Sample code for 30+ languages & platforms
Classic ASP

Get Certificates from .p12 / .pfx

See more PFX/P12 Examples

A PKCS12 (.p12 / .pfx) is a container for holding a certificate, its private key, and the certs in the chain of authentication up to and possibly including the root CA cert. A .p12 is not required to contain certain things. It will contain whatever the creator of the .p12 decided to include. It's possible to contain just a private key, just a cert, many certs without private keys, or many certs with many private keys. Usually, a .p12 contains one certificate, its associated private key, and certificates in the chain of authentication.

Chilkat Classic ASP Downloads

Classic ASP
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
success = 0

set pfx = Server.CreateObject("Chilkat.Pfx")

success = pfx.LoadPfxFile("qa_data/pfx/test.pfx","pfx_password")
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( pfx.LastErrorText) & "</pre>"
    Response.End
End If

' Iterate over the certs contained in the PFX
set cert = Server.CreateObject("Chilkat.Cert")
numCerts = pfx.NumCerts
i = 0
Do While i < numCerts

    success = pfx.CertAt(i,cert)

    Response.Write "<pre>" & Server.HTMLEncode( "--- " & i & " ---") & "</pre>"
    Response.Write "<pre>" & Server.HTMLEncode( cert.SubjectDN) & "</pre>"
    ' Is this a root cert, or self-signed?
    Response.Write "<pre>" & Server.HTMLEncode( "Root: " & cert.IsRoot) & "</pre>"
    Response.Write "<pre>" & Server.HTMLEncode( "Self-Signed: " & cert.SelfSigned) & "</pre>"

    ' If this certificate is not the root (self-signed), then get the issuer.
    ' If the issuing certificate is contained in the PFX, then it will be found here..
    If (cert.SelfSigned <> 1) Then
        ' issuer is a Chilkat.Cert
        Set issuer = cert.FindIssuer()
        If (cert.LastMethodSuccess = 0) Then
            Response.Write "<pre>" & Server.HTMLEncode( "Issuer not found.") & "</pre>"
        Else
            Response.Write "<pre>" & Server.HTMLEncode( "Issuer: " & issuer.SubjectDN) & "</pre>"

        End If

    End If

    i = i + 1
Loop

' Usually, the user certificate is at index 0, its issuer is at index 1, etc. until we get to the root certificate.

%>
</body>
</html>