Client certificate
Get details of a client certificate with its versions.
data "akamai_mtlskeystore_client_certificate" "my-cert" {
certificate_id = 123
}
output "my-cert" {
value = data.akamai_mtlskeystore_client_certificate.my-cert
}my-cert = {
certificate_id = 123
certificate_name = "my-akamai-client-cert"
created_by = "jsmith@example.com"
created_date = "2025-07-01T10:21:34Z"
current = {
certificate_block = {
certificate = <<-EOT
-----BEGIN CERTIFICATE-----
nMIID <sample - removed for readability> .... nMweq
-----END CERTIFICATE-----
EOT
key_algorithm = "RSA"
trust_chain = <<-EOT
-----BEGIN CERTIFICATE-----
nMIID <sample - removed for readability> .... nMweq
-----END CERTIFICATE-----
EOT
}
certificate_submitted_by = null
certificate_submitted_date = null
created_by = "jsmith@example.com"
created_date = "2025-07-01T10:21:37Z"
csr_block = null
delete_requested_date = null
expiry_date = "2025-10-01T10:21:36Z"
issued_date = "2025-07-01T10:21:36Z"
issuer = "23456 Account CA G1"
key_algorithm = "RSA"
elliptic_curve = ""
key_size_in_bytes = "2048"
scheduled_delete_date = null
signature_algorithm = "SHA256_WITH_RSA"
status = "DEPLOYED"
subject = "/C=US/O=Akamai Technologies, Inc./OU=23456 A-CCT1234 12345/CN=my-akamai-client-cert/"
validation = {
errors = null
warnings = null
}
version = 1
version_guid = "1abcdef2-g34h-56ij7k-l89m-no0pqr12346"
}
geography = "CORE"
key_algorithm = "RSA"
notification_emails = [
"jsmith@example.com",
]
previous = null
secure_network = "STANDARD_TLS"
signer = "AKAMAI"
subject = "/C=US/O=Akamai Technologies, Inc./OU=23456 A-CCT1234 12345/CN=my-akamai-client-cert/"
versions = null
}my-cert = {
certificate_id = 987
certificate_name = "my-third-party-client-cert"
created_by = "jsmith@example.com"
created_date = "2025-07-28T14:15:03Z"
current = {
certificate_block = {
certificate = <<-EOT
-----BEGIN CERTIFICATE-----
nMIID <sample - removed for readability> .... nMweq
-----END CERTIFICATE-----
EOT
key_algorithm = "RSA"
trust_chain = ""
}
certificate_submitted_by = "jsmith@example.com"
certificate_submitted_date = "2025-07-29T15:09:43Z"
created_by = "jsmith@example.com"
created_date = "2025-07-28T14:15:04Z"
csr_block = {
csr = <<-EOT
-----BEGIN CERTIFICATE REQUEST-----
nMIID <sample - removed for readability> .... nMweq
-----END CERTIFICATE REQUEST-----
EOT
key_algorithm = "RSA"
}
delete_requested_date = null
expiry_date = "2027-10-29T15:02:19Z"
issued_date = "2025-07-29T15:02:19Z"
issuer = ""
key_algorithm = "RSA"
elliptic_curve = ""
key_size_in_bytes = "2048"
properties = null
scheduled_delete_date = null
signature_algorithm = "SHA256_WITH_RSA"
status = "DEPLOYED"
subject = "/CN=my-third-party-client-cert/OU=23456 A-CCT1234 12345/O=Akamai Technologies, Inc./C=US/"
validation = {
errors = null
warnings = null
}
version = 1
version_guid = "1abcdef2-g34h-56ij7k-l89m-no0pqr12346"
}
geography = "CORE"
include_associated_properties = null
key_algorithm = "RSA"
notification_emails = [
"jsmith@example.com",
]
previous = null
secure_network = "STANDARD_TLS"
signer = "THIRD_PARTY"
subject = "/C=US/O=Akamai Technologies, Inc./OU=23456 A-CCT1234 12345/CN=my-third-party-client-cert/"
versions = [
{
certificate_block = {
certificate = <<-EOT
-----BEGIN CERTIFICATE-----
nMIID <sample - removed for readability> .... nMweq
-----END CERTIFICATE-----
EOT
key_algorithm = "RSA"
trust_chain = ""
}
certificate_submitted_by = "jsmith@example.com"
certificate_submitted_date = "2025-07-29T15:09:43Z"
created_by = "jsmith@example.com"
created_date = "2025-07-28T14:15:04Z"
csr_block = {
csr = <<-EOT
-----BEGIN CERTIFICATE REQUEST-----
nMIID <sample - removed for readability> .... nMweq
-----END CERTIFICATE REQUEST-----
EOT
key_algorithm = "RSA"
}
delete_requested_date = null
expiry_date = "2027-10-29T15:02:19Z"
issued_date = "2025-07-29T15:02:19Z"
issuer = ""
key_algorithm = "RSA"
elliptic_curve = ""
key_size_in_bytes = "2048"
properties = null
scheduled_delete_date = null
signature_algorithm = "SHA256_WITH_RSA"
status = "DEPLOYED"
subject = "/CN=my-third-party-client-cert/OU=23456 A-CCT1234 12345/O=Akamai Technologies, Inc./C=US/"
validation = {
errors = null
warnings = null
}
version = 1
version_guid = "9zyxwvu8-t76s-54r3q-p21on-m0lkj98i7654"
},
]
}Arguments
Pass the certificate ID in the data block to get its details. Optionally, pass the include_associated_properties argument to include properties active on production linked to the client certificate's version.
| Argument | Required | Description |
|---|---|---|
certificate_id | ✔ | Your client certificate's ID. |
include_associated_properties | When set to true, this also lists properties active on production linked to the client certificate's version. |
Attributes
Returned to you are the details of the client certificate.
| Attribute | Description |
|---|---|
certificate_id | The client certificate's ID. |
certificate_name | A descriptive, human-readable name for the client certificate. |
include_associated_properties | When true, this lists properties active on production linked to the client certificate's version. |
created_by | The user that created the client certificate. |
created_date | The ISO 8601 timestamp indicating when the client certificate was created. |
geography | Your client certificate's deployment location. Possible values:
|
key_algorithm | The cryptographic algorithm used for key generation, either RSA or ECDSA. |
notification_emails | Email addresses of users that get notified about any issues with the client certificate. |
secure_network | The type of security on a deployment network. Possible values:
|
subject | The CA certificate’s key value details. |
signer | The signing entity of the client certificate. Possible values: AKAMAI or THIRD_PARTY. |
current/previous | Details of the current or previous client certificate version, containing an alias version. Includes:
|
versions | The client certificate's versions. Each version record contains:
|
Updated 3 months ago