We have finally built our own lookup table for all the Chromium recognized CT logs (5.6 billion lookup entries and counting). Our goal is to provide real-time KeyChest notifications of new certificates - especially when issued by an unexpected CAs.
Anyway - we can be only as good as the source and here’s some initial data, with a bit more about the growth of CT logs in my blog:
As the table shows:
- COMODO updates its logs mammoth and sabre every 10 minutes;
- DigiCert has 60 minute update intervals for the series of yeti logs (yeti2018, yeti2019, yeti2020, yeti2021 and yeti2022), just like Google for most of their CT logs;
- Symantec logs (ct, sirius and vega) are slowest - updates every 6 hours.
Google also has super fast Argon CT logs, which update in real-time (certainly within our 30 second checks).
EDIT: I was looking at the lag of CT logs themselves. Some comments mention crt.sh or other services. These are aggregators of CT logs with search capabilities. If you use these, you have to combine the latency of CT logs and the latency of this aggregation service.