Export P7b file with all the certificate chain into CER file

Question

I have p7b file provided by Thwate When I am trying to export the certificate in the cer file using the below command  the certificate chain is not included   Please suggest how to do the same  This CER is required for the importing into the weblogic key store   openssl pkcs7 -print certs -in certificate p7b -out certificate cer

User · Accepted Answer

-print certs is the option you want to use to list all of the certificates in the p7b file  you may need to specify the format of the p7b file you are reading   You can then redirect the output to a new file to build the concatenated list of certificates   Open the file in a text editor  you will either see Base64  PEM  or binary data  DER    openssl pkcs7 -inform DER -outform PEM -in certificate p7b -print certs  gt  certificate bundle cer   http   www openssl org docs apps pkcs7 html

User · Answer

The selected answer didn t work for me  but it s close  I found a tutorial that worked for me and the certificate I obtained from StartCom     Open the  p7b in a text editor   Change the leader and trailer so the file looks similar to this   -----BEGIN PKCS7-----      certificate content here      -----END PKCS7-----    For example  my StartCom certificate began with        -----BEGIN CERTIFICATE-----    and ended with        -----END CERTIFICATE-----     Save and close the  p7b   Run the following OpenSSL command  works on Ubuntu 14 04 4  as of this writing    openssl pkcs7 -print certs    in pkcs7 p7b -out pem cer    The output is a  cer with the certificate chain    Reference  http   www freetutorialssubmit com extract-certificates-from-P7B 2206

User · Answer

I had similar problem extracting certificates from a file  This might not be the most best way to do it but it worked for me   openssl pkcs7 -inform DER -print certs -in  lt path of the file gt    awk  split after  1 n   split after 0   -----END CERTIFICATE-----   split after 1   print  gt   cert  n   pem

User · Answer

The only problem is that any additional certificates in resulted file will not be recognized  as tools don t expect more than one certificate per PEM DER encoded file  Even openssl itself  Try  openssl x509 -outform DER -in certificate cer   openssl x509 -inform DER -outform PEM   and see for yourself

User · Answer

If you add -chain to your command line  it will export any chained certificates   http   www openssl org docs apps pkcs12 html

[openssl] Export P7b file with all the certificate chain into CER file

Examples related to openssl

Examples related to certificate

Examples related to x509certificate