imladris

kyle/imladris

Fork 0

Commit Graph

Author	SHA1	Message	Date
Kyle Isom	6733e92d1f	Update CA cert after Metacrypt re-initialization New root CA cert issued during Metacrypt vault rebuild. Same key usage (Certificate Sign, CRL Sign), new validity period (2026-2046). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-03 10:07:54 -07:00
Kyle Isom	adca98065f	Update CA cert with CRL Sign key usage Same key, added CRL Sign to key usage extensions. Distributed to all nodes and NixOS system trust store. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-03 09:54:05 -07:00
Kyle Isom	87be4e34d3	Add WNTRMUTE issuing CA to system trust store All NixOS machines now trust the Metacircular platform CA. This allows curl, browsers, and Go services to verify TLS certificates issued by Metacrypt without --insecure or custom CA flags. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-25 19:30:24 -07:00

Author

SHA1

Message

Date

Kyle Isom

6733e92d1f

Update CA cert after Metacrypt re-initialization

New root CA cert issued during Metacrypt vault rebuild. Same key
usage (Certificate Sign, CRL Sign), new validity period (2026-2046).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-03 10:07:54 -07:00

Kyle Isom

adca98065f

Update CA cert with CRL Sign key usage

Same key, added CRL Sign to key usage extensions. Distributed to
all nodes and NixOS system trust store.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-03 09:54:05 -07:00

Kyle Isom

87be4e34d3

Add WNTRMUTE issuing CA to system trust store

All NixOS machines now trust the Metacircular platform CA. This
allows curl, browsers, and Go services to verify TLS certificates
issued by Metacrypt without --insecure or custom CA flags.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-25 19:30:24 -07:00

3 Commits