In my current project we have one SMTP (Postfix) server that will be TLS enabled (with may be condition).
How i can verify the TLS certificate on following basis:
1) Verify that certificate authority is trusted.
2) Verify the TLS certificate expiry date.
3) Verify that certificate issued to particular application only.
4) Verify the encryption cipher used in TLS.