Editing Privacy-Enhanced Mail (.PEM)

Jump to navigation Jump to search

Warning: You are not logged in. Your IP address will be publicly visible if you make any edits. If you log in or create an account, your edits will be attributed to your username, along with other benefits.

The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then save the changes below to finish undoing the edit.

Latest revision Your text
Line 1: Line 1:
[[wikipedia:Privacy-Enhanced Mail]] extension for [[X.509]] certificates. <code>.pem</code> defined in [[RFCs]] 1421 through 1424, this is a container format that may include just the [[public certificate]] (such as with Apache installs, and CA certificate files <code>[[/etc/ssl/certs/]]</code>), or may include an entire certificate chain including [[public key]], [[private key]] and [[root certificates]]. Confusingly, it may also encode a [[CSR]] (e.g. as used here) as the [[PKCS10]] format can be translated into PEM. The name is from Privacy Enhanced Mail (PEM), a failed method for secure email but the container format it used lives on, and is a base64 translation of the x509 ASN.1 keys.<ref>https://serverfault.com/questions/9708/what-is-a-pem-file-and-how-does-it-differ-from-other-openssl-generated-key-file </ref>
+
{{Draft}}
  
PEM or [[DER]] or [[PFX]]
+
PEM or DER or PFX
  
  
* <code>[[ssh-keygen -m PEM]] -t [[rsa]] -f your_new_rsa_key.pem</code>
 
  
* [[Convert from .cer to .pem]]
+
== See also ==
 
+
* {{openSSL}}
 
 
Read [[certificate]]:
 
* <code>[[openssl x509 -in]] certificate.pem -text</code>
 
* <code>[[openssl s_client]] -showcerts -connect YOUR_DOMAIN.COM:443</code>
 
* <code>[[keytool]] -printcert -file certificate.pem</code>
 
 
 
Generate certificate:
 
* <code>[[openssl req]]</code>
 
 
 
 
 
PKCS7 chain in [[DER]] format. These files also may be named with a .p7b extension
 
 
 
* [[OpenSSH 7.8]], (August 2018) Incompatible changes: <code>[[ssh-keygen]]</code> write [[OpenSSH format]] private keys by default instead of using OpenSSL's PEM format.
 
 
 
 
 
[[file]] your_pem_file.pem
 
your_pem_file.pem [[PEM]] RSA private key
 
 
 
file example.org[[.csr]]
 
example.org.csr: PEM [[certificate request]]
 
 
 
file your_cert_for_development.cer
 
your_cert_for_development.cer: Certificate, Version=3
 
 
 
 
 
 
 
== Related terms ==
 
* <code>[[.cer]]</code>
 
* <code>[[.crt]]</code>
 
* [[X.509]]
 
* <code>[[ssh-keygen -m]]</code> and <code>[[openssl req]]</code>
 
* <code>[[.crt]]</code> ([[Core FTP]])
 
* <code>[[.key]]</code> ([[Core FTP]])
 
* [[Let's Encrypt]]: <code>[[certbot certonly]]</code>, <code>[[certbot certificates]]</code>
 
* [[Nginx]] <code>[[ssl_certificate]]</code> directive
 
* <code>[[.pfx]]</code> or <code>[[.p12]]</code>
 
* <code>[[IdentityFile]]</code>
 
 
 
== Activities ==
 
* Read about [[certificate extensions]]: https://knowledge.digicert.com/generalinformation/INFO2824.html
 
  
== See also ==
 
* {{base64}}
 
* {{.pem}}
 
* {{PEM}}
 
* {{CSR}}
 
* {{X.509}}
 
* {{Certificates}}
 
* {{PKCS}}
 
  
  
 
[[Category:Security]]
 
[[Category:Security]]

Please note that all contributions to wikieduonline may be edited, altered, or removed by other contributors. If you do not want your writing to be edited mercilessly, then do not submit it here.
You are also promising us that you wrote this yourself, or copied it from a public domain or similar free resource (see Wikieduonline:Copyrights for details). Do not submit copyrighted work without permission!

Cancel Editing help (opens in new window)

Templates used on this page:

Retrieved from "https://www.wikieduonline.com/wiki/Privacy-Enhanced_Mail_(.PEM)"

Advertising: