最後更新於 | 查看所有文件
請注意:英文版本(原版)在本翻譯後有改動 () 查看英文版本
憑證透明度 (Certificate Transparency, CT) 是一個紀錄並監控 TLS 憑證頒發的系統。憑證透明度大大地增加了人們對憑證頒發的監控和研究,使得 CA 生態系和網路安全得到了大幅的改善。因此憑證透明度快速地成為了一個重要的網路基礎建設。
Let's Encrypt 將所有頒發的憑證都傳送到憑證透明度上。我們也自己運行憑證透明度系統,歡迎所有公眾信任的憑證頒發機構將憑證提交給我們。
資金來源
我們要感謝這些的夥伴慷慨地贊助 Let's Encrypt 的憑證透明度系統。如果你的組織想幫助我們繼續這項工作,請參考捐贈或成為贊助商
架構
我們的紀錄使用 Google 的 Trillian 並將伺服器架設在 AWS 上。我們使用 Kubernetes 控制容器之間的協調,以及使用 AWS RDS 管理資料庫。
監控紀錄
Let's Encrypt 開發了一個開源的憑證透明度監控工具 CT Woodpecker。我們使用這個工具監控我們系統的穩定性,我們也希望其他人能使用它。
憑證透明度紀錄
Production
-
-
Name: Oak 2019
URI: https://oak.ct.letsencrypt.org/2019
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEFkqNKRuZ+Z8IOsnNJrUZ8gwp+KKGOdQrJ/HKhSadK/SJuoCc9+dxQ7awpmWIMr9SKcQeG5uRzG1kVSyFN4Wfcw==
Log ID:65:9B:33:50:F4:3B:12:CC:5E:A5:AB:4E:C7:65:D3:FD:E6:C8:82:43:77:77:78:E7:20:03:F9:EB:2B:8C:31:29
Window Start:2019-01-01T00:00Z
Window End:2020-01-07T00:00Z
State: Rejected - Shard Expired -
Name: Oak 2020
URI: https://oak.ct.letsencrypt.org/2020
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEfzb42Zdr/h7hgqgDCo1vrNJqGqbcUvJGJEER9DDqp19W/wFSB0l166hD+U5cAXchpH8ZkBNUuvOHS0OnJ4oJrQ==
Log ID:E7:12:F2:B0:37:7E:1A:62:FB:8E:C9:0C:61:84:F1:EA:7B:37:CB:56:1D:11:26:5B:F3:E0:F3:4B:F2:41:54:6E
Window Start:2020-01-01T00:00Z
Window End:2021-01-07T00:00Z
State: Rejected - Shard Expired -
Name: Oak 2021
URI: https://oak.ct.letsencrypt.org/2021
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAELsYzGMNwo8rBIlaklBIdmD2Ofn6HkfrjK0Ukz1uOIUC6Lm0jTITCXhoIdjs7JkyXnwuwYiJYiH7sE1YeKu8k9w==
Log ID:94:20:BC:1E:8E:D5:8D:6C:88:73:1F:82:8B:22:2C:0D:D1:DA:4D:5E:6C:4F:94:3D:61:DB:4E:2F:58:4D:A2:C2
Window Start:2021-01-01T00:00Z
Window End:2022-01-07T00:00Z
State: Rejected - Shard Expired -
Name: Oak 2022
URI: https://oak.ct.letsencrypt.org/2022
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEhjyxDVIjWt5u9sB/o2S8rcGJ2pdZTGA8+IpXhI/tvKBjElGE5r3de4yAfeOPhqTqqc+o7vPgXnDgu/a9/B+RLg==
Log ID:DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
Window Start:2022-01-01T00:00Z
Window End:2023-01-07T00:00Z
State: Rejected - Shard Expired -
Name: Oak 2023
URI: https://oak.ct.letsencrypt.org/2023
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEsz0OeL7jrVxEXJu+o4QWQYLKyokXHiPOOKVUL3/TNFFquVzDSer7kZ3gijxzBp98ZTgRgMSaWgCmZ8OD74mFUQ==
Log ID:B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
Window Start:2023-01-01T00:00Z
Window End:2024-01-07T00:00Z
State: Rejected - Shard Expired -
Name: Oak 2024h1
URI: https://oak.ct.letsencrypt.org/2024h1
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEVkPXfnvUcre6qVG9NpO36bWSD+pet0Wjkv3JpTyArBog7yUvuOEg96g6LgeN5uuk4n0kY59Gv5RzUo2Wrqkm/Q==
Log ID:3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Window Start:2023-12-20T00:00Z
Window End:2024-07-20T00:00Z
State: Usable -
Name: Oak 2024h2
URI: https://oak.ct.letsencrypt.org/2024h2
