Sample code for 30+ languages & platforms
Classic ASP

Export a Certificate's Private Key to Various Formats

See more Certificates Examples

Loads a digital certificate and private key from a PFX file (also known as PKCS#12) and exports the private key to various formats: (1) PKCS8 Encrypted, (2) PKCS8 Encrypted PEM, (3) PKCS8 unencrypted, (4) PKCS8 PEM unencrypted, (5) RSA DER unencrypted, (6) RSA PEM unencrypted, (7) XML.

Chilkat Classic ASP Downloads

Classic ASP
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
success = 0

set cert = Server.CreateObject("Chilkat.Cert")

' Load from the PFX file
pfxFilename = "/Users/chilkat/testData/pfx/chilkat_ssl_pwd_is_test.pfx"
pfxPassword = "test"

' A PFX typically contains certificates in the chain of authentication.
' The Chilkat cert object will choose the certificate w/
' private key farthest from the root authority cert.
' To access all the certificates in a PFX, use the 
' Chilkat certificate store object instead.
success = cert.LoadPfxFile(pfxFilename,pfxPassword)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( cert.LastErrorText) & "</pre>"
    Response.End
End If

' Get the private key...
set privKey = Server.CreateObject("Chilkat.PrivateKey")
success = cert.GetPrivateKey(privKey)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( cert.LastErrorText) & "</pre>"
    Response.End
End If

' Export to various formats:

password = "secret"

' PKCS8 Encrypted DER
path = "/Users/chilkat/testData/privkeys/chilkat_pkcs8_enc.der"
success = privKey.SavePkcs8EncryptedFile(password,path)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( privKey.LastErrorText) & "</pre>"
    Response.End
End If

' PKCS8 Encrypted PEM
path = "/Users/chilkat/testData/privkeys/chilkat_pkcs8_enc.pem"
success = privKey.SavePkcs8EncryptedPemFile(password,path)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( privKey.LastErrorText) & "</pre>"
    Response.End
End If

' PKCS8 Unencrypted DER
path = "/Users/chilkat/testData/privkeys/chilkat_pkcs8.der"
success = privKey.SavePkcs8File(path)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( privKey.LastErrorText) & "</pre>"
    Response.End
End If

' PKCS8 Unencrypted PEM
path = "/Users/chilkat/testData/privkeys/chilkat_pkcs8.pem"
success = privKey.SavePkcs8PemFile(path)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( privKey.LastErrorText) & "</pre>"
    Response.End
End If

'  RSA DER (unencrypted)
path = "/Users/chilkat/testData/privkeys/chilkat_rsa.der"
success = privKey.SavePkcs1File(path)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( privKey.LastErrorText) & "</pre>"
    Response.End
End If

' RSA PEM (unencrypted)
path = "/Users/chilkat/testData/privkeys/chilkat_rsa.pem"
success = privKey.SavePemFile(path)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( privKey.LastErrorText) & "</pre>"
    Response.End
End If

' XML (unencrypted)
path = "/Users/chilkat/testData/privkeys/chilkat.xml"
success = privKey.SaveXmlFile(path)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( privKey.LastErrorText) & "</pre>"
    Response.End
End If

Response.Write "<pre>" & Server.HTMLEncode( "Private key exported to various formats.") & "</pre>"

%>
</body>
</html>