Apache SECURITY using SSL 3.0

Does anyone work with Apache web server using SSL 3.0? I’m working a case where a person breached the security on a web server and we are trying to find the computer used in the crime.
Q: are the client certificate keys or thumb print numbers stored on the Apache log or does the SSL use it’s own log files.

Q: Does the cookie placed on the client’s computer contain all the time and date stamp of the last transaction between the client and the web server.

Q: I have to prove the case by pin pointing the exact computer used.