gsk8capicmd_64
GSKCapiCmd_64 is an IBM GSKIT tool that can be used to manage keys, certificates, and Certificate requests.
Various options can be carried out with this command:
- Create a key database (-create)
- Delete a key database (-delete)
- Change the password of an existing key database (-changepw)
- Stash the password of an existing key database (-stashpw)
- List the supported key databases (-list)
- Convert a key database (-convert)
- Display the expiry date associated with a key database (-expiry)
Refer to the examples below on how to use GSKCapiCmd_64 with key database files:
Example 1: To get a list of certificates in client key database file
sdsva.example.com :tools> gsk8capicmd_64 -cert -list -db clientc.kdb -pw client
Certificates found
* default, - personal, ! trusted, # secret key
! server_cert
*- client_certExample 2: To get details of specific certificate in client key database file
sdsva.example.com :tools> gsk8capicmd_64 -cert -details -db clientc.kdb -pw client -label client_cert
Label : client_cert
Key Size : 2048
Version : X509 V3
Serial : 49f88db0605b6262
Issuer : CN= sdsva.example.com
Subject : CN= sdsva.example.com
Not Before : May 16, 2018 12:08:38 PM GMT+05:30
Not After : May 16, 2022 12:08:38 PM GMT+05:30
Public Key
30 82 01 22 30 0D 06 09 2A 86 48 86 F7 0D 01 01
01 05 00 03 82 01 0F 00 30 82 01 0A 02 82 01 01
00 BA 96 CB 42 82 93 D2 AA C9 0E 1E 1B 99 AD 51
58 AE 09 3E 50 05 3D 74 4E 26 7D BD 61 33 F4 B5
56 0D 37 B9 0F 90 65 F9 F3 08 9E 85 63 C9 F9 7A
33 86 A6 63 0D 5D 4B 96 12 DA DD FE 00 06 34 C3
9E B5 C2 AE 2D 73 8D EF 66 63 11 62 22 C1 31 79
E2 EE 71 87 78 CF 1E 4C 0E C6 CF C1 E5 32 71 5E
99 81 32 7B BC 14 5D 3F B6 4D 8B 10 37 FB 9E A1
FF 18 B2 D9 18 93 7D F5 03 DB F9 2C D1 DA 0A 29
2E 55 93 78 5A EA 51 0C 9A 22 60 D5 FC 5D AF F1
85 67 CB 5F 5B 25 04 C2 9C 7F 20 21 72 CC 57 96
B4 89 F5 B6 B5 46 56 40 9A 3B 9C B1 38 0C B7 14
DD A4 E7 99 9E 81 8D DD 74 5B 2D A2 69 4A 8D D1
9E 65 FF E0 1F EA 91 AD DB 12 3D 90 BB 72 0A E5
AC EF D5 69 EE 10 7D 81 58 31 DA B9 6C 2D 84 00
86 3F D7 04 4C 00 A1 60 05 83 FA 21 46 7C 8B F5
DE 9E 3D F5 27 A9 BD A1 0F 86 AD 04 06 A8 3D D3
3F 02 03 01 00 01
Public Key Type : RSA (1.2.840.113549.1.1.1)
Fingerprint : SHA1 :
3C 54 14 23 EE 8C F8 63 0F A7 34 AF 8B 67 0B F6
0D 7D D8 01
Fingerprint : MD5 :
2C 3E 96 06 51 74 BA 15 D1 BD 65 8C 62 CE 5E 5A
Fingerprint : SHA256 :
BA 48 2A 55 04 7C 14 F7 19 47 26 98 0F 55 B8 3B
0A C0 9F C9 95 9E 4B 79 62 AA 89 75 BC 40 D3 44
Extensions
SubjectKeyIdentifier
keyIdentifier:
51 D4 AD 3A 9C 74 8D 3E E8 A8 AA 1D B3 F9 5C 55
A3 32 F4 57
AuthorityKeyIdentifier
keyIdentifier:
51 D4 AD 3A 9C 74 8D 3E E8 A8 AA 1D B3 F9 5C 55
A3 32 F4 57
authorityIdentifier:
authorityCertSerialNumber:
Signature Algorithm : SHA256WithRSASignature (1.2.840.113549.1.1.11)
Value
5B 78 4D 7F 4E 6E 96 FE 71 44 0D AA A7 82 D7 90
60 F5 A2 AA 3F 91 CB 81 19 EC 83 C5 8B 78 51 9E
2F F7 02 90 20 16 1B BB DE CE FE 49 A0 A3 8A 20
A1 72 34 07 6C 83 24 16 3B 06 2F 78 65 8A A0 28
80 E3 05 32 6A DA DB 8A BA 3F 7E 22 D6 7F 95 A3
9B 99 55 AF 00 DA E2 20 E5 10 FC 18 C0 9F 7A A3
90 4E 9B 71 82 B1 17 02 54 19 3B B0 E6 A6 B2 6A
3E 59 57 CF 39 C8 58 0E 44 47 6F 42 12 72 D3 E6
AC 8A 8A A7 94 05 C3 58 BA 2F F3 3C BA 25 D2 90
B6 08 BA 2D 44 45 D4 14 E1 BB D1 21 AC CE 4E BD
A3 77 11 0B EB 69 53 65 30 D5 AE C7 BE 3D BB 15
58 A5 DE 13 78 A7 AE 6B AA 9A 92 A7 74 ED 13 17
04 A4 B2 6A DF 45 04 CE CA 2D 58 A4 9B 1B D8 03
8C D6 69 E6 3E B5 0C 8A 31 BE 34 B3 AC 72 E0 2C
E7 24 AC 08 23 8C 6F D4 A8 A2 2C 64 39 7A CB 4B
F3 90 61 05 F5 1F DE 0D 39 D2 A3 60 1C D6 3E D6
Trust Status : Enabled