Certificate Key Matcher

Verify Key Pairs, SSL Certificates and CSR Match

When you're talking about SSL you're dealing with a lot of moving parts. It's a lot to manage for just a single domain, but when you toss in complicated web infrastructures with multiples domains, sub-domains and internal networks, it's easy to get mixed up.

When you generate a Certificate Signing Request, you're also issued a Private Key that needs to be stored safely on your server. Typically keeping the CSR and the Private key matched up can be accomplished by saving them to the same directory. But once the SSL certificate is issued, especially if you're dealing with multiple orders, it's important you can match up the certificate with the key. Otherwise it's not going to install properly.

Make Sure Your CSR, SSL Certificate and Private Key Match

The Certificate Key Matcher tool determines whether a private key or CSR file matches an SSL certificate.

This tool checks whether a private key matches an SSL certificate, or if an SSL certificate matches a CSR file. Any mismatches between pairs will cause you undue stress and waste a lot of your time.

Note: Whether you're copying a CSR, a Private Key or an SSL certificate into the field below, it's important to remember to copy the entire text file.

Your SSL Certificate, Private Key or CSR should start with:


and end with:


Note: There should be five dashes on either side of both prompts, this includes the Private Key.

Helpful Tip: Of the three - SSL Certificate, CSR and Private Key - your private key is the most important. Its security is paramount. If it's ever compromised your website becomes vulnerable until you re-issue and re-install. Make sure your Private key is stored safely and unauthorized personnel cannot access it.

If you run into any trouble, or need a helping hand, our team of SSL experts is always standing by to take your call or live chat with you. We provide 24/7 customer support, 365 days a year. Sometimes even 366.