About TLS Certificate Files

TLS or SSL certificates, used for HTTPS connections, involve key files and public certificates to ensure secure communication.

With mkcert for local setup, two files are typically created:

  • localhost.pem: Contains the public certificate for your server.
  • localhost-key.pem: Contains the private key, which must be kept secret.

With Let's Encrypt, you often see three files:

  • cert.pem: The server's public certificate.
  • privkey.pem: The private key for decrypting and signing.
  • chain.pem: Intermediate certificates that link your server’s certificate to a trusted root CA.

Additionally, Let's Encrypt offers fullchain.pem, combining cert.pem and chain.pem for convenience in server setups. Mkcert is great for local development, while Let's Encrypt is suited for production use.

Tips and Tricks Dev Ops Security HTTPS Let's Encrypt SSL mkcert TLS

Also by me

Django Paddle Subscriptions app

For Django-based SaaS projects.

Django App for You
Django GDPR Cookie Consent app

For Django websites that use cookies.

Django App for You
Django 3 Web Development Cookbook - Fourth Edition
Book for You
Django 3 Web Development Cookbook

Learn how to build practical web projects with Django 3.
1st things 1st
SaaS for You
Online prioritizer "1st things 1st"

It's not for everyone, but it might be for you!