"keytool -certreq" Command Examples - Certificate Signing Request

Q

How to use the "keytool -certreq" command? I have have created a new pair of public key and private key and want to send the public key to the certificate authority to sign it.

✍: FYIcenter.com

A

Here is an example of using "keytool -certreq" command to generate a Certificate Signing Request (CSR) for the public key stored in the default keystore file:

C:\Users\fyicenter> keytool -certreq
-storepass FYIcenter -alias 2ndkey -file 2nd_cert_req.csr

C:\Users\fyicenter>type 2nd_cert_req.csr
-----BEGIN NEW CERTIFICATE REQUEST-----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-----END NEW CERTIFICATE REQUEST-----

What the "keytool -certreq" command shown above did for you:

Open the default keystore file in your home folder: C:\Users\fyicenter\.keystore.
Read the public key from the "PrivateKeyEntry" entry with alias of "2ndkey" in the keystore.
Put the public key in a Certificate Signing Request (CSR) and save it in a file of "2nd_cert_req.csr".

Note that the CSR file was saved in PEM format (Base64 encoded binary file).

⇒ Java "keytool -printcertreq" Command Options

⇐ Java "keytool -certreq" Command Options

⇑ Managing Certificate Requests with Java Keytool

⇑⇑ Java Keytool: Certificate Management Tool

2012-07-20, 10914👍, 0💬

"keytool -gencert" Command Examples - Sign CSR
How to use the "keytool -gencert" command? I received a CSR (Certificate Signing Request) file and want to sign it with my private key to generate a certificate. Here is an example of using "keytool -gencert" command to sign a CSR (Certificate Signing Request) with a private key C:\Users\fyicenter&a... 2012-07-21, 22937👍, 0💬

"keytool -importcert" Command Examples - Save Certificate to Keystore
How to use the "keytool -importcert" command? I have a certificate downloaded from a Web site and want to save it in a keystore file. Here is an example of using "keytool -exportcert" command to save the www.facebook.com certifcate into the default keystore file: C:\Users\fyicenter> keytool -... 2012-07-20, 21365👍, 0💬

Java "keytool -importcert" Command Options
What options are supported by the "keytool -importcert" command? Java Keytool can be used to save the certificate received from others into a keystore file using the "keytool -importcert" command, which supports the following options: C:\Users\fyicenter> keytool -importcert -help keytool -imp... 2012-07-20, 16029👍, 0💬

Java "keytool -certreq" Command Options
What options are supported by the "keytool -certreq" command? Java Keytool can be used to generate a certificate signing request file using the "keytool -certreq" command. A certificate signing request file contains the owner's public key for the Certificate Authority (CA) to sign it into a certific... 2012-07-20, 13573👍, 0💬

Java "keytool -gencert" Command Options
What options are supported by the "keytool -gencert" command? Java Keytool can be used to sign a CSR (Certificate Signing Request) file using the "keytool -gencert" command, which supports the following options: C:Usersfyicenter> keytool -gencert -help keytool -gencert [OPTION]... Generates c... 2012-07-21, 11462👍, 0💬

"keytool -certreq" Command Examples - Certificate Signing Request
How to use the "keytool -certreq" command? I have have created a new pair of public key and private key and want to send the public key to the certificate authority to sign it. Here is an example of using "keytool -certreq" command to generate a Certificate Signing Request (CSR) for the public key s... 2012-07-20, 10915👍, 0💬

Java "keytool -printcertreq" Command Options
What options are supported by the "keytool -printcertreq" command? Java Keytool can be used to print out owner and public key information from a certificate signing request file using the "keytool -printcertreq" command. The "keytool -printcertreq" command supports the following options: C:\Users\fy... 2020-11-08, 9808👍, 1💬

💬 2016-05-08 Ellyanna: You keep it up now, unsrddtane? Really good to know.

Split Certificate Chain File
How to split a certificate chain file into individual certificate files? I have 2 certificates in a certificate chain file in PEM format. If you have a certificate chain file in PEM format, you can split each certificate out of the chain file using any text editor as shown in this tutorial: Assume t... 2012-07-20, 8943👍, 0💬

Why www.facebook.com Has 2 Certificates
Why www.facebook.com has 2 certificates for their HTTPS Web site? To understand why www.facebook.com has 2 certificates, let's use the "keytool -printcert" command print out owners and issuers of those certificates: C:\Users\fyicenter> keytool -printcert -file facebook.pem Certificate[1]: Own... 2012-07-20, 8809👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.