Converting PKCS#12 certificate into PEM using OpenSSL

Try:

openssl pkcs12 -in path.p12 -out newfile.crt.pem -clcerts -nokeys
openssl pkcs12 -in path.p12 -out newfile.key.pem -nocerts -nodes

After that you have:

  • certificate in newfile.crt.pem
  • private key in newfile.key.pem

To put the certificate and key in the same file without a password, use the following, as an empty password will cause the key to not be exported:

openssl pkcs12 -in path.p12 -out newfile.pem -nodes

Or, if you want to provide a password for the private key, omit -nodes and input a password:

openssl pkcs12 -in path.p12 -out newfile.pem

If you need to input the PKCS#12 password directly from the command line (e.g. a script), just add -passin pass:${PASSWORD}:

openssl pkcs12 -in path.p12 -out newfile.crt.pem -clcerts -nokeys -passin 'pass:P@s

Related Posts:

  1. Enter PEM pass phrase when converting PKCS#12 certificate into PEM
  2. How to install OpenSSL in windows 10?
  3. SSL Error: unable to get local issuer certificate
  4. How to execute a program or call a system command?
  5. curl: (60) SSL certificate problem: unable to get local issuer certificate
  6. curl: (60) SSL certificate problem: unable to get local issuer certificate
  7. How to fix “A JNI error has occurred, please check your installation.”
  8. Openssl : error “self signed certificate in certificate chain”
  9. What does cmd /C mean?
  10. What does cmd /C mean?
  11. Using multiple delimiters in awk
  12. sudo: apt-get: command not found
  13. How to generate a self-signed SSL certificate using OpenSSL?
  14. How to run SQL script in MySQL?
  15. SSL_read failing with SSL_ERROR_SYSCALL error
  16. How can I pass an argument to a PowerShell script?
  17. Meaning of exit status 1 returned by linux command
  18. Converting pfx to pem using openssl
  19. OpenSSL Verify return code: 20 (unable to get local issuer certificate)
  20. Using find command in bash script
  21. Python AttributeError: ‘module’ object has no attribute ‘SSL_ST_INIT’
  22. Windows 7 Symbolic Link – Cannot create a file when that file already exists
  23. Python command not working in command prompt
  24. How can I generate a list of files with their absolute path in Linux?
  25. Verify return code: 20 when testing OpenSSL
  26. Command ‘ls’ not working in command prompt
  27. How do I make a python script executable?
  28. what is meant by devel for openssl?
  29. python getoutput() equivalent in subprocess
  30. Encrypt with private key and decrypt with public key
  31. How to use OpenSSL to encrypt/decrypt files?
  32. Using OpenSSL what does “unable to write ‘random state'” mean?
  33. How to edit a py file from terminal?
  34. Equivalent of *Nix ‘which’ command in PowerShell?
  35. How do you input command line arguments in IntelliJ IDEA?
  36. OpenSSL: PEM routines:PEM_read_bio:no start line:pem_lib.c:703:Expecting: TRUSTED CERTIFICATE
  37. SSL error SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
  38. How can I find out if I have Xcode commandline tools installed?
  39. How to open an elevated cmd using command line for Windows?
  40. What is the reason for the CD /D switch in Windows cmd?
  41. curl : (1) Protocol https not supported or disabled in libcurl
  42. OpenSSL: unable to verify the first certificate for Experian URL
  43. SSL CA cert (path? access rights?)
  44. ‘openssl’ is not recognized as internal or external command
  45. cat not recognised as an internal or external command
  46. Cygwin Make bash command not found
  47. How do I ignore files in Subversion?
  48. Split text file into smaller multiple text file using command line
  49. git undo all uncommitted or unsaved changes
  50. Run Command Prompt Commands
  51. What is Robocopy’s “restartable” option?
  52. npm install multiple package names
  53. Install oAuth PECL error: Cannot install, php_dir for channel “pecl.php.net” is not writeable by the current user
  54. Getting error in Curl – Peer certificate cannot be authenticated with known CA certificates
  55. How do you sign a Certificate Signing Request with your Certification Authority?
  56. What is the difference between the remap, noremap, nnoremap and vnoremap mapping commands in Vim?
  57. How to fix: fatal error: openssl/opensslv.h: No such file or directory in RedHat 7
  58. How to fix SSL issue SSL_CTX_use_certificate : ca md too weak on Python Zeep
  59. How to install latest version of openssl Mac OS X El Capitan
  60. how to download the ssl certificate from a website?
  61. Heartbleed: What is it and what are options to mitigate it?
  62. How do I view the details of a digital certificate .cer file?
  63. Nginx enable site command
  64. How to view all ssl certificates in a bundle?
  65. Is it possible to generate RSA key without pass phrase?
  66. Is there a global, persistent CMD history?
  67. ssh-keygen does not create RSA private key
  68. How can I verify if TLS 1.2 is supported on a remote web server from the RHEL/CentOS shell?
  69. Certification authority root certificate expiry and renewal
  70. How to check if an RSA public / private key pair match
  71. I have a keypair. How do I determine the key length?
  72. Heartbleed: how to reliably and portably check the OpenSSL version?
  73. Best location to keep SSL certificates and private keys on Ubuntu servers?
  74. Generating a self-signed cert with openssl that works in Chrome 58

Leave a Comment