Difference between revisions of "Privacy-Enhanced Mail (.PEM)"

From wikieduonline
Jump to navigation Jump to search
Line 1: Line 1:
[[wikipedia:PEM]] extension for [[X.509]] certificates
+
[[wikipedia:PEM]] extension for [[X.509]] certificates. <code>.pem</code> defined in [[RFCs]] 1421 through 1424, this is a container format that may include just the [[public certificate]] (such as with Apache installs, and CA certificate files [[/etc/ssl/certs/]]), or may include an entire certificate chain including [[public key]], [[private key]] and [[root certificates]]. Confusingly, it may also encode a [[CSR]] (e.g. as used here) as the [[PKCS10]] format can be translated into PEM. The name is from Privacy Enhanced Mail (PEM), a failed method for secure email but the container format it used lives on, and is a base64 translation of the x509 ASN.1 keys.<ref>https://serverfault.com/questions/9708/what-is-a-pem-file-and-how-does-it-differ-from-other-openssl-generated-key-file </ref>
 
 
pem - Defined in [[RFCs]] 1421 through 1424, this is a container format that may include just the [[public certificate]] (such as with Apache installs, and CA certificate files [[/etc/ssl/certs/]]), or may include an entire certificate chain including [[public key]], [[private key]] and [[root certificates]]. Confusingly, it may also encode a [[CSR]] (e.g. as used here) as the [[PKCS10]] format can be translated into PEM. The name is from Privacy Enhanced Mail (PEM), a failed method for secure email but the container format it used lives on, and is a base64 translation of the x509 ASN.1 keys.<ref>https://serverfault.com/questions/9708/what-is-a-pem-file-and-how-does-it-differ-from-other-openssl-generated-key-file </ref>
 
  
 
PEM or [[DER]] or [[PFX]]
 
PEM or [[DER]] or [[PFX]]

Revision as of 10:27, 20 October 2022

wikipedia:PEM extension for X.509 certificates. .pem defined in RFCs 1421 through 1424, this is a container format that may include just the public certificate (such as with Apache installs, and CA certificate files /etc/ssl/certs/), or may include an entire certificate chain including public key, private key and root certificates. Confusingly, it may also encode a CSR (e.g. as used here) as the PKCS10 format can be translated into PEM. The name is from Privacy Enhanced Mail (PEM), a failed method for secure email but the container format it used lives on, and is a base64 translation of the x509 ASN.1 keys.[1]

PEM or DER or PFX



Read certificate:

Generate certificate:


PKCS7 chain in DER format. These files also may be named with a .p7b extension


file your_pem_file.pem
your_pem_file.pem PEM RSA private key
file example.org.csr
example.org.csr: PEM certificate request
file your_cert_for_development.cer
your_cert_for_development.cer: Certificate, Version=3


Related terms

Activities

See also

  • https://serverfault.com/questions/9708/what-is-a-pem-file-and-how-does-it-differ-from-other-openssl-generated-key-file
  • Advertising: