How to get the root and intermediate certificates of Lets Encrypt for the external certificates

How to get the root and the intermediate certificates signed by Lets Encrypt?

but I think you are missing something: that is 'external certificate' you calling?

4 Likes

The root is expected to be in your trust store (Operating System, browsers, programming environments). You should not need to download it from the link above, unless you are doing development testing or packaging software for distribution with a custom trust store.

The relevant intermediates are identified and available during the certificate download process. Your client will automatically do this; if you are writing a client you can follow the RFC Spec to download it

4 Likes

What do you need the intermediates for? Please note that you should NOT "pin" intermediate certificates, as these can (and probably will at some point) change at any minute. If needed, only configure/pin root certificates.

3 Likes