X509

You are about to receive a tape archive, which can be unpacked using popular compression tools such as pkzip and gzip. Depending upon the output option you choose, it will contain at lease some of the following:

• x509.crt, x509.req, x509.key and x509.keydec
• x509.p12

x509.crt is a PEM-encoded X509 certificate, x509.key is it's private key, and x509.keydec is it's private key already decrypted. You should import these into your secure server area and link them into your secure server. For example, an Apache SSL server needs the SSLCertificateFile and the SSLCertificateKeyFile directives to reference these files. Other TLS servers will require similar configuration.

x509.req is a certificate authority signing request for your certificate. This is needed for a third party to verify and sign your certificate. You may use this file to submit your certificate to a BastionCertAuthority for example.

The x509.p12 file is a PKCS12 formatted file of your certificate suitable for importing into the security feature of popular web browsers such as Netscape, Explorer, and Outlook. You will need to supply a password to create this file. This password will also be required for you to successfully import the file into your client application.

We will have automatically removed all traces of your key from our systems before you have even completed downloading it.