@@ -421,12 +421,11 @@ public abstract int Timeout {
421421
422422 const string AppleCertificateIssuer = "C=US, S=California, O=Apple Inc., CN=Apple Public Server RSA CA 11 - G1" ;
423423 const string GMailCertificateIssuer = "CN=WR2, O=Google Trust Services, C=US" ;
424- const string GMailCertificateIssuer2 = "CN=WE2, O=Google Trust Services, C=US" ;
425424 const string OutlookCertificateIssuer = "CN=DigiCert Cloud Services CA-1, O=DigiCert Inc, C=US" ;
426425 const string LegacyYahooCertificateIssuer = "CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US" ;
427426 const string YahooImapCertificateIssuer = "CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US" ;
428427 const string YahooSmtpCertificateIssuer = "CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US" ;
429- const string GmxDotComCertificateIssuer = "CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc , C=US " ;
428+ const string GmxDotComCertificateIssuer = "CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, S=Greater Manchester , C=GB " ;
430429 const string GmxDotNetCertificateIssuer = "CN=Telekom Security ServerID OV Class 2 CA, O=Deutsche Telekom Security GmbH, C=DE" ;
431430
432431 // Note: This method auto-generated by https://gist.github.com/jstedfast/7cd36a51cee740ed84b18435106eaea5
@@ -441,36 +440,27 @@ internal static bool IsKnownMailServerCertificate (X509Certificate2 certificate)
441440 case "imap.gmail.com" :
442441 switch ( issuer ) {
443442 case GMailCertificateIssuer :
444- return ( serial == "418EAD01A809398212F7C77E07DA803A" && fingerprint == "9CB4910DDCEE6D91FE5E1A3AE1C026BB675909A6" ) // Expires 6/2/2025 4:36:57 AM
445- || ( serial == "28E6C791AE959F4D10F74FA90ECCA5D0" && fingerprint == "382228F3BDB8D40E4DCAFF26ABD51579C3ECDAAF" ) // Expires 6/12/2025 7:19:41 AM
446- || ( serial == "00D9367C2844571EE7105B621EF66F9945" && fingerprint == "CC7B019ED9E23970556C58187B9FC530F1530CC0" ) // Expires 7/14/2025 4:41:44 AM
447- || ( serial == "5DD42BF4A7835A1F12C0230E711EEFC5" && fingerprint == "7221945A9E8F6AEB952792CA26003F0DB050DAB4" ) ; // Expires 7/22/2025 3:29:13 PM
448- case GMailCertificateIssuer2 :
449- return ( serial == "4B4DD590B022D02B097A8D2ABB248F85" && fingerprint == "06694A4A49926FA2657122099AABFBD41DB2A127" ) ; // Expires 6/23/2025 4:55:37 AM
443+ return ( serial == "00D9367C2844571EE7105B621EF66F9945" && fingerprint == "CC7B019ED9E23970556C58187B9FC530F1530CC0" ) // Expires 7/14/2025 4:41:44 AM
444+ || ( serial == "5DD42BF4A7835A1F12C0230E711EEFC5" && fingerprint == "7221945A9E8F6AEB952792CA26003F0DB050DAB4" ) // Expires 7/22/2025 3:29:13 PM
445+ || ( serial == "590C74431E805B5B12539CDEACCA8612" && fingerprint == "40EF2C516811F8DCA23780D521FA7E57E378E2E9" ) ; // Expires 8/25/2025 4:36:32 AM
450446 default :
451447 return false ;
452448 }
453449 case "pop.gmail.com" :
454450 switch ( issuer ) {
455451 case GMailCertificateIssuer :
456- return ( serial == "163B1703634D899E1253BA0971B68957" && fingerprint == "F06BA27FB38D27403D91C388101783FEBE29EAA1" ) // Expires 6/2/2025 4:36:57 AM
457- || ( serial == "0ECF8253B9E7856709DCE2F8397AF4A5" && fingerprint == "B6C122F69658F8EDD2CE07C45A14AAF088E5B04F" ) // Expires 6/12/2025 7:19:41 AM
458- || ( serial == "00B1353E4AC219849D10DC2EA4E9975E40" && fingerprint == "28A08A0C8B3B703D11C9AB3576AE720E1A076967" ) // Expires 7/14/2025 4:41:45 AM
459- || ( serial == "008C6181902132E6FB0A0F5414D0DCEF99" && fingerprint == "6B35E29ADAD1FC21171CA1A8105C19EA6BEAB988" ) ; // Expires 7/22/2025 3:29:14 PM
460- case GMailCertificateIssuer2 :
461- return ( serial == "0086D363477656381E12BC7434DB8D4D78" && fingerprint == "6F496AFA9655BCE9DAF85AC98D70952E08382514" ) ; // Expires 6/23/2025 4:55:37 AM
452+ return ( serial == "00B1353E4AC219849D10DC2EA4E9975E40" && fingerprint == "28A08A0C8B3B703D11C9AB3576AE720E1A076967" ) // Expires 7/14/2025 4:41:45 AM
