# Verify RSA keys for SSL certificate
To ensure that your RSA private key matches the public key in your certificate, follow these steps:
1. **Check the RSA Private Key**\
To verify the private key and see its modulus, run:
```bash
openssl rsa -modulus -noout -in /root/certs/server.key | openssl md5
openssl rsa -check -noout -in /root/certs/server.key
```
\
If the output says "RSA key ok," the key is valid. If not, there’s an issue.
2. **View the RSA Public Key Modulus**\
To check the modulus of the public key in the certificate, run:
```bash
openssl x509 -modulus -noout -in /root/certs/server.crt | openssl md5
```
3. **Compare Moduli**\
If there are any errors in the previous commands, or if the modulus from the public key does not match the modulus from the private key, you are using the wrong private key. You can either:
* Create a new key and Certificate Signing Request (CSR) and contact support.
* Search for other private keys on your system to find a match.
4. **Finding Private Keys on Your Server**\
To search for all private keys, run:
```bash
find / -name "*.key"
```
RSA key check
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://docs.helmut.de/helmut4-releases/support/debug-or-log-collection/helmut4-server/verify-rsa-keys-for-ssl-certificate.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.