Sample code for 30+ languages & platforms
Unicode C

Convert Cert + Key to PEM and PFX

See more Certificates Examples

This example is based on the following question from a Chilkat customer:

We receive 2 files :

    MyCertificate.p7b
    MyCertificate-privatekey.pkey

We have to transform these certificate like this:

First convert it to PEM like this:

openssl pkcs7 -in MyCertificate.p7b -inform DER -out MyCertificate.pem -print_certs

Now we get MyCertificate.pem

Last step, we need to convert it to pfx file:

openssl pkcs12 -export -inkey moncertificat-privatekey.pkey  -in  moncertificat.pem -out moncertificat.pfx

Is there a way to make all these steps with Chilkat ?

I will be nice to include this directly in our software instead of askig the user to do it manualy.

Chilkat Unicode C Downloads

Unicode C
#include <C_CkCertW.h>
#include <C_CkPrivateKeyW.h>

void ChilkatSample(void)
    {
    BOOL success;
    HCkCertW cert;
    HCkPrivateKeyW privKey;

    success = FALSE;

    cert = CkCertW_Create();
    privKey = CkPrivateKeyW_Create();

    // Load any type of certificate (.cer, .p7b, .pem, etc.) by calling LoadFromFile.
    success = CkCertW_LoadFromFile(cert,L"qa_data/certs/sample_cert_a.cer");
    if (success != TRUE) {
        wprintf(L"%s\n",CkCertW_lastErrorText(cert));
        CkCertW_Dispose(cert);
        CkPrivateKeyW_Dispose(privKey);
        return;
    }

    // Load the private key.
    // (The various privKey methods that load from a file will automatically detect
    // the format.  It doesn't actually matter if you try to load a non-PKCS8 format private key
    // by calling LoadPkcs8EncryptedFile -- internally Chilkat will detect the format and will load
    // based on what it finds.)
    success = CkPrivateKeyW_LoadPkcs8EncryptedFile(privKey,L"qa_data/certs/sample_key_a.pkcs8",L"password");
    if (success != TRUE) {
        wprintf(L"%s\n",CkPrivateKeyW_lastErrorText(privKey));
        CkCertW_Dispose(cert);
        CkPrivateKeyW_Dispose(privKey);
        return;
    }

    // Write the cert as PEM.
    success = CkCertW_ExportCertPemFile(cert,L"qa_output/cert.pem");

    // Or get the PEM string directly...
    wprintf(L"%s\n",CkCertW_exportCertPem(cert));

    // Associate the private key with the cert object.
    success = CkCertW_SetPrivateKey(cert,privKey);
    if (success != TRUE) {
        wprintf(L"%s\n",CkCertW_lastErrorText(cert));
        CkCertW_Dispose(cert);
        CkPrivateKeyW_Dispose(privKey);
        return;
    }

    // Write the cert + private key to a .pfx file.
    success = CkCertW_ExportToPfxFile(cert,L"qa_data/myPfx.pfx",L"password",TRUE);
    if (success != TRUE) {
        wprintf(L"%s\n",CkCertW_lastErrorText(cert));
        CkCertW_Dispose(cert);
        CkPrivateKeyW_Dispose(privKey);
        return;
    }

    wprintf(L"Success.\n");


    CkCertW_Dispose(cert);
    CkPrivateKeyW_Dispose(privKey);

    }