453+ || ( serial == "008C6181902132E6FB0A0F5414D0DCEF99" && fingerprint == "6B35E29ADAD1FC21171CA1A8105C19EA6BEAB988" ) // Expires 7/22/2025 3:29:14 PM
454+ || ( serial == "4FC61DA48A42815D0967F223AB5D1A8D" && fingerprint == "B20D09B86CDA299A6BCC7D8201F3650B4282439F" ) ; // Expires 8/25/2025 4:36:33 AM
462455 default :
463456 return false ;
464457 }
465458 case "smtp.gmail.com" :
466459 switch ( issuer ) {
467460 case GMailCertificateIssuer :
468- return ( serial == "0D6276E08E1568D81247DEC81BEE15DE" && fingerprint == "EB2E7B22DC9D09862F8582579EF0EEBAD4C90C96" ) // Expires 6/2/2025 4:36:58 AM
469- || ( serial == "690C20A5496C053E0AB9328339BE2E29" && fingerprint == "523AAF93ED289AA89355450068743953E16435CC" ) // Expires 6/12/2025 7:19:42 AM
470- || ( serial == "00EE7BE01915BBD5BF107AC9B57B42421F" && fingerprint == "C60FA1FC3C2A32B924A591C6913324246EC09077" ) // Expires 7/14/2025 4:41:46 AM
471- || ( serial == "2CF105575867D1C80ABFD71028077642" && fingerprint == "7EDE669DBAA017B4AB2BB0EB3AD0C8BE5A3EB475" ) ; // Expires 7/22/2025 3:29:15 PM
472- case GMailCertificateIssuer2 :
473- return ( serial == "1532D9E3926EE7B9096808679020323C" && fingerprint == "C3EB9722DE0D066E028651BAE38FEA1D39486BB6" ) ; // Expires 6/23/2025 4:55:38 AM
461+ return ( serial == "00EE7BE01915BBD5BF107AC9B57B42421F" && fingerprint == "C60FA1FC3C2A32B924A591C6913324246EC09077" ) // Expires 7/14/2025 4:41:46 AM
462+ || ( serial == "2CF105575867D1C80ABFD71028077642" && fingerprint == "7EDE669DBAA017B4AB2BB0EB3AD0C8BE5A3EB475" ) // Expires 7/22/2025 3:29:15 PM
463+ || ( serial == "3569A27A689C6D4E10477112F0A205C2" && fingerprint == "AFF82D7112B27E3E95C42B442CD0D049D6C5B3B0" ) ; // Expires 8/25/2025 4:36:34 AM
474464 default :
475465 return false ;
476466 }
@@ -485,15 +475,14 @@ internal static bool IsKnownMailServerCertificate (X509Certificate2 certificate)
485475 case "imap.mail.me.com" :
486476 switch ( issuer ) {
487477 case AppleCertificateIssuer :
488- return ( serial == "14A84E05586FAD996DF6C9A92630589F " && fingerprint == "7F28C147D7FD9060C62D2061F1EFC1BB91EBF513 " ) ; // Expires 6/11 /2025 1:57:56 PM
478+ return ( serial == "53EAE7751B02B72138935D30BF550930 " && fingerprint == "BF811C09DE8E8CC2004D48256351EE564C3D403E " ) ; // Expires 8/20 /2025 2:44:05 PM
489479 default :
490480 return false ;
491481 }
492482 case "smtp.mail.me.com" :
493483 switch ( issuer ) {
494484 case AppleCertificateIssuer :
495- return ( serial == "6B5D8508161036B6777FDA2C39F5F632" && fingerprint == "07CAEF11E74397FF009886B484EEBBCABAB1095C" ) // Expires 6/25/2025 2:59:09 PM
496- || ( serial == "2A9D68C354564176A0F32A21923FD3FB" && fingerprint == "1A3C234D20AB6AD31587545B14ABA8A4817C845A" ) ; // Expires 6/25/2025 1:36:34 PM
485+ return ( serial == "25B1CED1224CC151B02E0BCE0914FD2F" && fingerprint == "F159295A3EF8CCE6688B749E9E164D82CBDF63EE" ) ; // Expires 9/3/2025 1:00:41 PM
497486 default :
498487 return false ;
499488 }
@@ -524,9 +513,7 @@ internal static bool IsKnownMailServerCertificate (X509Certificate2 certificate)
524513 return false ;
525514 }
526515 case "mout.gmx.com" :
527- return issuer == GmxDotComCertificateIssuer && serial == "0DE2F5DFAF303D80801FE17D64EAFEF5" && fingerprint == "690A5590690ADE3C164BD2D4DA9BE69E6608FFFB" ; // Expires 6/14/2025 7:59:59 PM
528- case "mail.gmx.com" :
529- return issuer == GmxDotComCertificateIssuer && serial == "01840046B1B8C0DCF17EBFB93860BDF8" && fingerprint == "CBDF309BF6FCD4199B448FA403B4E2C718DFFE63" ; // Expires 6/14/2025 7:59:59 PM
516+ return issuer == GmxDotComCertificateIssuer && serial == "49F9B6205B93B1A9DCEC50C54192A0A5" && fingerprint == "34DC8F699802DC1FAE824560C27E985020ACCFCC" ; // Expires 5/5/2026 7:59:59 PM
530517 case "mail.gmx.net" :
531518 return issuer == GmxDotNetCertificateIssuer && serial == "3DF168E2174005F4FDC72F92FBEFD952" && fingerprint == "EDB2B7B7E9C624DF221ECDC46A7946D003F90ADE" ; // Expires 1/24/2026 6:59:59 PM
532519 default :
0 commit comments