cloudflare · andre-j3sus · Jul 28, 2025 · Jul 28, 2025 · Jul 28, 2025 · Jul 28, 2025
@@ -13,8 +13,8 @@ date: 2025-02-04
 Radar now provides [rankings for Internet services](/radar/glossary/#internet-services-ranking), including Generative AI platforms, based on anonymized 1.1.1.1 resolver data.
 Previously limited to the annual Year in Review, these insights are now available daily via the [API](/api/resources/radar/subresources/ranking/subresources/internet_services/), through the following endpoints:
 
-- [`top`](/api/resources/radar/subresources/ranking/subresources/internet_services/methods/top/) show service popularity at a specific date.
-- [`timeseries_groups`](/api/resources/radar/subresources/ranking/subresources/internet_services/methods/timeseries_groups/) track ranking trends over time.
+- [`/ranking/internet_services/top`](/api/resources/radar/subresources/ranking/subresources/internet_services/methods/top/) show service popularity at a specific date.
+- [`/ranking/internet_services/timeseries_groups`](/api/resources/radar/subresources/ranking/subresources/internet_services/methods/timeseries_groups/) track ranking trends over time.
 
 #### Robots.txt
 
@@ -26,15 +26,15 @@ AI-focused user agents from [ai.robots.txt](https://github.com/ai-robots-txt/ai.
 
 These insights are now available weekly via the [API](/api/resources/radar/subresources/robots_txt/), through the following endpoints:
 
-- [`top/user_agents/directive`](/api/resources/radar/subresources/robots_txt/subresources/top/subresources/user_agents/methods/directive/) to get the top AI user agents by directive.
-- [`top/domain_categories`](/api/resources/radar/subresources/robots_txt/subresources/top/methods/domain_categories/) to get the top domain categories by robots.txt files.
+- [`/robots_txt/top/user_agents/directive`](/api/resources/radar/subresources/robots_txt/subresources/top/subresources/user_agents/methods/directive/) to get the top AI user agents by directive.
+- [`/robots_txt/top/domain_categories`](/api/resources/radar/subresources/robots_txt/subresources/top/methods/domain_categories/) to get the top domain categories by robots.txt files.
 
 #### Workers AI
 
 Radar now provides insights into public AI inference models from [Workers AI](/workers-ai/), tracking usage trends across **models** and **tasks**.
 These insights are now available via the [API](/api/resources/radar/subresources/ai/subresources/inference/), through the following endpoints:
 
-- [`summary`](/api/resources/radar/subresources/ai/subresources/inference/subresources/summary/) to view aggregated `model` and `task` popularity.
-- [`timeseries_groups`](/api/resources/radar/subresources/ai/subresources/inference/subresources/timeseries_groups/) to track changes over time for `model` or `task`.
+- [`/ai/inference/summary/{dimension}`](/api/resources/radar/subresources/ai/subresources/inference/subresources/summary/) to view aggregated `model` and `task` popularity.
+- [`/ai/inference/timeseries_groups/{dimension}`](/api/resources/radar/subresources/ai/subresources/inference/subresources/timeseries_groups/) to track changes over time for `model` or `task`.
 
 Learn more about the new Radar AI insights in our [blog post](https://blog.cloudflare.com/expanded-ai-insights-on-cloudflare-radar/).
@@ -11,9 +11,9 @@ In addition to global, location, and ASN traffic trends, we are also providing p
 
 Previously limited to the [`top`](/api/resources/radar/subresources/dns/subresources/top/) locations and ASes endpoints, we have now introduced the following endpoints:
 
-- [`timeseries`](/api/resources/radar/subresources/dns/methods/timeseries/): Retrieves DNS query volume over time.
-- [`summary`](/api/resources/radar/subresources/dns/subresources/summary/): Retrieves summaries of DNS query distribution across ten different dimensions.
-- [`timeseries_group`](/api/resources/radar/subresources/dns/subresources/timeseries_groups/): Retrieves timeseries data for DNS query distribution across ten different dimensions.
+- [`/dns/timeseries`](/api/resources/radar/subresources/dns/methods/timeseries/): Retrieves DNS query volume over time.
+- [`/dns/summary/{dimension}`](/api/resources/radar/subresources/dns/subresources/summary/): Retrieves summaries of DNS query distribution across ten different dimensions.
+- [`/dns/timeseries_groups/{dimension}`](/api/resources/radar/subresources/dns/subresources/timeseries_groups/): Retrieves timeseries data for DNS query distribution across ten different dimensions.
 
