SSL Certificate Inspector: TLS Audit and Expiry Monitor, $1 per 1,000 Domains

Inspect the SSL/TLS certificate of any domain. Returns issuer, subject, expiry date, days_until_expiry, chain validity, signature algorithm, key size, SAN list, supported TLS versions, accepted cipher suites, and a 0-100 security score. Built for bulk: pass 10,000 domains and it returns one row per cert. Ideal for compliance audits, expiry monitoring, security posture dashboards, and vendor risk reviews.

Open on Apify → Try it now

Pricing

$0.001/domain

RAM

128MB

Coverage

Any domain

Output fields

20+

Proxy

Apify datacenter

Tech

Native TLS handshake

What you get

Certificate identity: issuer, subject, common_name, sans[], serial_number
Validity: not_before, not_after, days_until_expiry, is_expired, is_self_signed
Chain: chain_valid, chain_length, root_ca, intermediate_cas[]
Crypto: signature_algorithm, key_algorithm, key_size_bits
TLS posture: tls_versions_supported, cipher_suites, supports_tls13, security_score (0-100)

Primary use cases

Compliance audits. Verify every domain in scope meets PCI-DSS or SOC 2 TLS requirements
Expiry monitoring. Alert on certs expiring in <30 days across a fleet of subdomains
Security posture dashboards. Score every customer-facing service on a single 0-100 scale
Vendor risk reviews. Assess third-party vendor TLS hygiene before onboarding
Acquisition due diligence. Inventory cert health across a target company's domain portfolio

API example

# Start a run via the Apify API
curl -X POST "https://api.apify.com/v2/acts/santamaria-automations~ssl-certificate-inspector/runs?token=YOUR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "domains": [
      "google.com",
      "stripe.com",
      "shopify.com",
      "example-app.com",
      "vendor-portal.com"
    ],
    "checkChain": true,
    "checkCiphers": true
  }'

# Or use with AI agents via MCP:
# https://mcp.apify.com?tools=santamaria-automations/ssl-certificate-inspector

Integrations

n8n, Make, Zapier: trigger runs and process records via webhook
AI Agents (MCP): Claude Desktop, Cursor, VS Code, LangChain, LlamaIndex
Python, Node.js: Apify SDK for programmatic access
Google Sheets, Airtable: bulk input in, structured data out

Output fields

Field	Type	Example
domain	string	stripe.com
issuer	string	DigiCert TLS RSA SHA256 2020 CA1
common_name	string	stripe.com
sans	array	["stripe.com","www.stripe.com"]
not_after	string	2026-09-12T23:59:59Z
days_until_expiry	integer	91
chain_valid	boolean	true
signature_algorithm	string	sha256WithRSAEncryption
supports_tls13	boolean	true
security_score	integer	98

Related Actors

Domain WHOIS & DNS: pair cert audit with WHOIS and DNS posture
Website Tech Detector: identify the CDN behind each cert
IP Geolocation: enrich each cert with hosting country

Open on Apify → Try it now (free tier available)