Sectigo Certificate Manager offers its customers several different certificate formats for use with the various server software platforms available on the market today.

We presently offer:

PKCS#7

• PKCS#7 Base64 encoded
• PKCS#7 Bin encoded

PKCS#7 is commonly used with IIS 5.x and later.
This file contains the: Root, Intermediate(s) and your certificate; all rolled into a single file.

X509 Base64 is also commonly referred/known as PEM format.

• • X509, Base64 encoded

This file typically includes (in order): Root, Intermediate(s) and your certificate.

• X509 Intermediates/root only, Base64 encoded

This file includes only the Root and Intermediate CA certificates (in order) for your domain/entity certificate.

• X509 Certificate only, Base64 encoded

This file contains only your domain/entity certificate and is commonly used with Apache-based systems (Apache Directive: SSLCertificateFile), Tomcat and Oracle Wallet Manager.

• X509 Intermediates/root only (Reverse), Base64 encoded

This file contains only the Intermediate(s) and Root CA certificates (in reverse order) and is commonly used with Apache-based systems (Apache2 Directive: SSLCertificateChainfile). This file is also known as a 'CA Bundle' or 'Certificate Chain File'.

Note: Some software will want the certificates in this file in its own separate file. If this is needed, simply use a text-editor and extract them accordingly. (e.g. Tomcat when using 'keytool', Oracle Wallet Manager, IKEYMAN)