Load multiple certificates into PKCS12 with openssl

openssl x509certificate pkcs#12

Mohammad Khodaei · Oct 31, 2013 · Viewed 29.4k times · Source

I am trying to load multiple certificates using openssl into the PKCS12 format. The command is as follows:

openssl pkcs12 -export -in cert1.arm -inkey cert1_private_key.pem -certfile cert2.arm -certfile cert3.arm -certfile RootCert.pem -name "Test" -out test.p12

Having parsed the generated PKCS12 file, only the last certificate has been included into the file:

openssl pkcs12 -in test.p12 -info -nodes

I also tried to import them separately into the pkcs12 file while in all the attempts, only the last certificate was remained in the file.

Any idea where is the problem to solve it?

Answer

First, make sure all your certificates are in PEM format. Then, make a SINGLE file called "certs.pem" containing the rest of the certificates (cert2.arm, cert3.arm, and RootCert.pem).

Then use the command like this:

openssl pkcs12 -export -in cert1.arm -inkey cert1_private_key.pem -certfile certs.pem -name "Test" -out test.p12

The openssl pkcs12 documentation explains the different options.

Load multiple certificates into PKCS12 with openssl

Answer

Related questions