This Check CSR Certificate Key Matcher can be used to determine whether a private key matches a certificate or a certificate matches a certificate signing request (CSR). When dealing with a large number of certificates, it is easy to lose track of which certificate corresponds to which private key or which CSR was used to generate which certificate. The Check CSR Certificate Key Matcher tool makes it simple to see if a private key or a CSR matches a certificate.
The Check CSR Certificate Key Matcher simply compares a hash of the public key to the private key, certificate, or CSR and tells you whether they match. Using the OpenSSL commands below, you can determine whether a certificate matches a private key or a CSR matches a certificate on your own computer:
openssl pkey -in privateKey.key -pubout -outform pem | sha256sum
openssl x509 -in certificate.crt -pubkey -noout -outform pem | sha256sum
openssl req -in CSR.csr -pubkey -noout -outform pem | sha256sum
Warning Your private key is meant to stay on the server. While we use SSL to encrypt the key when it is sent to the server, we recommend that you manually check the public key hash of the private key on your server using the OpenSSL commands above for complete security.
Do you require effective SEO tools that are completely free? Check out our Search Engine Optimization tools for a plagiarism checker, backlink analysis, keyword position tracking, and more.
