diff --git a/docs/simplesamlphp-idp.txt b/docs/simplesamlphp-idp.txt
index 79f189e1bbcf1cd891b31bd13a0a468fe39c5390..63e1754ebb6c89da9451f84a9fca6641c4682a38 100644
--- a/docs/simplesamlphp-idp.txt
+++ b/docs/simplesamlphp-idp.txt
@@ -159,16 +159,13 @@ Creating a SSL self signed certificate
 For test purposes, you can skip this section, and use the certificate
 included in the simpleSAMLphp distribution.
 
-Here is an example of `openssl`-commands which can be used to generate
+Here is an example of an `openssl`-command which can be used to generate
 a new private key key and the corresponding self-signed certificate.
 This key and certificate can be used to sign SAML messages:
 
-    openssl genrsa -out example.org.pem 1024
-    openssl req -new -key example.org.pem -out example.org.csr
-    openssl x509 -req -days 9999 -in example.org.csr -signkey example.org.pem -out example.org.crt
-    rm example.org.csr
+    openssl req -new -x509 -days 3652 -nodes -out example.org.crt -keyout example.org.pem
 
-The certificate above will be valid for 9999 days.
+The certificate above will be valid for 10 years.
 
 
 ### Note ###