 For the `summary` and `timeseries_groups` endpoints, the following dimensions are available, displaying the distribution of DNS queries based on:
 

@@ -11,8 +11,8 @@ including the detection of leaked credentials through [leaked credentials detect
 
 We have now introduced the following endpoints:
 
-- [`summary`](/api/resources/radar/subresources/leaked_credentials/subresources/summary/): Retrieves summaries of HTTP authentication requests distribution across two different dimensions.
-- [`timeseries_group`](/api/resources/radar/subresources/leaked_credentials/subresources/timeseries_groups/): Retrieves timeseries data for HTTP authentication requests distribution across two different dimensions.
+- [`/leaked_credential_checks/summary/{dimension}`](/api/resources/radar/subresources/leaked_credentials/subresources/summary/): Retrieves summaries of HTTP authentication requests distribution across two different dimensions.
+- [`/leaked_credential_checks/timeseries_groups/{dimension}`](/api/resources/radar/subresources/leaked_credentials/subresources/timeseries_groups/): Retrieves timeseries data for HTTP authentication requests distribution across two different dimensions.
 
 The following dimensions are available, displaying the distribution of HTTP authentication requests based on:
 

@@ -1,6 +1,6 @@
 ---
 title: Bot & Crawler Insights in Cloudflare Radar
-description: Expanded visibility into crawler, referral, and bot activity with new Radar API endpoints.
+description: Expanded visibility into crawler, referral, and bot activity with new Radar API endpoints
 products:
   - radar
 date: 2025-07-01
@@ -12,8 +12,8 @@ date: 2025-07-01
 
 We have introduced the following endpoints:
 
-- [`/bots/crawlers/summary`](/api/resources/radar/subresources/bots/subresources/web_crawlers/methods/summary/): Returns an overview of crawler HTTP request distributions across key dimensions.
-- [`/bots/crawlers/timeseries_group`](/api/resources/radar/subresources/bots/subresources/web_crawlers/methods/timeseries_groups/): Provides time-series data on crawler request distributions across the same dimensions.
+- [`/bots/crawlers/summary/{dimension}`](/api/resources/radar/subresources/bots/subresources/web_crawlers/methods/summary/): Returns an overview of crawler HTTP request distributions across key dimensions.
+- [`/bots/crawlers/timeseries_groups/{dimension}`](/api/resources/radar/subresources/bots/subresources/web_crawlers/methods/timeseries_groups/): Provides time-series data on crawler request distributions across the same dimensions.
 
 These endpoints allow analysis across the following dimensions:
 
@@ -26,10 +26,10 @@ These endpoints allow analysis across the following dimensions:
 In addition to crawler-specific insights, Radar now provides a broader set of bot endpoints:
 
 - [`/bots/`](/api/resources/radar/subresources/bots/): Lists all bots.
-- [`/bots/:bot_slug`](/api/resources/radar/subresources/bots/methods/get/): Returns detailed metadata for a specific bot.
+- [`/bots/{bot_slug}`](/api/resources/radar/subresources/bots/methods/get/): Returns detailed metadata for a specific bot.
 - [`/bots/timeseries`](/api/resources/radar/subresources/bots/methods/timeseries/): Time-series data for bot activity.
-- [`/bots/summary`](/api/resources/radar/subresources/bots/methods/summary/): Returns an overview of bot HTTP request distributions across key dimensions.
-- [`/bots/timeseries_groups`](/api/resources/radar/subresources/bots/methods/timeseries_groups/): Provides time-series data on bot request distributions across the same dimensions.
+- [`/bots/summary/{dimension}`](/api/resources/radar/subresources/bots/methods/summary/): Returns an overview of bot HTTP request distributions across key dimensions.
+- [`/bots/timeseries_groups/{dimension}`](/api/resources/radar/subresources/bots/methods/timeseries_groups/): Provides time-series data on bot request distributions across the same dimensions.
 
 These endpoints support filtering and breakdowns by:
 

