ndnsec-cert-dump

Synopsis

ndnsec-cert-dump [-h] [-p] [-r [-H host] [-P port]] [-i|-k|-f] name

Description

ndnsec-cert-dump reads a certificate from the Public Info Base (PIB) or from a file, and prints it on the standard output in Base64 encoding.

By default, name is interpreted as a certificate name.

Options

-i, --identity

Interpret name as an identity name. If specified, the certificate to dump is the default certificate of the identity.

-k, --key

Interpret name as a key name. If specified, the certificate to dump is the default certificate of the key.

-f, --file

Interpret name as a path to a file containing the certificate. If name is “-”, the certificate will be read from the standard input.

-p, --pretty

Print the certificate in a human-readable format.

Example

Dump a certificate from PIB to standard output:

$ ndnsec-cert-dump /ndn/test/david/KEY/ksk-1396913058196/ID-CERT/%00%00%01E%3E%9D%A0%DE

Print the NDN testbed root certificate in human-readable format:

$ curl -A ndnsec -fsLS https://named-data.net/ndnsec/ndn-testbed-root.ndncert.x3.base64 | ndnsec-cert-dump -fp -
Certificate Name:
  /ndn/KEY/%EC%F1L%8EQ%23%15%E0/ndn/%FD%00%00%01u%E6%7F2%10
Additional Description:
  fullname: NDN Testbed Root X3
Public Key:
  Key Type: 256-bit EC
  MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEGx+3Y4FvYo1eScIvgD74lQhQdzN4
  zq021dop8t7kGfEpfGdKf2HGpnn4/qoF9iJ1yUZE/7Na8zzO4xT6RpIM0Q==
Validity:
  Not Before: 2020-11-20T16:31:37
  Not After: 2024-12-31T23:59:59
Signature Information:
  Signature Type: SignatureSha256WithEcdsa
  Key Locator: Name=/ndn/KEY/%EC%F1L%8EQ%23%15%E0
  Self-Signed: yes