Seems to me that you problem is that you didn't supply password. PKCS12 format stores Private + Public key pair encrypted with password.
--- Matthew Hall <[EMAIL PROTECTED]> wrote: > > I'm trying to find out how to take my ca.crt file > (signed > by my own CA self) and convert it to pkcs12 format > for importation > into Mozilla, so that Mozilla will recognize > anything else signed > by me as 'OK'. > > Converting it to DER format was easy: > > openssl x509 -in ca.crt -out ca.der -outform DER > > I'm having issues doing the same with pkcs12, I > found something > that seemed close: > > openssl pkcs12 -export -inkey ca.key -in ca.crt -out > ca.p12 -name > "Angui.sh Certificate Authority" > > But I thought I remember seeing a warning against > doing that since > it may include sensitive information into that file. > And what's with > the Export and Import passwords? What are they > exactly? Am I missing > some other command-line args, or is there a better > way? > > Can someone help? > > Thanks! > > -- > It's always September somewhere on the 'net. | > http://angui.sh > Another proud member of Eep's killfile. | Unix > Sys. Admin. > unreal://angui.sh | > [EMAIL PROTECTED] > > ______________________________________________________________________ > OpenSSL Project > http://www.openssl.org > User Support Mailing List > [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] __________________________________________________ Do you Yahoo!? Yahoo! Mail Plus – Powerful. Affordable. Sign up now. http://mailplus.yahoo.com ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]