Johan Nyman wrote: > Can I extend the expire days for the CA certificate (ca.cnf) ? Edit the "default_days" parameter. This is documented in OpenSSL. > And if possible how long can I extend it as maximum? See the OpenSSL documentation for it's configuration files. Alan DeKok.