Download

Where to get CertSort

Still in beta

CertSort was started and is maintained just by myself. Because there is lots of other stuff todo in life, it's unfortunately still in beta. Im looking forward to release a first basic version soon.

CertSort is hosted at CodeBerg and will be available here:

Get it on Codeberg

Features

Print content

Throw a contatenation of x509 Certificates in PEM format - also called chain file - into CertSort and let it do its magic. Without any further action CertSort will print the contained certificates in an ordered manner. For clarity just the position within the chain plus issuer and subject as well as start- and enddate.

Chain-Check

Throw the chain file into CertSorts hungry maw and let it tell you, if the chain contains related certificates or even one type of connected chain.

Have a closer look

Pick the number of a contained certificate and let CertSort show you its details. You'll see basic information like issuer, subject, start- end enddate as well as all its extensions and the fact if its a root, intermediate or end certificate.

Future

That was all just a prelude. The goal is to have options for Apache and Nginx that allow you to check their certificate configuration down to the smallest detail and save yourself long searches for the problematic area in the future.

Because even if it comes as a surprise, the configcheck options of the two do not do exactly that yet.