Name
x509
Synopsis
The x509
command is used to create, examine, and manipulate X.509
certificates. It is a complex command that accepts a large number of
options. We’ve broken the options up into separate
sections based on their function.
General Options
- -in filename
Specify the name of a file from which data will be read. The expected data varies depending on the type of operation being performed, but usually an X.509 certificate is expected. If this option is omitted,
stdinis used by default.- -inform DER|PEM|NET
Specify the format of the input data. If this option is omitted, the default is normally PEM, but may vary depending on the operation being performed.
- -out filename
Specify the name of a file to which data will be written. Output is normally an X.509 certificate. If this option is omitted,
stdoutis used by default.- -outform DER|PEM|NET
Specify the format of the output data. If this option is omitted, the default is normally PEM, but may vary depending on the operation being performed.
- -md2, -md4, -md5, -mdc2, -sha, -sha1, -rmd160, -dss1
Specify the message digest to use for signing. If this option is omitted, the default is to use MD5 for certificates and certificate requests containing RSA keys. For certificates and certificate requests containing DSA keys, DSS1 is always used, regardless of which algorithm is specified on the command line.
Display Options
- -noout
Cause output of the certificate in encoded form to be suppressed.
- -text
Output a human-readable representation ...
Get Network Security with OpenSSL now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
