Sample code for 30+ languages & platforms
Ruby

Convert Cert + Key to PEM and PFX

See more Certificates Examples

This example is based on the following question from a Chilkat customer:

We receive 2 files :

    MyCertificate.p7b
    MyCertificate-privatekey.pkey

We have to transform these certificate like this:

First convert it to PEM like this:

openssl pkcs7 -in MyCertificate.p7b -inform DER -out MyCertificate.pem -print_certs

Now we get MyCertificate.pem

Last step, we need to convert it to pfx file:

openssl pkcs12 -export -inkey moncertificat-privatekey.pkey  -in  moncertificat.pem -out moncertificat.pfx

Is there a way to make all these steps with Chilkat ?

I will be nice to include this directly in our software instead of askig the user to do it manualy.

Chilkat Ruby Downloads

Ruby
require 'chilkat'

success = false

cert = Chilkat::CkCert.new()
privKey = Chilkat::CkPrivateKey.new()

# Load any type of certificate (.cer, .p7b, .pem, etc.) by calling LoadFromFile.
success = cert.LoadFromFile("qa_data/certs/sample_cert_a.cer")
if (success != true)
    print cert.lastErrorText() + "\n";
    exit
end

# Load the private key.
# (The various privKey methods that load from a file will automatically detect
# the format.  It doesn't actually matter if you try to load a non-PKCS8 format private key
# by calling LoadPkcs8EncryptedFile -- internally Chilkat will detect the format and will load
# based on what it finds.)
success = privKey.LoadPkcs8EncryptedFile("qa_data/certs/sample_key_a.pkcs8","password")
if (success != true)
    print privKey.lastErrorText() + "\n";
    exit
end

# Write the cert as PEM.
success = cert.ExportCertPemFile("qa_output/cert.pem")

# Or get the PEM string directly...
print cert.exportCertPem() + "\n";

# Associate the private key with the cert object.
success = cert.SetPrivateKey(privKey)
if (success != true)
    print cert.lastErrorText() + "\n";
    exit
end

# Write the cert + private key to a .pfx file.
success = cert.ExportToPfxFile("qa_data/myPfx.pfx","password",true)
if (success != true)
    print cert.lastErrorText() + "\n";
    exit
end

print "Success." + "\n";