Acme.sh: How can I get .pem or .crt
The default Certificate is cer ,and how can I get .pem or .crt?
feiyu0
All 4 comments
it's exactly the same format... the .crt that is. .pem depends on the context.
heldchen
on 18 Apr 2016
@heldchen
Yes, just rename domain.com.cer to domain.com.crt or domain.com.pem. They are same.
Neilpang
on 19 Apr 2016
I don't think this is correct. The pem file may contain both, the cert and the key. See also: http://serverfault.com/questions/9708/what-is-a-pem-file-and-how-does-it-differ-from-other-openssl-generated-key-file
> openssl rsa -check -in /etc/ssl/private/domain.com/domain.com.cer
unable to load Private Key
8544:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:650:Expecting: ANY PRIVATE KEY
After cat domain.key domain.cer >> domain.pem you will get:
> openssl rsa -check -in /etc/ssl/private/domain.com/domain.com.pem
RSA key ok
writing RSA key
-----BEGIN RSA PRIVATE KEY-----
ASdsfdfdf/TPdv1ALA3Z58N...
E.g. Courier IMAP SSL requires pem files with both, cert and key.
gesinn-it
on 2 Mar 2017
👍5
@gesinn-it
Yes, All the files are there, you can use them in any form. We can not provide all the forms for everyone.
You can just concat the files and use them.
Neilpang
on 3 Mar 2017
Was this page helpful?
0 / 5 - 0 ratings
Related issues
p3x-robot
路
5Comments
simkimsia
路
5Comments
duxiu-chen
路
4Comments
extensionsapp
路
4Comments
vitaly80
路
4Comments
Most helpful comment
I don't think this is correct. The pem file may contain both, the cert and the key. See also: http://serverfault.com/questions/9708/what-is-a-pem-file-and-how-does-it-differ-from-other-openssl-generated-key-file
After
cat domain.key domain.cer >> domain.pemyou will get:E.g. Courier IMAP SSL requires pem files with both, cert and key.