(PowerShell) RSA Signature with Certificate's Private Key from PFX

See more RSA Examples

Demonstrates how to use a certificate's private key from a PFX file to create an RSA signature.

Chilkat .NET Downloads Chilkat .NET Assemblies

Add-Type -Path "C:\chilkat\ChilkatDotNet47-9.5.0-x64\ChilkatDotNet47.dll"

# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

# Create an instance of a certificate store object, load a PFX file,
# locate the certificate we need, and use it for signing.
# (a PFX file may contain more than one certificate.)
$certStore = New-Object Chilkat.CertStore

# The 1st argument is the filename, the 2nd arg is the 
# PFX file's password:
$success = $certStore.LoadPfxFile("chilkat.pfx","test")
if ($success -ne $true) {
    $($certStore.LastErrorText)
    exit
}

$cert = $certStore.FindCertBySubject("Chilkat Software, Inc.")
if ($certStore.LastMethodSuccess -eq $false) {
    $($certStore.LastErrorText)
    exit
}

$pkey = $cert.ExportPrivateKey()
if ($cert.LastMethodSuccess -eq $false) {
    $($cert.LastErrorText)

    exit
}

# Get the private key in XML format:
$pkeyXml = $pkey.GetXml()

$rsa = New-Object Chilkat.Rsa

# Import the private key into the RSA component:
$success = $rsa.ImportPrivateKey($pkeyXml)
if ($success -ne $true) {
    $($rsa.LastErrorText)

    exit
}

# Encode the signature as a hex string
$rsa.EncodingMode = "hex"

$strData = "This is the string to be signed."

# Sign the string using the sha-1 hash algorithm.
# Other valid choices are "sha-256", "md2" and "md5".
$hexSig = $rsa.SignStringENC($strData,"sha-1")

$($hexSig)

$("Success!")