Background knowledge for understanding how certificates work and why certz makes the choices it does. Each page explains a topic conversationally before showing the certz flags that control it.
| Page | Description |
|---|---|
| Certificate Formats | PEM, DER, PFX — what they are and which to use |
| RSA vs ECDSA | Key types, sizes, and security tradeoffs |
| Subject Alternative Names | Why SANs are required and how certz handles them |
| Enhanced Key Usage | What EKU restricts and what certz sets by default |
| Certificate Chain | Root, intermediate, and leaf certificates explained |
| Windows Trust Store | Store names, locations, and admin requirements |
| Certificate Lifecycle | Validity dates, the 398-day limit, and renewal |
| Compliance Standards | CA/Browser Forum, Mozilla NSS, and what they govern |