With the procedure EXPORT.PKCS12 you can export from a PKCS#12/PFX file the therein contained, normally password secured, private key and the related X.509 certificate. EXPORT.PKCS12 has three call parameters:

Parameters for specification of input and ouput files

The parameters PKCS12, KEY and CERT specify the PKCS#12/PFX input file and the output files into which the private key and the related certificate are stored.

PKCS12

This parameter specifies the PKCS#12/PFX file containing the private key and a related X.509 certificate. As it has binary content it should be available as a PAM file.

KEY

This parameter specifies the file, into which the private key is stored unencrypted.

CERT

This parameter specifies the file, into which the X.509 certificate is stored.

Procedure run

After the call the procedure operates as following:

1. The password used for encrypting the private key in the PKCS#12/PFX file is requested.
2. The PKCS#12 file is read, the private key is stored unsecured in the file named with the KEY parameter and the certificate is stored in the file named with the CERT parameter. PEM is used as filing format for both files. Besides that the output files contain also meta data from the PKCS#12 file.

Example

A recording of a procedure run is shown subsequently. The user input is emphasized with bold face.