Documentation Center

Key Formats

Language Weaver Edge expects the keys to be encoded in specific formats.

  1. Public Key Certificate:X.509 format in PEM encoding
  2. Private Key: It should be in PKCS#1 format, also known as "Traditional OpenSSL format" in PEM encoding
If your keys are in another format (for example .CER or .PFX), you will need to convert them to .pem. The most common tool for converting SSL certificates is OpenSSL.

Useful to know when converting your keys to *.pem format

  • PKCS#1 files normally start with a line that mentions "-----BEGIN RSA PRIVATE KEY-----" which you can check for by opening the file in a text editor.
  • The pfx format uses the PKCS#12 standard and you need to extract the certificate and the private key in PEM format from it:
    • Run the following command to export the private key: openssl pkcs12 -in certname.pfx -nocerts -out key.pem -nodes
    • Run the following command to export the certificate: openssl pkcs12 -in certname.pfx -nokeys -out cert.pem