p12tool - dogtagpki/pki GitHub Wiki
To display the content of a PKCS #12 file:
$ p12tool -l admin.p12 -W Secret.123 Certificate(has private key): Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption Issuer: "CN=CA Signing Certificate,OU=pki-tomcat,O=EXAMPLE" Validity: Not Before: Fri Nov 05 20:10:40 2021 Not After : Thu Oct 26 20:10:40 2023 Subject: "CN=PKI Administrator,E=caadmin@example.com,OU=pki-tomcat,O= EXAMPLE" Subject Public Key Info: Public Key Algorithm: PKCS #1 RSA Encryption RSA Public Key: Modulus: e4:25:52:99:1a:1e:81:7c:55:c5:e7:04:50:43:7a:7c: 1e:cd:a9:7c:a2:ca:85:66:b2:16:af:70:f6:35:5f:ae: b0:8f:55:ce:f8:c5:30:14:fa:fc:bc:5f:7b:7d:80:f8: 99:0a:1b:64:4e:21:ae:10:f8:64:fc:f5:76:28:84:3b: b5:b4:e2:aa:40:4a:f5:f9:0e:53:d8:b4:20:9c:30:5b: 68:26:27:5c:38:4e:b6:cf:36:e4:26:2e:8d:1e:84:ad: a5:39:72:98:43:84:1b:1f:e4:15:b8:97:cd:f7:88:d0: 02:d7:e0:b1:1a:20:10:0d:04:e1:cf:58:2d:81:f3:39: 09:74:6f:45:51:ab:aa:44:86:b6:f6:76:b8:f5:c2:78: ce:03:f2:91:dc:34:11:fd:51:b3:2d:86:0f:2a:f5:77: a8:57:47:5e:2d:6a:3f:fc:8c:a6:cd:ee:27:d8:78:37: ae:6f:9b:40:62:76:8b:97:ae:96:18:fc:ab:ee:17:2b: 74:86:60:a9:cc:cc:19:17:e1:07:17:69:9a:b8:1b:b9: 8a:ff:23:54:bb:0b:15:db:6c:d5:a7:ef:0f:4c:46:48: 0c:47:7a:6b:c3:01:f3:e7:9f:62:3d:f5:59:7d:87:57: 84:1e:00:aa:2d:49:49:ec:99:ef:a4:1a:17:19:38:0b Exponent: 65537 (0x10001) Signed Extensions: Name: Certificate Authority Key Identifier Key ID: 5a:bb:b5:c8:bd:e3:5a:b4:04:7e:9a:d3:0a:2b:88:67: 27:68:07:6c Name: Authority Information Access Method: PKIX Online Certificate Status Protocol Location: URI: "http://fedora:8080/ca/ocsp" Name: Certificate Key Usage Critical: True Usages: Digital Signature Non-Repudiation Key Encipherment Name: Extended Key Usage TLS Web Client Authentication Certificate E-Mail Protection Certificate Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption Signature: 8e:8e:1a:66:8a:76:bf:e2:eb:0f:86:84:b2:fd:26:29: 92:0e:22:88:7f:40:5c:f9:81:4e:c0:b6:79:56:5f:ba: 3e:06:c0:1f:a1:98:99:ae:6e:23:e2:ab:34:bf:48:ec: 9c:26:fb:3f:f2:f3:8c:e2:08:66:e1:af:b0:18:ba:c2: d7:f0:f9:66:7b:18:21:bb:d2:ff:06:2d:6e:31:6a:e5: 4e:88:ed:fa:e8:b8:5e:14:77:4b:69:78:27:2c:fc:3f: 21:85:48:aa:b9:ea:3b:8d:3c:0b:91:3e:ba:da:fd:78: 97:75:67:93:5c:9f:5e:16:a6:39:e4:23:0c:52:91:0e: 62:f1:b5:2c:0a:f7:94:38:0b:39:ea:ce:af:1a:2d:da: 58:6e:c5:38:68:0a:42:81:d3:24:85:28:d4:21:0a:4a: 4a:b2:73:49:5a:99:1c:58:12:92:f2:b2:cc:3c:b1:5c: 6c:dc:75:81:35:90:df:18:ab:4f:45:66:03:b2:75:87: 45:c7:a4:4b:f2:90:3f:10:7c:bb:9e:ca:b6:5b:d6:89: 64:d8:f1:57:a4:09:20:9d:9a:2d:eb:2e:83:0d:d3:a5: 1a:9d:f9:c7:88:e3:db:68:e4:32:be:6e:5e:eb:61:60: 30:4a:52:3c:31:aa:db:9b:12:39:2a:5c:70:b6:8e:ca Fingerprint (SHA-256): 23:66:62:B6:41:78:7D:61:7A:E1:51:11:C3:C0:E9:E0:80:89:12:E2:4C:86:E5:99:C7:D4:29:2C:11:C0:DF:68 Friendly Name: caadmin Key(shrouded): Friendly Name: caadmin Encryption algorithm: PKCS #5 Password Based Encryption v2 Encryption: KDF: PKCS #5 Password Based Key Dervive Function v2 Parameters: Salt: 1d:dc:20:e5:25:89:4a:cc:a4:b8:01:b7:a0:00:8b:17 Iteration Count: 600000 (0x927c0) Key Length: 16 (0x10) KDF algorithm: HMAC SHA-256 Cipher: AES-128-CBC Args: 04:10:97:11:f5:e9:fb:9b:fb:fb:2f:34:86:87:8d:1c: 6a:2b