https://aripd.com/tags/certificates/ Recent content in Certificates on ARI Systems Hugo en-us ARI Systems Sat, 16 May 2026 06:19:44 +0000 https://aripd.com/blog/ssl/ Sun, 02 Sep 2018 00:00:00 +0000 https://aripd.com/blog/ssl/ <h2 id="references">References <a href="#references" class="permalink"><i class="bi bi-link-45deg"></i></a></h2><ul> <li><a href="https://security.stackexchange.com/questions/5096/rsa-vs-dsa-for-ssh-authentication-keys" target="_blank" rel="noopener noreferrer">RSA vs. DSA for SSH authentication keys</a></li> <li><a href="https://danielpocock.com/rsa-key-sizes-2048-or-4096-bits" target="_blank" rel="noopener noreferrer">RSA Key Sizes: 2048 or 4096 bits?</a></li> <li><a href="https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-debian-9" target="_blank" rel="noopener noreferrer">How To Secure Apache with Let&rsquo;s Encrypt on Debian 9</a></li> <li><a href="https://community.letsencrypt.org/t/importing-letsencrypt-into-java-and-glassfish/9711/17" target="_blank" rel="noopener noreferrer">Importing LetsEncrypt into Java and Glassfish</a></li> <li><a href="https://helpdesk.ssls.com/hc/en-us/articles/115001604071-How-to-install-a-SSL-certificate-on-GlassFish" target="_blank" rel="noopener noreferrer">How to install a SSL certificate on GlassFish</a></li> </ul> <h2 id="difference-between-the-certificate-files">Difference between the certificate files <a href="#difference-between-the-certificate-files" class="permalink"><i class="bi bi-link-45deg"></i></a></h2><ul> <li><code>.key</code> is the private key. This is accessible the key owner and no one else.</li> <li><code>.csr</code> is the certificate request. This is a request for a certificate authority to sign the key. (The key itself is not included.)</li> <li><code>.crt</code> is the certificate produced by the certificate authority that verifies the authenticity of the key. (The key itself is not included.) This is given to other parties, e.g. HTTPS client.</li> <li><code>.pem</code> is a text-based container using base-64 encoding. It could be any of the above files. <div class="code-container"> <div class="code-block"> <div> <div class="code-copy" style="float: right"> <a class="icon-link icon-link-hover link-opacity-50 link-opacity-100-hover" href="#" aria-label="Copy code">Copy</a> </div> </div> <div class="highlight"><div style="color:#000;background-color:#fff;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"> <table style="border-spacing:0;padding:0;margin:0;border:0;"><tr><td style="vertical-align:top;padding:0;margin:0;border:0;"> <pre tabindex="0" style="color:#000;background-color:#fff;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f">1 </span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f">2 </span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f">3 </span></code></pre></td> <td style="vertical-align:top;padding:0;margin:0;border:0;;width:100%"> <pre tabindex="0" style="color:#000;background-color:#fff;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-bash" data-lang="bash"><span style="display:flex;"><span>-----BEGIN EXAMPLE----- </span></span><span style="display:flex;"><span>... </span></span><span style="display:flex;"><span>-----END EXAMPLE-----</span></span></code></pre></td></tr></table> </div> </div> </div> </div></li> <li><code>.p12</code> is a PKCS12 file, which is a container format usually used to combine the private key and certificate.</li> </ul> <p>Note that there isn&rsquo;t only one extension for the certificate produced by the certificate authority. For example you may see certificates with either the <code>.crt</code> or a <code>.pem</code> extension.</p>