Unicode C
Unicode C
Get Certificates from .p12 / .pfx
See more PFX/P12 Examples
A PKCS12 (.p12 / .pfx) is a container for holding a certificate, its private key, and the certs in the chain of authentication up to and possibly including the root CA cert. A .p12 is not required to contain certain things. It will contain whatever the creator of the .p12 decided to include. It's possible to contain just a private key, just a cert, many certs without private keys, or many certs with many private keys. Usually, a .p12 contains one certificate, its associated private key, and certificates in the chain of authentication.Chilkat Unicode C Downloads
#include <C_CkPfxW.h>
#include <C_CkCertW.h>
void ChilkatSample(void)
{
BOOL success;
HCkPfxW pfx;
HCkCertW cert;
int numCerts;
int i;
HCkCertW issuer;
success = FALSE;
pfx = CkPfxW_Create();
success = CkPfxW_LoadPfxFile(pfx,L"qa_data/pfx/test.pfx",L"pfx_password");
if (success == FALSE) {
wprintf(L"%s\n",CkPfxW_lastErrorText(pfx));
CkPfxW_Dispose(pfx);
return;
}
// Iterate over the certs contained in the PFX
cert = CkCertW_Create();
numCerts = CkPfxW_getNumCerts(pfx);
i = 0;
while (i < numCerts) {
CkPfxW_CertAt(pfx,i,cert);
wprintf(L"--- %d ---\n",i);
wprintf(L"%s\n",CkCertW_subjectDN(cert));
// Is this a root cert, or self-signed?
wprintf(L"Root: %d\n",CkCertW_getIsRoot(cert));
wprintf(L"Self-Signed: %d\n",CkCertW_getSelfSigned(cert));
// If this certificate is not the root (self-signed), then get the issuer.
// If the issuing certificate is contained in the PFX, then it will be found here..
if (CkCertW_getSelfSigned(cert) != TRUE) {
issuer = CkCertW_FindIssuer(cert);
if (CkCertW_getLastMethodSuccess(cert) == FALSE) {
wprintf(L"Issuer not found.\n");
}
else {
wprintf(L"Issuer: %s\n",CkCertW_subjectDN(issuer));
CkCertW_Dispose(issuer);
}
}
i = i + 1;
}
// Usually, the user certificate is at index 0, its issuer is at index 1, etc. until we get to the root certificate.
CkPfxW_Dispose(pfx);
CkCertW_Dispose(cert);
}