Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (70)
EC Keys (976)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (3305)
Revoked Certificates (16)
Root CA (85)
RSA Keys (2647)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
Microsoft "certutil -hashfile..." - Certificate Hash Value
How to get the hash value (or thumbprint value) of a certificate? I have the certificate stored in DER (Distinguished Encoding Rules) format.
✍: FYIcenter.com
If you have a certificate saved in a certificate file in DER (binary) format,
you can get the SHA1 hash value of the certificate using
you can use the Microsoft "certutil -hashfile input_file" command
as shown in this tutorial:
C:\fyicenter>\windows\system32\certutil -hashf ile FYIcenter.der SHA1 hash of file FYIcenter.der: 32 c6 b7 33 0f 30 64 41 f9 16 95 0d d5 65 a7 30 9c 50 b9 c2 CertUtil: -hashfile command completed successfully.
You can compare it with the hash value reported by the "certutil -store" command on the same certificate in the certificate store. Both values should match:
C:\fyicenter>\windows\system32\certutil -store -user TestStore 0 TestStore ================ Certificate 0 ================ Serial Number: b3f33360411e2b8045cd75cf9588a23d Issuer: CN=FYIcenter Root CA NotBefore: 7/1/2012 2:34 PM NotAfter: 12/31/2039 6:59 PM Subject: CN=FYIcenter Root CA Signature matches Public Key Root Certificate: Subject matches Issuer Template: Cert Hash(sha1): 32 c6 b7 33 0f 30 64 41 f9 16 95 0d d5 65 a7 30 9c 50 b9 c2 Key Container = JoeSoft Unique container name: 7b90a71bfc56f2582e916a51aed6df9a_e4c0ab3c-2930-4330... Provider = Microsoft Strong Cryptographic Provider Private key is NOT exportable Signature test passed CertUtil: -store command completed successfully.
⇒ Microsoft "certutil" - Certificate Management Tool
⇐ Microsoft "certutil -encode..." - Converte PEM file to DER
2013-04-25, 20501👍, 0💬
Popular Posts:
Why I am getting an error: "CryptoException: Could not save keystore"? when exporting my 4096-bit ke...
Certificate Summary: Subject Common Name (CN): ssl.cdngc.net Issuer Common Name (CN): DigiCert High ...
How to download OpenSSL for Windows? I heard that OpenSSL is a nice free tool to manage keys and cer...
What is a JKS (Java KeyStore) file? I heard that it used to provide CA certificates to Java applicat...
Where are private keys are stored on my Windows system? I want to know where are my private keys cre...