@@ -0,0 +1,38 @@
+---
+title: Certificate Transparency Insights in Cloudflare Radar
+description: New Certificate Transparency (CT) insights in Cloudflare Radar, with new API endpoints for certificate issuance trends
+products:
+  - radar
+date: 2025-08-04
+---
+
+[**Radar**](/radar/) now introduces Certificate Transparency (CT) insights, providing visibility into certificate issuance trends based on Certificate Transparency logs currently monitored by Cloudflare.
+
+The following API endpoints are now available:
+
+- [`/ct/timeseries`](/api/resources/radar/subresources/ct/methods/timeseries/): Retrieves certificate issuance time series.
+- [`/ct/summary/{dimension}`](/api/resources/radar/subresources/ct/methods/summary/): Retrieves certificate distribution by dimension.
+- [`/ct/timeseries_groups/{dimension}`](/api/resources/radar/subresources/ct/methods/timeseries_groups/): Retrieves time series of certificate distribution by dimension.
+- [`/ct/authorities`](/api/resources/radar/subresources/ct/methods/authorities/): Lists certification authorities.
+- [`/ct/authorities/{ca_slug}`](/api/resources/radar/subresources/ct/methods/authorities/): Retrieves details about a Certification Authority (CA). CA information is derived from the [Common CA Database (CCADB)](https://www.ccadb.org/).
+- [`/ct/logs`](/api/resources/radar/subresources/ct/methods/logs/): Lists CT logs.
+- [`/ct/logs/{log_slug}`](/api/resources/radar/subresources/ct/methods/logs/): Retrieves details about a CT log. CT log information is derived from the [Google Chrome log list](https://googlechrome.github.io/CertificateTransparency/log_lists.html).
+
+For the `summary` and `timeseries_groups` endpoints, the following dimensions are available (and also usable as filters):
+
+- `ca`: Certification Authority (certificate issuer)
+- `ca_owner`: Certification Authority Owner
+- `duration`: Certificate validity duration (between NotBefore and NotAfter dates)
+- `entry_type`: Entry type (certificate vs. pre-certificate)
+- `expiration_status`: Expiration status (valid vs. expired)
+- `has_ips`: Presence of IP addresses in certificate [Subject Alternative Names (SANs)](https://developers.cloudflare.com/ssl/origin-configuration/origin-ca/#hostname-and-wildcard-coverage)
+- `has_wildcards`: Presence of wildcard DNS names in certificate SANs
+- `log`: CT log name
+- `log_api`: CT log API ([RFC6962](https://datatracker.ietf.org/doc/html/rfc6962) vs. [Static](https://c2sp.org/static-ct-api))
+- `log_operator`: CT log operator
+- `public_key_algorithm`: Public key algorithm of certificate's key
+- `signature_algorithm`: Signature algorithm used by CA to sign certificate
+- `tld`: Top-level domain for DNS names found in certificates SANs
+- `validation_level`: [Validation level](https://www.cloudflare.com/learning/ssl/types-of-ssl-certificates/)
+
+Learn more about the new Certificate Transparency insights in our [blog post](https://blog.cloudflare.com/new-ct-section-on-cloudflare-radar/), and check out the [new Radar page](https://radar.cloudflare.com/certificate-transparency).
@@ -95,6 +95,20 @@ In Cloudflare Radar, you can view all certificates issued for a given domain by
 
 You can review the certificates issued for your domain name to ensure that there have been no incorrect or fraudulent issuances of certificates associated with your domains. You can also sign up to receive alerts from our certificate transparency monitor in the [Cloudflare Dashboard](https://dash.cloudflare.com/).
 
+## Certificate Transparency
+
+[Certificate Transparency (CT)](https://certificate.transparency.dev/) is an Internet security standard for monitoring and auditing the issuance of digital certificates issued by Certification Authorities (CAs).
+CT helps detect misissued or malicious certificates by requiring CAs to publicly log all certificates they issue in append-only, verifiable logs.
+These logs are monitored by various entities, including browsers and security researchers, to ensure transparency and trust in the certificate ecosystem.
+
+Key entities in CT include:
+- **CAs:** Organizations that issue certificates.
+- **CT Logs:** Public, append-only logs where issued certificates are recorded.
+- **Monitors:** Parties that check logs for correctness.
+
+The data available in Cloudflare Radar is derived from the CT logs currently monitored by Cloudflare.
+This enables visibility into certificate issuance trends, distributions, and metadata across the web.
+
 ## Connection characteristics
 
 Share of inbound connections to Cloudflare from mail transfer agents with the given characteristics. “IP Version” breaks down connections made over IPv4 and IPv6. “Encryption” breaks down connections made over an encrypted connection using TLS, and those made over an unencrypted connection, in the clear. Data for these metrics comes from Cloudflare’s email routing service.

@@ -5,8 +5,12 @@ productLink: "/radar/"
 productArea: Developer platform
 productAreaLink: /workers/platform/changelog/platform/
 entries:
+  - publish_date: "2025-08-04"
+    title: Add Certificate Transparency (CT) endpoints
+    description: |-
+      * Added [CT endpoints](/api/resources/radar/subresources/ct/).
   - publish_date: "2025-07-01"
-    title: Add Bots and Web Crawlers Endpoints
+    title: Add Bots and Web Crawlers endpoints
     description: |-
       * Added new [bots endpoints](/api/resources/radar/subresources/bots/), replacing the deprecated verified bots
       endpoints. Use the following replacements: