Export P7b file with all the certificate chain into CER file

certificate openssl x509certificate

I have p7b file provided by Thwate.When I am trying to export the certificate in the cer file using the below command, the certificate chain is not included.
Please suggest how to do the same. This CER is required for the importing into the weblogic key store.

openssl pkcs7 -print_certs -in certificate.p7b -out certificate.cer

Solution 1:

-print_certs is the option you want to use to list all of the certificates in the p7b file, you may need to specify the format of the p7b file you are reading.

You can then redirect the output to a new file to build the concatenated list of certificates.

Open the file in a text editor, you will either see Base64 (PEM) or binary data (DER).

openssl pkcs7 -inform DER -outform PEM -in certificate.p7b -print_certs > certificate_bundle.cer

http://www.openssl.org/docs/apps/pkcs7.html

Solution 2:

The selected answer didn't work for me, but it's close. I found a tutorial that worked for me and the certificate I obtained from StartCom.

  1. Open the .p7b in a text editor.

  2. Change the leader and trailer so the file looks similar to this:

    -----BEGIN PKCS7-----
[... certificate content here ...]
-----END PKCS7-----

For example, my StartCom certificate began with: 

    -----BEGIN CERTIFICATE-----

and ended with: 

    -----END CERTIFICATE-----
  1. Save and close the .p7b.

  2. Run the following OpenSSL command (works on Ubuntu 14.04.4, as of this writing):

    openssl pkcs7 -print_certs –in pkcs7.p7b -out pem.cer

The output is a .cer with the certificate chain.

Reference: http://www.freetutorialssubmit.com/extract-certificates-from-P7B/2206

Solution 3:

The only problem is that any additional certificates in resulted file will not be recognized, as tools don't expect more than one certificate per PEM/DER encoded file. Even openssl itself. Try

openssl x509 -outform DER -in certificate.cer | openssl x509 -inform DER -outform PEM

and see for yourself.

Solution 4:

If you add -chain to your command line, it will export any chained certificates.

http://www.openssl.org/docs/apps/pkcs12.html

Related

JS map return object
How to detect if front camera is available in android?
I want to display a popup message of date contains in text file
Close polygons using linestrings and selection of polygons created by area
Sign text color: Can't enter the § symbol
I've accidentally set too much TNT explosions and destroyed my hard worked on builds, what do I do to reverse the damage quicker?
What does it mean when I hear giant gates and chains while mining?
How do I lock any doors in minecraft using command blocks?
How do I give players a potion effect when they reach a certain XP level?
How to map certain Kega Fusion functions to a gamepad?
Kega Fusion not quitting on "Escape" when launched with -fullscreen
How Do I Get The Zombie Loadout?