Sample code for 30+ languages & platforms
Swift

Get Certificates from .p12 / .pfx

See more PFX/P12 Examples

A PKCS12 (.p12 / .pfx) is a container for holding a certificate, its private key, and the certs in the chain of authentication up to and possibly including the root CA cert. A .p12 is not required to contain certain things. It will contain whatever the creator of the .p12 decided to include. It's possible to contain just a private key, just a cert, many certs without private keys, or many certs with many private keys. Usually, a .p12 contains one certificate, its associated private key, and certificates in the chain of authentication.

Chilkat Swift Downloads

Swift

func chilkatTest() {
    var success: Bool = false

    let pfx = CkoPfx()!

    success = pfx.loadFile(path: "qa_data/pfx/test.pfx", password: "pfx_password")
    if success == false {
        print("\(pfx.lastErrorText!)")
        return
    }

    // Iterate over the certs contained in the PFX
    let cert = CkoCert()!
    var numCerts: Int = pfx.numCerts.intValue
    var i: Int = 0
    while i < numCerts {

        pfx.cert(at: i, cert: cert)

        print("--- \(i) ---")
        print("\(cert.subjectDN!)")
        // Is this a root cert, or self-signed?
        print("Root: \(cert.isRoot)")
        print("Self-Signed: \(cert.selfSigned)")

        // If this certificate is not the root (self-signed), then get the issuer.
        // If the issuing certificate is contained in the PFX, then it will be found here..
        if cert.selfSigned != true {
            var issuer: CkoCert? = cert.findIssuer()
            if cert.lastMethodSuccess == false {
                print("Issuer not found.")
            }
            else {
                print("Issuer: \(issuer!.subjectDN!)")
                issuer = nil
            }

        }

        i = i + 1
    }

    // Usually, the user certificate is at index 0, its issuer is at index 1, etc. until we get to the root certificate.

}