SSL Certificate Monitor — Bulk Expiry & Chain Checker
Pricing
Pay per usage
SSL Certificate Monitor — Bulk Expiry & Chain Checker
Monitor SSL/TLS certificates in bulk. Expiry dates, issuer, protocol version, key size, certificate chain, SAN list. Webhook alerts for expiring certs. 5 domains free.
Pricing
Pay per usage
Rating
0.0
(0)
Developer
Manchitt Sanan
Actor stats
0
Bookmarked
1
Total users
0
Monthly active users
14 hours ago
Last modified
Categories
Share
Monitor SSL/TLS certificates in bulk. Check expiry dates, issuer, protocol version, key size, signature algorithm, certificate chain, and Subject Alternative Names. Webhook alerts for expiring certificates..
Why this exists
Expired SSL certificates cause browser warnings, lost traffic, and SEO penalties. Existing Apify SSL checkers charge $0.009/check or have 90% success rates. This actor checks more fields, costs less, and sends webhook alerts when certificates are about to expire.
Quick start
What it checks per domain
| Field | Description |
|---|---|
valid | Certificate is trusted (authorized by CA) |
issuer | Certificate Authority that issued it |
subject | Domain the cert was issued for |
validFrom / validTo | Certificate validity period |
daysUntilExpiry | Days until expiration |
expiryStatus | ok (>30d), warning (7-30d), critical (<7d), expired |
protocol | TLS version (TLSv1.2, TLSv1.3) |
keySize | RSA/EC key size in bits |
signatureAlgorithm | Signing algorithm (sha256WithRSAEncryption, etc) |
altNames | Subject Alternative Names (all domains covered by cert) |
chain | Full certificate chain: leaf → intermediate → root CA |
fingerprint | SHA-256 certificate fingerprint |
serialNumber | Certificate serial number |
Input
| Field | Type | Default | Description |
|---|---|---|---|
domains | array | (required) | Domains to check (no https://) |
checkChain | boolean | true | Include full certificate chain |
timeout | integer | 10000 | TLS connection timeout in ms |
webhookUrl | string | (optional) | POST alert when certs expire within 7 days |
dryRun | boolean | false | Check certs without charges |
Pricing
$0.003 per domain checked (pay-per-event pricing).
- Errors and dry runs are never charged.
- 100 domains = $0.30
Webhook alerts
If webhookUrl is set, the actor POSTs a JSON alert when any certificate is expiring within 7 days or already expired:
Use with Apify scheduled runs (daily/weekly) + webhook to Slack, PagerDuty, or email for automated certificate monitoring.
Limitations
- Port 443 only. Does not check certificates on non-standard ports.
- Self-signed certificates are reported as
valid: falsebut all other fields are still populated. - Rate: Sequential checking (one domain at a time) to avoid connection floods. ~1-2 seconds per domain.
Related Tools by manchittlab
- Broken Link Checker — Recursively crawl your website and find every broken link.
- Email Validator Pro — Bulk email validation with SMTP check and deliverability scoring.
- Lighthouse Auditor — Batch Lighthouse audits for performance, SEO, and Core Web Vitals.
- Image Processor — Batch resize, convert, compress, watermark.
- Domain Age Checker — Bulk RDAP domain age and registration lookup.
- Google Sheets Reader & Writer — Read any Google Sheet to JSON or append rows.
Run on Apify
No setup needed. Click above to run in the cloud. $0.003 per operation.
