Sectigo Certificate Transparency Logs: Accepted Roots
Sectigo's CT logs are powered by Trillian with the Trillian CT personality.
Our first generation logs use Trillian's MySQL backend with a MariaDB database, whereas our second generation logs use Trillian's PostgreSQL backend with a PostgreSQL database.
All of our current logs are behind Cloudflare and use the CF_CTile caching proxy.
Our production logs accept all root certificates that are trusted for the server authentication trust purpose in one or more of the Microsoft, Mozilla, Chrome, Apple, and 360 Browser root programs.
Mammoth and Sabre were our first generation production logs, currently included in the Chrome and Apple log programs, but no longer accepting entries.
Elephant and Tiger are our second generation production logs, currently included in the Chrome and Apple log programs.
Our non-production logs accept all root certificates that are trusted for any trust purpose in one or more of the Microsoft, Mozilla, Chrome, Apple, 360 Browser, Java, and Android root programs, as well as various roots that are no longer trusted or are known to CCADB but not yet trusted.
Dodo was our first generation non-production log.
Dumbo is our second generation non-production log.
Our test logs accept root certificates that are not publicly trusted and that have been submitted by community members.
Dodo was also our first generation test log.
Tigger is our second generation test log. We welcome Pull Requests to add other root certificates to Tigger.
![@renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=64&v=4){kind=small}
