CT

Verify Certificate Transparency

Certificate Transparency (RFC 6962) requires CAs to submit every certificate to public, append-only Merkle logs. This tool parses the embedded SCTs, verifies each ECDSA signature against the log's public key, then fetches and verifies the Merkle inclusion proof — step by step.

The server will connect to port 443 and fetch the leaf certificate.

LIVEconnecting
Open full feed →
Waiting for certificates…

🔏

SCT Signature

Each SCT contains an ECDSA signature from the log. We verify it against the log's published public key.

🌲

Merkle Inclusion

We compute the leaf hash, fetch the audit path from the log API, and walk it to the root.

📋

Log Directory

Log IDs are resolved against Google's trusted log list (log_list.json v3).