I have received three files from my hosting company who bought the X.509 certificate for me.
.key
file - thats the private key.cert
file - ?.cacert
file - ?
Whats the difference between the two?
It contains a certificate (CA-issued certificate or self-signed certificate) and a corresponding private key. Use this format to transfer the contents of a keystore to a separate computer. For example, you can create and install a certificate and private key with the key management utility.
While Self-Signed certificates do offer encryption, they offer no authentication and that's going to be a problem with the browsers. Trusted CA Signed SSL Certificates, on the other hand, do offer authentication and that, in turn, allows them to avoid those pesky browser warnings and work as an SSL Certificate should.
Client certificates tend to be used within private organizations to authenticate requests to remote servers. Whereas server certificates are more commonly known as TLS/SSL certificates and are used to protect servers and web domains.
A certificate is self-signed if the subject and issuer match. A certificate is signed by a Certificate Authority (CA) if they are different. To validate a CA-signed certificate, you also need a CA certificate.
By using the following command:
openssl x509 -noout -text -in <filename>
I have found out that .cert
is public key certificate of my own site and .cacert
is the intermediate certificate authority who issued the certificate.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With