Sample code for 30+ languages & platforms
Classic ASP

Duplicate OpensSSL to Sign File and Output Binary DER

See more OpenSSL Examples

This example duplicates the following:
openssl smime -sign -in INPUT.xml -signer SIGN.PEM -passin pass:MYPASS -outform der -binary -nodetach -out SIGNED.P7M

Note: Although "smime" is the OpenSSL command, it's not actually producing S/MIME. The arguments "-outform der -binary" indicates that the output is binary DER (i.e. the PKCS7 binary signature). The input can be any type of file: XML, PDF, JPG, ... *anything*...

Chilkat Classic ASP Downloads

Classic ASP
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
success = 0

' This example requires the Chilkat API to have been previously unlocked.
' See Global Unlock Sample for sample code.

set crypt = Server.CreateObject("Chilkat.Crypt2")

' Load the PEM containing cert + private key.
set pem = Server.CreateObject("Chilkat.Pem")
success = pem.LoadPemFile("qa_data/pem/myPem.pem","password")
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( pem.LastErrorText) & "</pre>"
    Response.End
End If

set privkey = Server.CreateObject("Chilkat.PrivateKey")
success = pem.PrivateKeyAt(0,privkey)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( pem.LastErrorText) & "</pre>"
    Response.End
End If

set cert = Server.CreateObject("Chilkat.Cert")
success = pem.CertAt(0,cert)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( pem.LastErrorText) & "</pre>"
    Response.End
End If

success = crypt.SetSigningCert2(cert,privkey)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( crypt.LastErrorText) & "</pre>"
    Response.End
End If

' Alternatively, we could use a .pfx/.p12 file.
' (Chilkat also supports other formats/sources for cert/private keys...)
set certFromP12 = Server.CreateObject("Chilkat.Cert")
success = certFromP12.LoadPfxFile("qa_data/p12/myP12.p12","password")
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( certFromP12.LastErrorText) & "</pre>"
    Response.End
End If

' The certificate, when loaded from a .pfx/.p12, will automatically 
' include the associated private key, assuming it's present in the .p12.
' We don't have to explicitly provide the private key as in the
' lines of code above that use the PEM file.
success = crypt.SetSigningCert(certFromP12)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( crypt.LastErrorText) & "</pre>"
    Response.End
End If

' Create the opaque signature (PKCS7 binary DER that contains both the signature and original file data).
success = crypt.CreateP7M("qa_data/infile.anything","qa_output/outfile.p7m")
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( crypt.LastErrorText) & "</pre>"
    Response.End
End If

Response.Write "<pre>" & Server.HTMLEncode( "Success.") & "</pre>"

%>
</body>
</html>