# Certificates & public keys

# Introduction

In cryptography, a public key certificate, also known as a digital certificate or identity certificate, is an electronic document used to prove the validity of a public key.

The certificate includes information about the key, information about the identity of its owner (called the subject), and the digital signature of an entity that has verified the certificate's contents (called the issuer).

If the signature is valid, and the software examining the certificate trusts the issuer, then it can use that key to communicate securely with the certificate's subject.

For more information, see Wikipedia's articles on X.509 and Public key certificates.

To be notified of any future updates to any of our certificates and/or keys, please sign up for automated notifications via our Platform updates page.

Platform updates

# AS2 certificates

In AS2 transactions there are always two certificates involved for data signing and encryption; your trading partner certificate and your own system certificate.

The certificates involved depend on the direction of the communication (inbound or outbound) as well as the certificate activity (signing and/or encryption).

Download our trading partner certificates below.

# Pagero Online AS2 service

# Pagero|HBS AS2 service

# HTTP TLS certificates

In outbound HTTPS setups, where we are the client, we support mutual authentication in addition to basic authentication.

Mutual authentication or two-way authentication (not to be confused with two-factor authentication) refers to two parties authenticating each other at the same time in an authentication protocol. It is the default mode of authentication in some protocols (e.g. SSH) and optional in others (e.g. TLS).

Download our TLS certificates below.

# Pagero Online TLS certificate

# Expiring soon

  • Download: No longer available for download, to avoid confusion. Expiring
  • Valid from: 2020-10-13
  • Valid to: 2022-10-13
  • SHA-256 fingerprint: 77157f9ee31832770ddfb0fafcd5f3e894363aa5

# Upcoming

# SFTP public keys

SFTP public keys are used as an alternative authentication method for establishing secure connections.

Instead of authenticating with a password, the public key authentication method uses a pair of keys, one private and one public.

The private key is kept secret and is typically stored in the user’s home directory for safekeeping. As proof of owning the private key, the user reveals only their public key when making an SFTP connection.

Download our SFTP public keys in SSH2- and OpenSSH-format below.

# Pagero Online SFTP public key

  1. TLS/SSL certificate validity periods for certificates issued by certification authorities (CA's) are currently 398 days, or about 13 months. They were recently reduced by the CA/B Forum starting Sept. 1, 2020 in response to Apple’s announcement stating they would not accept certificates for two-year validity periods. Note: This does not necessarily affect self-signed trading partner certificates often used in AS2 setups though.