SSL中,公钥、私钥、证书的后缀名都是些啥? - 知乎 The web server sends its public key with its certificate The browser checks that the certificate was issued by a trusted party (usually a trusted root CA), that the certificate is still valid and that the certificate is related to the site contacted