How do you figure that it is wrong? The CSR is the file that you submit to your CArtel. A CRT file is an actual certificate file, basically, the response to the CSR file. You can generate this yourself (called a “self-signed certificate”, generated with something like “openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt”), but if you make it yourself, then any user to your site will be prompted about whether to accept you as a CA.

Do you have some more details about what led you to get better results with the crt extension?

First, thanks for the great tutorial

I’ve found a litlte big on the tutorial code, the line that is:

openssl req -new -key your_website_name.key -out your_website_name.csr

Should be:

openssl req -new -key your_website_name.key -out your_website_name.crt