Sample code for 30+ languages & platforms
Delphi ActiveX

RSA Signature with Certificate's Private Key from PFX

See more RSA Examples

Demonstrates how to use a certificate's private key from a PFX file to create an RSA signature.

Chilkat Delphi ActiveX Downloads

Delphi ActiveX
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Chilkat_TLB;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Integer;
certStore: TChilkatCertStore;
jsonCN: TChilkatJsonObject;
cert: TChilkatCert;
privKey: TPrivateKey;
rsa: TChilkatRsa;
strData: WideString;
hexSig: WideString;

begin
success := 0;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Create an instance of a certificate store object, load a PFX file,
// locate the certificate we need, and use it for signing.
// (a PFX file may contain more than one certificate.)
certStore := TChilkatCertStore.Create(Self);

// The 1st argument is the filename, the 2nd arg is the 
// PFX file's password:
success := certStore.LoadPfxFile('chilkat.pfx','test');
if (success = 0) then
  begin
    Memo1.Lines.Add(certStore.LastErrorText);
    Exit;
  end;

// Find the certificate by the subject common name:
jsonCN := TChilkatJsonObject.Create(Self);
jsonCN.UpdateString('CN','cert common name');

cert := TChilkatCert.Create(Self);
success := certStore.FindCert(jsonCN.ControlInterface,cert.ControlInterface);
if (success = 0) then
  begin
    Memo1.Lines.Add(certStore.LastErrorText);
    Exit;
  end;

privKey := TPrivateKey.Create(Self);
success := cert.GetPrivateKey(privKey.ControlInterface);
if (success = 0) then
  begin
    Memo1.Lines.Add(cert.LastErrorText);
    Exit;
  end;

rsa := TChilkatRsa.Create(Self);

success := rsa.UsePrivateKey(privKey.ControlInterface);
if (success = 0) then
  begin
    Memo1.Lines.Add(rsa.LastErrorText);
    Exit;
  end;

// Encode the signature as a hex string
rsa.EncodingMode := 'hex';

strData := 'This is the string to be signed.';

// Sign the string using the sha-1 hash algorithm.
// Other valid choices are "sha-256", "md2" and "md5".
hexSig := rsa.SignStringENC(strData,'sha-1');

Memo1.Lines.Add(hexSig);

Memo1.Lines.Add('Success!');
end;