Need public key certificate (CRT) and cabundle of my domain already purchased from Hostinger

My domain is: ibcshivamjaiswal.com

My hosting provider, is: Hostinger

I need to submit SSL certificate in a govt. backed E-Commerce store (for B2B Exporter). I have already purchased and activated an SSL certificate for my domain through Hostinger. However, I am currently unable to locate the Public Key Certificate and Certificate Authority (CA) Bundle, which are required for submission on that platform.

Despite the SSL being active, I have not been able to download or access these files from my Hostinger dashboard. As a result, I am unable to proceed with uploading the SSL certificate to my E-Commerce store.

Let's Encrypt certificates are free of charge. You probably should ask Hostinger if you bought a certificate from them.

I asked from the Hostinger Team, They said - they do not provide Public key certificate and cabundle to export.

And they said- I can get an SSL certificate from Let'sEncrypt, That's why I came here, I urgently need this, can you please help me in this matter

SSL certificate _ Hostinger - Google Chrome 03-06-2025 04_23_38 PM1366×720 75.8 KB

Kindly check this scrrenshot

Your website sends them every time a tls session is established, for example:

openssl s_client -showcerts google.com:443

I have no idea if that's good enough for what you need, tho.

Certificate Authority of my domain is Let'sEncrypt, so could you please help me to get the public key certificate and cabundle

What functions are available when you click ... next to the Expires At column.

 openssl s_client -showcerts ibcshivamjaiswal.com:443
CONNECTED(00000003)
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R10
verify return:1
depth=0 CN = ibcshivamjaiswal.com
verify return:1
---
Certificate chain
 0 s:CN = ibcshivamjaiswal.com
   i:C = US, O = Let's Encrypt, CN = R10
   a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256
   v:NotBefore: May 13 09:46:47 2025 GMT; NotAfter: Aug 11 09:46:46 2025 GMT
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
 1 s:C = US, O = Let's Encrypt, CN = R10
   i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
   a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256
   v:NotBefore: Mar 13 00:00:00 2024 GMT; NotAfter: Mar 12 23:59:59 2027 GMT
-----BEGIN CERTIFICATE-----
MIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBP
MQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFy
Y2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBa
Fw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBF
bmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFL
YlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a
/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4
FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KR
mudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3
DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGG
MB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/
AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5
tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKG
Fmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYD
VR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0B
AQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIo
zwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfd
u6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p9
1n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0
GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh
1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZ
QjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N
4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyz
rsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2Ei
RmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLx
KPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=
-----END CERTIFICATE-----
---
Server certificate
subject=CN = ibcshivamjaiswal.com
issuer=C = US, O = Let's Encrypt, CN = R10
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3611 bytes and written 402 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 4096 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---

The above contains everything they need, the question is what format do they want. This will also (normally) all change every time your certificate renews.

Note you can also get this type of stuff by using Firefox to browse to your site, then click the padlock icon in the URL, browse to More Information, View Certificate and form there you can even download the cert as PEM or the chain as PEM.

Please solve one more issue - I also need cabundle of my certificate authority

And I'm not a tech person so can you guide in this -

that

I know the public key certificate is from "Begin Certificate to End Certificate", but in this code which you've sent, there are 2 certificate like this, so which one is the public key certificate of my domain name.

Please please please solve my issue, I'll be highly obliged to you

Let me clarify again- I want to add a custom domain in a E-commerce website, and they are asking - Domain name, Domain Expiry date, Generate CSR (public key certificate is being generated in case we want to purchase SSL from any source, and a private key is generated also, which is automatically pasted to the submit SSL section). There are two fields left in the Submit SSL Certificate section- one is public key certificate of your domain name and cabundle.

So I want both of my domain - ibcshivamjaiswal.com

Can anyone help me in this regard.

When I've checked my Hostinger account- there is showing my certificate authority is - Let'sEncrypt, that's why I came here

If you plan on running an e-commerce store, you should probably hire someone who is. You are going to have technical needs on a continuous basis in that line of work.

That domain already has a certificate from Let's Encrypt.

Screenshot_20250603_064830_Brave1080×2116 215 KB

Let's Encrypt is an ACME powered CA that issues certificates to ACME clients. You won't normally be pasting Let's Encrypt certificates into web forms. Automated tools should be doing all of the heavy lifting. I recommend taking time to learn more about how it works.