Hi everyone, I encountered an oddity with an inclusion of a certificate of mine in a CT log. Namely, I would like to check the inclusion of this certificate (https://crt.sh/?id=12905498367) in the Yeti 2024 log. It should be included in that log because there is an SCT from that log.
If I query for the certificate's hash at the log (hash computed using my code), the log returns a leaf index: https://yeti2024.ct.digicert.com/log/ct/v1/get-proof-by-hash?hash=MGjihrSBitsZpxw3LNGIdA7SMKEWdDSp7i0r8WoO1zw=&tree_size=879757777 However, when I use that leaf index to query for the certificate (and its proof) the response is "Not Found": https://yeti2024.ct.digicert.com/log/ct/v1/get-entry-and-proof?leaf_index=878032114&tree_size=879757777 I presume, the log is still auditable because it returns a proof of inclusion by the certificate's hash. However, I would expect the latter query to not fail. Am I missing something? These queries succeed for the other SCT of the certificate. Thanks, and best, Felix -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/daebdc74-3abb-4765-acf9-35fb0fe9694en%40mozilla.org.
