A digital certificate is an electronic "passport" that allows a person, computer or organization to exchange information securely over the Internet using the public key infrastructure (PKI). A digital certificate may also be referred to as a public key certificate.
Just like a passport, a digital certificate provides identifying information, is forgery resistant and can be verified because it was issued by an official, trusted agency. The certificate contains the name of the certificate holder, a serial number, expiration dates, a copy of the certificate holder's public key (used for encrypting messages and digital signatures) and the digital signature of the certificate-issuing authority (CA) so that a recipient can verify that the certificate is real.
To provide evidence that a certificate is genuine and valid, it is digitally signed by a root certificate belonging to a trusted certificate authority. Operating systems and browsers maintain lists of trusted CA root certificates so they can easily verify certificates that the CAs have issued and signed. When PKI is deployed internally, digital certificates can be self-signed.
In other words Digital certificate file containing one of the key pairs required for a public key infrastructure (PKI). Its purpose is to associate a given public key with an identity. This 'identity' might consist of an e-mail address, the name of a person or organization, their address, etcetera. A PKI can be used for encrypting files, securing Virtual Private Networks (VPN), or encrypting e-mail.

In a PKI, one of the keys in this key pair is called the Public Key and may be publicly posted for others to encrypt data to be sent to you. The other is called the private key and is kept secret. There is no physical difference between the two keys, the identity is determined by which one you give out. 
