# Show Certificate *Applies to: Patch My PC Publisher* ## Overview The Show Certificate option displays detailed information about the code-signing certificate currently configured for use by the Publisher. This view allows you to verify that a valid certificate is selected, confirm its trust status, and ensure it meets WSUS and ConfigMgr signing requirements.

Show the Certificate being used by the Publisher

When you select **Show Certificate**, the following information is displayed: * **Issuer**\ The authority that issued the certificate. This may be ConfigMgr, the Publisher, or an internal/public Certificate Authority. * **Subject**\ The identity the certificate was issued to. * **Effective Date**\ The date and time from which the certificate is valid. * **Expiration Date**\ The date and time the certificate expires. * **Code Signing**\ Indicates whether the certificate is valid for code-signing operations, which is required for publishing updates to WSUS and signing ConfigMgr detection method scripts. * **Public Key**\ The cryptographic algorithm and key length used by the certificate (for example, RSA 2048-bit). * **Thumbprint**\ A unique identifier for the certificate, useful for verification and troubleshooting. * **WSUS certificate installed in the Trusted Publishers certificate store**\ Confirms whether the certificate is trusted for publishing updates to WSUS. * **WSUS certificate installed in the Trusted Root certificate store**\ Indicates whether the certificate chain is trusted by the local system and WSUS. ## Validate Trust Chain Selecting **Validate Trust Chain** checks whether the certificate and its issuing chain are trusted by the local system. This is a useful troubleshooting step if update publishing fails due to certificate or trust-related errors.