VOOZH about

URL: https://apify.com/andok/ssl-certificate-monitor

โ‡ฑ SSL Certificate Expiry Monitor ยท Apify

Pricing

$1.00 / 1,000 certificate checks

Go to Apify Store

SSL Certificate Expiry Monitor

Monitor SSL/TLS certificate validity and expiration dates across thousands of domains to prevent costly outages.

Pricing

$1.00 / 1,000 certificate checks

Rating

0.0

(0)

Developer

๐Ÿ‘ Andok

Andok

Maintained by Community

Actor stats

0

Bookmarked

3

Total users

0

Monthly active users

3 months ago

Last modified

Categories

Share

Monitor SSL certificate expiry dates across your entire domain portfolio in a single run. Expired or weak certificates cause browser warnings, lost revenue, and security incidents โ€” yet most teams only discover problems after users complain. Schedule automated checks and get structured results with security grading, certificate chain details, and days-until-expiry counts.

Features

  • Bulk domain scanning โ€” check hundreds of domains and subdomains in one run
  • Security grading โ€” automatic A/B/C/F grade based on key size and days until expiry
  • Expiry tracking โ€” calculates exact days remaining for every certificate
  • Certificate chain analysis โ€” extracts the full chain from leaf to root CA
  • Subject Alternative Names โ€” lists all SAN entries to verify domain coverage
  • Protocol detection โ€” reports the negotiated TLS version (TLS 1.2, 1.3)
  • Detailed error reporting โ€” captures connection failures, self-signed certs, and hostname mismatches
  • Configurable timeout โ€” adjust per-domain connection timeout from 5 to 60 seconds

Input

FieldTypeRequiredDefaultDescription
domainsarrayYes["google.com"]Domains or URLs to check. Accepts bare domains, URLs with protocol, or host:port format
timeoutintegerNo10Connection timeout in seconds per domain (5-60)

Input Example

{
"domains":[
"example.com",
"https://api.example.com",
"mail.example.com:465"
],
"timeout":15
}

Output

Each domain produces one dataset item with full certificate details and a security grade.

Key fields:

  • domain (string) โ€” the domain that was checked
  • protocol (string) โ€” negotiated TLS version (e.g., TLSv1.3)
  • issuer (string) โ€” certificate authority that issued the certificate
  • validFrom / validTo (string) โ€” certificate validity period
  • daysUntilExpiry (integer) โ€” days remaining before expiry
  • grade (string) โ€” security grade: A (strong), B (expiring soon), C (weak), F (expired/failed)
  • san (array) โ€” Subject Alternative Names covered by the certificate
  • certificateChain (array) โ€” full chain from leaf to root
  • keySize (integer) โ€” RSA/ECDSA key size in bits
  • errors (array) โ€” any connection or certificate errors

Output Example

{
"domain":"example.com",
"protocol":"TLSv1.3",
"issuer":"C=US, O=DigiCert Inc, CN=DigiCert TLS RSA SHA256 2020 CA1",
"subject":"C=US, ST=California, O=Internet Corporation for Assigned Names and Numbers, CN=www.example.org",
"validFrom":"2024-11-15T00:00:00.000Z",
"validTo":"2025-12-15T23:59:59.000Z",
"daysUntilExpiry":281,
"serialNumber":"0c1d2e3f4a5b6c7d8e9f0a1b2c3d4e5f",
"fingerprint":"a1b2c3d4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0",
"signatureAlgorithm":"sha256WithRSAEncryption",
"keySize":2048,
"san":["example.com","www.example.com"],
"grade":"A",
"errors":[]
}

Pricing

EventCost
Certificate CheckIncluded in platform usage

Free to use โ€” you pay only for Apify platform compute time.

Use Cases

  • Certificate portfolio monitoring โ€” schedule weekly runs across all your domains to catch expiring certificates before they cause outages
  • Client website audits โ€” agencies can scan all client sites in one run and report on certificate health
  • Compliance reporting โ€” generate certificate inventory reports for SOC 2, PCI DSS, or internal security reviews
  • Vendor security assessment โ€” evaluate TLS configuration of third-party APIs and SaaS dependencies
  • Post-deployment verification โ€” confirm new certificates are installed correctly after renewal or migration

Related Actors

ActorWhat it adds
DNS Propagation CheckerVerify DNS is propagated before checking SSL certificates on new domains
SSL Cipher Suite CheckerAudit the specific TLS cipher suites negotiated by each domain
Security Headers AnalyzerCheck HSTS, CSP, and other HTTP security headers alongside SSL

Notes

  • The actor handles self-signed and invalid certificates gracefully โ€” they will receive an F grade with error details.
  • For domains behind CDNs, the certificate returned is the CDN's edge certificate, not the origin server's.

You might also like

SSL Certificate Checker

automation-lab/ssl-certificate-checker

SSL Certificate Checker connects to domains over TLS and inspects their SSL certificates. It returns structured data about certificate validity, expiry, issuer chain, TLS protocol version, cipher suite, and a security grade from A+ to F.

๐Ÿ‘ User avatar

Stas Persiianenko

16

SSL Certificate Checker

rationalistic_counsel/ssl-certificate-checker

SSL Certificate Monitor โ€” Bulk Expiry & Chain Checker

accurate_pouch/ssl-monitor

Monitor SSL/TLS certificates in bulk. Expiry dates, issuer, protocol version, key size, certificate chain, SAN list. Webhook alerts for expiring certs. 5 domains free.

๐Ÿ‘ User avatar

Manchitt Sanan

2

๐Ÿ”’ SSL Certificate Checker โ€” Bulk Expiry Monitor

nexgendata/ssl-certificate-checker

Bulk SSL certificate monitoring โ€” expiry dates, issuers, chain validation and TLS config across all your domains. Qualys SSL Labs, Nagios & Datadog alternative for agencies and SecOps teams. Alerts before certs expire. Pay per check.

SSL Certificate Inspector - TLS Audit & Expiry Monitor

santamaria-automations/ssl-certificate-inspector

Inspect SSL/TLS certificates for any domain: chain validation, expiry dates, cipher suites, TLS versions, subject alt names, issuer details, and security scoring. Export data, run via API, schedule and monitor runs, or integrate with other tools.

SSL Certificate Checker

maximedupre/ssl-certificate-checker

Check SSL/TLS certificates for public domains, URLs, and host:port endpoints. Export expiry, trust, hostname match, issuer, SANs, chain, TLS, cipher, HSTS, HTTPS redirect, and issue data.

๐Ÿ‘ User avatar

Maxime Duprรฉ

2

Domain WHOIS & SSL Inspector

seemuapps/domain-whois-ssl-inspector

Look up registration, age, expiry, registrar, and name servers for any domain via RDAP, plus live SSL certificate details issuer, validity, and days until expiry one row per domain.

Website HTTPS & SSL Health Checker

pillowy_travel/website-https-ssl-health-checker

Checks HTTPS availability and SSL certificate health for given URLs

79

5.0

SSL/TLS Certificate Scraper

taroyamada/ssl-certificate-monitor

Scan thousands of websites for expiring TLS certs, extract fingerprint hashes, and run Google Web Risk malware checks without rendering a browser.