This image shows how trust is established between the server and the client.
Server generates a certificate.
Client imports the server certificate in its trusted store.
At run time, the client gets the server certificate.
Client checks for server certificate in its trusted store.