Retrieve the public key from cert and do a md5
openssl x509 -in server.crt -pubkey -noout | openssl md5
Retrieve the public key from private key and do a md5
openssl pkey -pubout -in server.key | openssl md5
If the outputs from two commands match, then the certificate must be created from the private key.
