Use OpenSSL to manage PKCS #12 archive.
Match certificate and its intermediate counterpart by using X.509 key identifier extension.
Use openssl utility to display and verify the certificate chain for a specific domain.
Match certificate and its private key by comparing the modulus of the certificate to the modulus of the private key.
Use openssl command-line utility to display TLS server extensions.
Use essential openssl utility to quickly determine if your web-server still supports deprecated TLS 1.0 protocol.
Create custom data field to define multiple domain names and service apply rule to verify those SSL certificates.
Check locally stored SSL certificate using essential utilities like openssl and curl. This knowledge is especially useful when you want to prepare an SSL certificate for a load balancer.
Create a certificate signing request and use it to generate an SSL certificate. I strongly suggest reading my two earlier blog posts about self-signed SSL certificates and private keys as these contain useful information. I will describe three different ways to generate a certificate signing request.
Generate private key for an SSL certificate and verify its consistency.