Why crt.sh show 2 certificate

My domain is: vpn687938596.softether.net

My web server is (include version): nginx/1.17.10

The operating system my web server runs on is (include version): Ubuntu 20.04 LTS

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 0.40.0

hi, i browse around while reading about ssl/letsencrypt and bump into this website crt.sh where it would show and let us download our certs. but why there are 2 certificates when i only create one? and which one should i select if i want to download and use?

i run into few errors while creating the cert(bcoz of some typo), but everytime it will say cert not created. so i think it shouldn’t be a ‘duplicate’

https://crt.sh/?q=vpn687938596.softether.net

thank you,

1 Like

Hi @aboka

one is the precertificate, one the leaf certificate.

See

2 Likes

hi, hv read the glossary rgd the 2 types of cert. so precertificate is the copy of the cert and use for CA. so we should download and use the leaf certificate instead?

thank you,