Windows Certifcate Mangement
Jump to navigation
Jump to search
A certificate may contain privatekey. A private key or pkcs12 can only be exported if it is marked exportable unless you hack the registry.
Export & Print
- Click: Search -> Type: Manage Computer Certificates
- Export certificate to .cer (binary)
openssl x509 -noout -text -in intermediate.cer
[ ca ] default_ca = ca_default [ ca_default ] base_dir = $ENV::HOME/.ssh certificate = $base_dir/datapipe-ca.crt copy_extensions = copy database = $base_dir/index.txt default_days = 365 default_md = sha256 new_certs_dir = $base_dir policy = signing_policy private_key = $base_dir/datapipe-ca.key serial = $base_dir/serial.txt unique_subject = no [ signing_policy ] commonName = supplied [ v3_server ] authorityKeyIdentifier=keyid,issuer basicConstraints = critical,CA:FALSE extendedKeyUsage = critical,serverAuth keyUsage = digitalSignature, keyEncipherment subjectKeyIdentifier=hash