Many online instructions only work for RSA key encryption i.e.

openssl x509 -noout -modulus -in fullchain.pem | openssl md5
openssl rsa -noout -modulus -in privkey.pem | openssl md5

But certbot v2 and later has switched to use ECDSA by default causing verification method above fail. If you want to keep using RSA 2048-bit certificates, you can use the certbot CLI flags which have been available since Certbot 1.10.0: --key-type rsa --rsa-key-size 2048

Here is a versatile method which works for all supported encryption algorithms:

openssl x509 -noout -pubkey -in fullchain.pem
openssl pkey -check -pubout -outform PEM -in privkey.pem