Sample code for 30+ languages & platforms
PureBasic

Convert Cert + Key to PEM and PFX

See more Certificates Examples

This example is based on the following question from a Chilkat customer:

We receive 2 files :

    MyCertificate.p7b
    MyCertificate-privatekey.pkey

We have to transform these certificate like this:

First convert it to PEM like this:

openssl pkcs7 -in MyCertificate.p7b -inform DER -out MyCertificate.pem -print_certs

Now we get MyCertificate.pem

Last step, we need to convert it to pfx file:

openssl pkcs12 -export -inkey moncertificat-privatekey.pkey  -in  moncertificat.pem -out moncertificat.pfx

Is there a way to make all these steps with Chilkat ?

I will be nice to include this directly in our software instead of askig the user to do it manualy.

Chilkat PureBasic Downloads

PureBasic
IncludeFile "CkPrivateKey.pb"
IncludeFile "CkCert.pb"

Procedure ChilkatExample()

    success.i = 0

    cert.i = CkCert::ckCreate()
    If cert.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    privKey.i = CkPrivateKey::ckCreate()
    If privKey.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; Load any type of certificate (.cer, .p7b, .pem, etc.) by calling LoadFromFile.
    success = CkCert::ckLoadFromFile(cert,"qa_data/certs/sample_cert_a.cer")
    If success <> 1
        Debug CkCert::ckLastErrorText(cert)
        CkCert::ckDispose(cert)
        CkPrivateKey::ckDispose(privKey)
        ProcedureReturn
    EndIf

    ; Load the private key.
    ; (The various privKey methods that load from a file will automatically detect
    ; the format.  It doesn't actually matter if you try to load a non-PKCS8 format private key
    ; by calling LoadPkcs8EncryptedFile -- internally Chilkat will detect the format and will load
    ; based on what it finds.)
    success = CkPrivateKey::ckLoadPkcs8EncryptedFile(privKey,"qa_data/certs/sample_key_a.pkcs8","password")
    If success <> 1
        Debug CkPrivateKey::ckLastErrorText(privKey)
        CkCert::ckDispose(cert)
        CkPrivateKey::ckDispose(privKey)
        ProcedureReturn
    EndIf

    ; Write the cert as PEM.
    success = CkCert::ckExportCertPemFile(cert,"qa_output/cert.pem")

    ; Or get the PEM string directly...
    Debug CkCert::ckExportCertPem(cert)

    ; Associate the private key with the cert object.
    success = CkCert::ckSetPrivateKey(cert,privKey)
    If success <> 1
        Debug CkCert::ckLastErrorText(cert)
        CkCert::ckDispose(cert)
        CkPrivateKey::ckDispose(privKey)
        ProcedureReturn
    EndIf

    ; Write the cert + private key to a .pfx file.
    success = CkCert::ckExportToPfxFile(cert,"qa_data/myPfx.pfx","password",1)
    If success <> 1
        Debug CkCert::ckLastErrorText(cert)
        CkCert::ckDispose(cert)
        CkPrivateKey::ckDispose(privKey)
        ProcedureReturn
    EndIf

    Debug "Success."


    CkCert::ckDispose(cert)
    CkPrivateKey::ckDispose(privKey)


    ProcedureReturn
EndProcedure