Before covering how to convert to pem from different certificate formats let us define what each of the certificate file extensions means. .pem - Privacy Enhanced Mail Certificate. A PEM file is Base64 encoded and may be an X.509 certificate file, a private key file, or any other key material. … [Read more...] about Convert PEM to other formats
openssl pkcs12 legacy
With OpenSSL v3.x, newer cryptographic algorithms are used that may not be supported in older versions of Java, Windows, etc and will require the openssl pkcs12 legacy option. The -legacy option is useful and even required when creating a pkcs12 keystore for use in older operating systems and … [Read more...] about openssl pkcs12 legacy
pkcs12
A pkcs12 keystore is commonly used for both S/MIME User Certificates and SSL/TLS Server Certificates. The keystore may contain both private keys and their corresponding certificates with or without a complete chain. The keystore’s purpose is to store the credential of an identity, being a person, … [Read more...] about pkcs12
openssl verify – Verify a certificate and certificate chain
Use the openssl verify function to verify a certificate chain. To verify a certificate chain you must first get the certificate chain to verify against. openssl verify certificate chain To verify a certificate and its chain for a given website with OpenSSL, run the following … [Read more...] about openssl verify – Verify a certificate and certificate chain
pfx password
A pfx password protects your private key stored in your keystore. The private key in the keystore also has a password and its password should be the same as the pfx keystore password. When creating the keystore and protecting it with a password the passwords will originally match. The place to be … [Read more...] about pfx password
OpenSSL Self Signed Certificate
This article will demonstrate how to use OpenSSL to create a self signed certificate. First things first. What is a self signed certificate? A self signed certificate is exactly what it sounds like. The private key of the key pair signs its own SSL certificate. It is not signed by a CA … [Read more...] about OpenSSL Self Signed Certificate
curl authentication – Certificate, Bearer token, and Basic Auth
The following examples will go through how to use curl with authentication. For obvious reasons, public APIs do not require authentication but private APIs will require authentication using authorization headers with basic auth, a bearer token header using a JWT (Javascript Web Token) or some other … [Read more...] about curl authentication – Certificate, Bearer token, and Basic Auth
openssl view certificate
To view and parse a certificate with openssl, run the following command with the openssl x509 utility: openssl x509 -in example.com.crt -text -noout Where x509 is a certificate utility, -in example.com.crt is the certificate to view, -text means to print the full details of the certificate in … [Read more...] about openssl view certificate