMARzBFAiEAhc6bVG5ZD+yK3cXDjK3Vc5NHoNh50gNAeToaqB8wMZUCIGtXR1x5 h33FqcykxobZW03Dj/l4hQlBOWNFPO7AEA8RAHUAKdA6G7Z0qnEc0wNbZVfBT4qn i0/oOJRJ7KRT+US9JGgAAAGMHfgZQwAABAMARjBEAiB72/tOjszyMf491emH8pVj xxnBeiLAqMl4yqpzWKGbvgIgYtiC0criWG2V/QRa3VsJZOrGcskrJPArHjlQYuIx f5QAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYwd+Bj8AAAE AwBHMEUCIFYPFtGgltMhyQvCwL1yX1mlKPlUJ5ufC7rV5qAjRzOUAiEAuP5ADEpw 0IOZKzx+VIjJHPxFLBcW72jiV0l88RpcS4AAdgDuzdBk1dsazsVct520zROiModG fLzs3sNRSFlGcR+1mwAAAYwd+BmAAAAEAwBHMEUCIQComn0vpwuCkSjQSJROyv3V 52oBHWRsieEt9DTteEUrLgIgAyAJ+O10AVz5bYzkdTK+F9wISCUmRnz/nH3iLyFA ZekwDQYJKoZIhvcNAQELBQADggEBAIkguTdKWgPYttu4/G6rVF4CiGCRlPNIV+/D XX/UIZPh8DVUzHNm6CcHtxHsCJM7ml6ulrlVk5tqm5VkAzRKRFv8upWEtYb/hgZd FFXQVix2MLH3AGScsgbKU7llhcaUWFN6WESTKv3f6kLMtj68tUtSIoqIwM/NYTVy TzKU4hvspz3MO/QYfdc96/uvtmZs0ZAHi95YpC85869epKs4qmY0sKLsbjco/3d2 Zg13OWOAyN/U/Dnf4GdS9mrAzFds6hlnRg86g8YCnqxzTCdrHHfk3JaZauzF3at9 K8RhrNKB8MztZlZCwBhMxe3GraFCUELnJljuNEMYMdlZ79ZqYcU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEbSaHx7vci+eO08jK10 9GvhqwMVENlKBOMe5mOxEvJrcG/r41YwprdVWgntpBU5xVqsaeGO3yV47g8u3nwc VgWoV7sQdMEGXb5uJsGQyvepsPRpm71ISAN23RbJu89qGrYZgtwVFA4Qt/QUhTb8 TLR0rls3droMOHTpgPDM+qPusC4idZAUaWN/qb6/RAZb+z0q792mY6sYvi3WViLk 1zTnV9nzdIcVmPH3nDMHx49mrJYQUnd0GC+nFhyAZB5z2CCLUbYNeM87dD2Xq8HS wCUSrYzAN126MDCw/MevDFUku76ugBsn588KkBvez3hTfuVp4TZSRBHRKRdu58St 6QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 24631951763523513937456428645285829279 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Apple Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Apple Public EV Server RSA CA 2 - G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-30 01:54:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-28 02:04:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'C0806592' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Cupertino' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Apple Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'itunes.apple.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22252865257905884902848206572237061686285464290825988512870870949605325226830535510780272012286617415878754360664684565939790292039764111871964566524917544870594543431280645982141404362094880631979676740544385722670725265752881446466927840914224847081221579586691832259110703548455808288579315377500758686916147045068399870563994079062248789449339290459870619647994613620593605398109105339144576775311124334233519593328833524231059358438891145370477118094371440073394685761938944224287265593858795782147697521947399129486284807318159911381142193551914717589572883775345085368082355540274123182196232660152194395581929 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5055ab43a1afa9482b5ac1a2878904e47a0ecada . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certs.apple.com/apevsrsa2g1.der' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.apple.com/ocsp03-apevsrsa2g101' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1880 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amp-api-edge.music.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'books.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'videos.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b5.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'carrierbundle.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's2.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amp-api-edge.apps.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'configuration.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pcr.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b2.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is5-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'partiality.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desktop-store.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itc.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.podcasts.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-edge.apps.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's5.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bookkeeper.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b4.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a5.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'se.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xp.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tf-feedback.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finance-app.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uts-api-siri.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'su.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edge.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.videos.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sb.music.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'se-edge.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amp-api-search-edge.apps.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.books.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bag.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'podcasts.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tv.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vocabulary.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a1.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'search.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'siri-search.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desktop-music-legacy.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'metrics.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sb.tv.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a4.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accertify.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'radio-quickplay.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpp-app.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets-mercury.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is4-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atve.tv.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pd.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sp.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.edu.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's1.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is3-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'radio-services.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is1-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a2.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's3.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desktop-music.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sitemaps.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's4.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'upp.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images-mercury.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is2-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.music.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'radio.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'init.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sf-api-token-service.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b1.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'music.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amp-api.podcasts.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b3.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a3.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'radio-activity.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.apps.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sync.itunes.apple.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.apple.com/certificateauthority/public' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.apple.com/apevsrsa2g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cf8a3dea10a6b62dd469b97dcb27c78e8ef5ac5f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (485 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (481 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008920b9374a5a03d8b6dbb8fc6eab545e0288609194f34857efc35d7fd42193e1f03554cc7366e82707b711ec08933b9a5eae96b955939b6a9b956403344a445bfcba9584b586ff86065d1455d0562c7630b1f700649cb206ca53b96585c69458537a5844932afddfea42ccb63ebcb54b52228a88c0cfcd6135724f3294e21beca73dcc3bf4187dd73debfbafb6666cd190078bde58a42f39f3af5ea4ab38aa6634b0a2ec6e3728ff7776660d77396380c8dfd4fc39dfe06752f66ac0cc576cea1967460f3a83c6029eac734c276b1c77e4dc96996aecc5ddab7d2bc461acd281f0cced665642c0184cc5edc6ada1425042e72658ee34431831d959efd66a61c5