Sample code for 30+ languages & platforms
C++

Export a Certificate's Private Key to Various Formats

See more Certificates Examples

Loads a digital certificate and private key from a PFX file (also known as PKCS#12) and exports the private key to various formats: (1) PKCS8 Encrypted, (2) PKCS8 Encrypted PEM, (3) PKCS8 unencrypted, (4) PKCS8 PEM unencrypted, (5) RSA DER unencrypted, (6) RSA PEM unencrypted, (7) XML.

Chilkat C++ Downloads

C++
#include <CkCert.h>
#include <CkPrivateKey.h>

void ChilkatSample(void)
    {
    bool success = false;

    CkCert cert;

    // Load from the PFX file
    const char *pfxFilename = "/Users/chilkat/testData/pfx/chilkat_ssl_pwd_is_test.pfx";
    const char *pfxPassword = "test";

    // A PFX typically contains certificates in the chain of authentication.
    // The Chilkat cert object will choose the certificate w/
    // private key farthest from the root authority cert.
    // To access all the certificates in a PFX, use the 
    // Chilkat certificate store object instead.
    success = cert.LoadPfxFile(pfxFilename,pfxPassword);
    if (success == false) {
        std::cout << cert.lastErrorText() << "\r\n";
        return;
    }

    // Get the private key...
    CkPrivateKey privKey;
    success = cert.GetPrivateKey(privKey);
    if (success == false) {
        std::cout << cert.lastErrorText() << "\r\n";
        return;
    }

    // Export to various formats:

    const char *password = "secret";
    const char *path = 0;

    // PKCS8 Encrypted DER
    path = "/Users/chilkat/testData/privkeys/chilkat_pkcs8_enc.der";
    success = privKey.SavePkcs8EncryptedFile(password,path);
    if (success == false) {
        std::cout << privKey.lastErrorText() << "\r\n";
        return;
    }

    // PKCS8 Encrypted PEM
    path = "/Users/chilkat/testData/privkeys/chilkat_pkcs8_enc.pem";
    success = privKey.SavePkcs8EncryptedPemFile(password,path);
    if (success == false) {
        std::cout << privKey.lastErrorText() << "\r\n";
        return;
    }

    // PKCS8 Unencrypted DER
    path = "/Users/chilkat/testData/privkeys/chilkat_pkcs8.der";
    success = privKey.SavePkcs8File(path);
    if (success == false) {
        std::cout << privKey.lastErrorText() << "\r\n";
        return;
    }

    // PKCS8 Unencrypted PEM
    path = "/Users/chilkat/testData/privkeys/chilkat_pkcs8.pem";
    success = privKey.SavePkcs8PemFile(path);
    if (success == false) {
        std::cout << privKey.lastErrorText() << "\r\n";
        return;
    }

    //  RSA DER (unencrypted)
    path = "/Users/chilkat/testData/privkeys/chilkat_rsa.der";
    success = privKey.SavePkcs1File(path);
    if (success == false) {
        std::cout << privKey.lastErrorText() << "\r\n";
        return;
    }

    // RSA PEM (unencrypted)
    path = "/Users/chilkat/testData/privkeys/chilkat_rsa.pem";
    success = privKey.SavePemFile(path);
    if (success == false) {
        std::cout << privKey.lastErrorText() << "\r\n";
        return;
    }

    // XML (unencrypted)
    path = "/Users/chilkat/testData/privkeys/chilkat.xml";
    success = privKey.SaveXmlFile(path);
    if (success == false) {
        std::cout << privKey.lastErrorText() << "\r\n";
        return;
    }

    std::cout << "Private key exported to various formats." << "\r\n";
    }