You need to at least have SP1 for windows 7 installed and additional Windows updates to support sha2 digital signatures. Specifically updates KB4474419 and KB3033929.
It’s already a SP1 version with sha2 support added : 6.1-kb4474419-v3-x64, Windows6.1-KB3033929-x64, windows6.1-kb4490628-x64. And kb4474419 was the september release.
by the way, CIS certificate ended december… Any link with my problem ?
Windows and the installer need to check the digital signature status to determine if it is still valid which requires an Internet connection. Specifically the online certificate revocation check, without this check the digital signature will be considered invalid.