Hi, I'm trying to take out the private key from the pfx file but with no luck, this is what I did: I changed the pfx to pem openssl pkcs12 -in iis.pfx -out iis.pem
then run: openssl rsa -in iis.pem -out iiskey.key -outform NET then open hex editor 1. Find the string : "private-key" in the binary file 2. Trace back until I find this Hex value: "30 82" but this was the start of the file so I just did SAVE AS tmp.bin and then run: openssl rsa -inform NET -in tmp.bin -out key.pem but I got this error: unable to load key 1344:error:0D08C007:asn1 encoding routines:D2I_NETSCAPE_PKEY:expecting an asn1 s equence:./crypto/asn1/n_pkey.c:351:address=45144784 offset=0 1344:error:0D08E08B:asn1 encoding routines:d2i_Netscape_RSA_2:unable to decode r sa private key:./crypto/asn1/n_pkey.c:308: 1344:error:0D08D06F:asn1 encoding routines:d2i_Netscape_RSA:decoding error:./cry pto/asn1/n_pkey.c:10240:address=45219912 offset=17 Please help, Regards, Yuval Domain The Net Technologies Ltd. 6 Weitzman Blvd. Ramat-Hasharon Israel 47211 Tel: 972-3-5474443 Fax: 972-3-5474446 www.DomainTheNet.com �This email message and any attachments hereto are intended only for use by the addressee(s) named above, and may contain legally privileged and/or confidential information. If you are not the intended addressee, you are hereby kindly notified that any dissemination, distribution or copying of this email and any attachments hereto is strictly prohibited. If you have received this email in error, kindly delete it from your computer system, and notify us at the telephone number or email address appearing above. Thank you" ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
