CertCutover

guide · how-to

How to get an AS2 certificate's fingerprint

When a partner says they imported your certificate but messages still fail, the fingerprint settles it: two people, one number. If the SHA-256 differs, the certificate differs.

Read the fingerprint

Paste the public certificate into the inspector below — it prints the SHA-256 (and SHA-1) fingerprint. Or from the command line:

openssl x509 -in cert.pem -noout -fingerprint -sha256

Use it to end a mismatch standoff

Read the fingerprint of the certificate you published, ask your partner for the fingerprint they imported, and compare. If they differ, resend the correct public certificate and have them re-import. This is the quickest fix for an AS2 "decryption failed" error.

try it

Paste a certificate

public certificate — PEM or DER, never uploaded
loading inspector…