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE13PWU0fp88nVfBbC1o9wZfryUTapE4Av7fmU01qL6E8zz8PTidRfWmaJuiAfccvKu5+f81wtHqOBWa+Ss20waA==
Log ID:3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Window Start:2024-06-20T00:00Z
Window End:2025-01-20T00:00Z
State: Usable -
Name: Oak 2025h1
URI: https://oak.ct.letsencrypt.org/2025h1
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEKeBpU9ejnCaIZeX39EsdF5vDvf8ELTHdLPxikl4y4EiROIQfS4ercpnMHfh8+TxYVFs3ELGr2IP7hPGVPy4vHA==
Log ID:A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Window Start:2024-12-20T00:00Z
Window End:2025-07-20T00:00Z
State: Usable -
Name: Oak 2025h2
URI: https://oak.ct.letsencrypt.org/2025h2
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEtXYwB63GyNLkS9L1vqKNnP10+jrW+lldthxg090fY4eG40Xg1RvANWqrJ5GVydc9u8H3cYZp9LNfkAmqrr2NqQ==
Log ID:0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
Window Start:2025-06-20T00:00Z
Window End:2026-01-20T00:00Z
State: Usable
-
Name: Oak 2019
Testing
-
-
Name: Sapling 2022h2
URI: https://sapling.ct.letsencrypt.org/2022h2
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE6m0gtMM2pcVTxVjkztm/ByNrF32xacdVnbsYwlzwtqN0vOwqcXLtPkfYqH+q93hlJwEBsX1MnRXDdlMHkkmZJg==
Log ID:23:2D:41:A4:CD:AC:87:CE:D9:F9:43:F4:68:C2:82:09:5A:E0:9D:30:D6:2E:2F:A6:5D:DC:3B:91:9C:2E:46:8F
Window Start:2022-06-15T00:00Z
Window End:2023-01-15T00:00Z
-
Name: Sapling 2023h1
URI: https://sapling.ct.letsencrypt.org/2023h1
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE09jAcGbw5CDCK2Kg0kkmmDydfDfZAA8K64BufU37yx3Jcy/ePy1EjAi2wUPVJ0xsaNMCU37mh+fBV3+K/cSG8A==
Log ID:C1:83:24:0B:F1:A4:50:C7:6F:BB:00:72:69:DC:AC:3B:E2:2A:48:05:D4:db:E0:49:66:C3:C8:ab:C4:47:B0:0C
Window Start:2022-12-15T00:00Z
Window End:2023-07-15T00:00Z
-
Name: Sapling 2023h2
URI: https://sapling.ct.letsencrypt.org/2023h2
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEbdCykRsTPRgfjKVQvINRLJk3gy+2qNKOU48bo/sWO0ko75S92C+PBDxsqMEd0YpCYYLogCt2LAK/U4H7UwHsjA==
Log ID:ED:AB:9D:1D:DD:83:73:95:9F:F5:2A:88:E4:6B:B4:BC:C3:C4:CC:4D:76:8A:60:CC:FF:4E:36:2D:7F:B8:D6:68
Window Start:2023-06-15T00:00Z
Window End:2024-01-15T00:00Z
-
Name: Sapling 2024h1
URI: https://sapling.ct.letsencrypt.org/2024h1
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE1Yn4OKJQuwEwo1/BeVBh1NYkQBnS8sYmMfQr/VdXOGqPcbwcpw0TtjJBYmn8FA+ZT7hnt7OfF4RTjLNW3bWOkw==
Log ID:AA:6C:B0:C5:C9:F4:C4:9D:8D:8E:A9:0C:39:17:E0:D7:0A:D9:22:10:BF:05:7F:41:50:93:82:CC:35:0C:98:46
Window Start:2023-12-15T00:00Z
Window End:2024-07-15T00:00Z
-
Name: Sapling 2024h2
URI: https://sapling.ct.letsencrypt.org/2024h2
Public Key:MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEWipy8ZdRGs2Y5tBb8h8c4UUREnT/YMbm+FEUQBBScf85txhGRHNN/sNN0L/KDiGu/GsrOBCkDruDfHkD42eZXQ==
Log ID:85:1B:AE:8E:EE:33:C1:B9:87:3F:C4:9C:7A:7C:27:65:66:3B:6B:80:63:03:04:0A:EC:A6:C1:11:A5:AB:E9:D7
Window Start:2024-06-15T00:00Z
Window End:2025-01-15T00:00Z
-
Name: Sapling 2022h2