Sample code for 30+ languages & platforms
AutoIt

Export a Certificate's Private Key to Various Formats

See more Certificates Examples

Loads a digital certificate and private key from a PFX file (also known as PKCS#12) and exports the private key to various formats: (1) PKCS8 Encrypted, (2) PKCS8 Encrypted PEM, (3) PKCS8 unencrypted, (4) PKCS8 PEM unencrypted, (5) RSA DER unencrypted, (6) RSA PEM unencrypted, (7) XML.

Chilkat AutoIt Downloads

AutoIt
Local $bSuccess = False

$oCert = ObjCreate("Chilkat.Cert")

; Load from the PFX file
Local $sPfxFilename = "/Users/chilkat/testData/pfx/chilkat_ssl_pwd_is_test.pfx"
Local $sPfxPassword = "test"

; A PFX typically contains certificates in the chain of authentication.
; The Chilkat cert object will choose the certificate w/
; private key farthest from the root authority cert.
; To access all the certificates in a PFX, use the 
; Chilkat certificate store object instead.
$bSuccess = $oCert.LoadPfxFile($sPfxFilename,$sPfxPassword)
If ($bSuccess = False) Then
    ConsoleWrite($oCert.LastErrorText & @CRLF)
    Exit
EndIf

; Get the private key...
$oPrivKey = ObjCreate("Chilkat.PrivateKey")
$bSuccess = $oCert.GetPrivateKey($oPrivKey)
If ($bSuccess = False) Then
    ConsoleWrite($oCert.LastErrorText & @CRLF)
    Exit
EndIf

; Export to various formats:

Local $sPassword = "secret"
Local $sPath

; PKCS8 Encrypted DER
$sPath = "/Users/chilkat/testData/privkeys/chilkat_pkcs8_enc.der"
$bSuccess = $oPrivKey.SavePkcs8EncryptedFile($sPassword,$sPath)
If ($bSuccess = False) Then
    ConsoleWrite($oPrivKey.LastErrorText & @CRLF)
    Exit
EndIf

; PKCS8 Encrypted PEM
$sPath = "/Users/chilkat/testData/privkeys/chilkat_pkcs8_enc.pem"
$bSuccess = $oPrivKey.SavePkcs8EncryptedPemFile($sPassword,$sPath)
If ($bSuccess = False) Then
    ConsoleWrite($oPrivKey.LastErrorText & @CRLF)
    Exit
EndIf

; PKCS8 Unencrypted DER
$sPath = "/Users/chilkat/testData/privkeys/chilkat_pkcs8.der"
$bSuccess = $oPrivKey.SavePkcs8File($sPath)
If ($bSuccess = False) Then
    ConsoleWrite($oPrivKey.LastErrorText & @CRLF)
    Exit
EndIf

; PKCS8 Unencrypted PEM
$sPath = "/Users/chilkat/testData/privkeys/chilkat_pkcs8.pem"
$bSuccess = $oPrivKey.SavePkcs8PemFile($sPath)
If ($bSuccess = False) Then
    ConsoleWrite($oPrivKey.LastErrorText & @CRLF)
    Exit
EndIf

;  RSA DER (unencrypted)
$sPath = "/Users/chilkat/testData/privkeys/chilkat_rsa.der"
$bSuccess = $oPrivKey.SavePkcs1File($sPath)
If ($bSuccess = False) Then
    ConsoleWrite($oPrivKey.LastErrorText & @CRLF)
    Exit
EndIf

; RSA PEM (unencrypted)
$sPath = "/Users/chilkat/testData/privkeys/chilkat_rsa.pem"
$bSuccess = $oPrivKey.SavePemFile($sPath)
If ($bSuccess = False) Then
    ConsoleWrite($oPrivKey.LastErrorText & @CRLF)
    Exit
EndIf

; XML (unencrypted)
$sPath = "/Users/chilkat/testData/privkeys/chilkat.xml"
$bSuccess = $oPrivKey.SaveXmlFile($sPath)
If ($bSuccess = False) Then
    ConsoleWrite($oPrivKey.LastErrorText & @CRLF)
    Exit
EndIf

ConsoleWrite("Private key exported to various formats." & @CRLF)