EDGE Toolkit Technical Guideline
PKI (Public Key Infrastructure)
Generate CA Key Pair
edgetk -pkey keygen -bits 1024 -prv "CA_Priv.pem" -pass nil -pub "CA_Public.pem"
CA key pair generated successfully:
Private key saved to: albanese.atwebpages.com/directrix/CA_Priv.pem
Public key saved to: albanese.atwebpages.com/directrix/CA_Public.pem
Fingerprint: +TBgRVEFQ8bWFl6zO+o5sdm3wRd+ny6sbQOIpncfZME=
RSA (1024-bit)
+-----------------+
| +^/^^^^^^^^^^|
| .+E@&#^^^^^^^^|
| .oXoOO^=@/^^^|
| +.+.@.=OB*@o|
| o S.X= +=. |
| . *+ + o |
| o |
| |
| |
+-----------------+
Generate Self-Signed CA Certificate
edgetk -pkey certgen -key CA_Priv.pem -cert CA_Cert.pem -subj "/CN=Alice/OU=/O=/ST=/L=/C=/emailAddress=alice@test.com" -days 365
Self-signed CA certificate generated successfully:
Raw Content of CA_Cert.pem
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Certificate Content: CA_Cert.pem
edgetk -pkey text -cert CA_Cert.pem
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 785851202863346630379819081479595667757804437138 (0x89a6c963e1c4c1f4cc84d602324916c023d23e92)
Signature Algorithm: SHA256-RSA
Issuer: C=,ST=,L=,STREET=,POSTALCODE=,O=,OU=,CN=Alice
Validity
Not Before: Apr 6 21:11:52 2025 UTC
Not After : Apr 6 21:11:52 2026 UTC
Subject: C=,ST=,L=,STREET=,POSTALCODE=,O=,OU=,CN=Alice
Subject Public Key Info:
Public Key Algorithm: RSA
Public-Key: (1024 bit)
Modulus:
a9:8d:4f:1d:af:c2:2f:c6:d2:c8:ba:61:ca:c7:2d:
ed:f1:70:e2:60:ef:ad:04:85:8e:1c:6d:6c:c8:8a:
5b:82:f6:b1:be:46:af:13:09:69:9a:90:be:81:88:
b0:46:c1:5a:7d:a5:80:88:dc:c5:f0:e9:ba:61:1c:
4f:e2:02:a5:27:83:e1:64:05:67:a2:b3:8a:c9:e1:
cc:4f:bb:02:5d:a1:26:db:76:10:ea:b3:ed:11:8c:
b6:60:8d:ca:8d:95:58:bb:af:91:c7:b3:5c:05:1d:
35:ca:30:6c:37:e7:83:05:94:3d:d7:67:3d:fc:cb:
05:52:ea:c9:74:1b:7e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Content Commitment, Key Encipherment, Data Encipherment, Key Agreement, Certificate Sign, CRL Sign
X509v3 Extended Key Usage:
Client Authentication, Server Authentication
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
BE:CD:D5:05:03:1A:DB:30:56:F7:92:B1:BD:FC:C2:07:33:CD:9A:09
X509v3 Subject Alternative Name:
email:alice@test.com
Signature Algorithm: SHA256-RSA
64:68:74:10:9b:a4:2e:7d:9e:ce:cc:b3:34:62:5d:e8:a4:dd:
64:4d:55:fd:01:3e:b5:00:2e:f1:7b:e4:dd:da:3e:98:93:02:
06:7e:43:9c:5c:79:5e:c2:4d:79:da:88:51:aa:2a:1f:34:1c:
fb:83:bd:0c:46:c7:45:b7:ba:4c:6c:bb:94:83:37:d1:dc:e7:
bb:1f:fe:f1:ef:e9:9f:d6:04:fd:8a:57:10:ae:b3:fa:99:db:
fb:80:20:13:65:23:a9:1b:ac:4b:16:8d:38:e2:d5:c7:98:70:
7a:25:be:a4:e7:0e:e9:4b:1c:2b:f7:42:0b:99:4b:85:40:31:
91:c2
IsValid: trueGenerate Asymmetric Key Pair (2048 bits)
edgetk -pkey keygen -bits 1024 -prv "Private.pem" -pass nil -pub "Public.pem"
Key pair generated successfully:
Private key saved to: albanese.atwebpages.com/directrix/Private.pem
Public key saved to: albanese.atwebpages.com/directrix/Public.pem
Fingerprint: G9cEKmiROt+SCbu89O/i/AXxc1RbsvGzno7gaywFLHw=
RSA (1024-bit)
+-----------------+
| +%&^^^^^^^^^^|
| .oEOO%^^^^^^^^|
| .oo+oB/O*^^^^|
| ... B ./%^^#|
| . S B O+X.+|
| . * o O o |
| * + o|
| . + o.|
| .. |
+-----------------+
Private Key Details
edgetk -pkey text -key "Private.pem"
Private key details:
-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----
RSA Private-Key: (1024-bit)
Modulus (N):
00:a6:d0:7f:5b:b9:60:69:ee:27:24:26:ef:89:3b:
04:0c:36:4e:9c:83:d1:92:49:01:68:77:f9:d8:6f:
3a:3e:5c:d2:8e:ba:98:5e:33:48:69:1b:3d:e3:02:
3a:4c:94:8c:44:91:da:9a:26:84:94:e6:37:bb:f0:
43:8b:65:b0:ab:14:5a:cf:00:92:f1:45:4d:06:75:
e3:db:53:6f:ec:c7:b0:62:18:ee:1f:8e:c0:bb:95:
0f:4a:ad:a9:b6:cf:14:31:da:61:7e:3e:47:fa:43:
14:18:3d:52:30:02:2f:58:2f:25:1c:a0:e0:82:16:
8a:b7:75:bd:40:35:f2:e7:9b
Public Exponent (E): 65537 (0x10001)
Private Exponent (D):
31:c1:00:2b:80:78:04:40:57:06:4e:62:a5:80:a7:
ad:68:c9:3b:9f:89:73:63:38:fb:4a:c5:87:4b:6d:
88:ca:30:b7:07:6a:88:b6:2d:03:c4:6f:49:f5:11:
24:64:2e:0e:09:9e:b4:d9:86:33:cf:12:92:88:8f:
ec:d4:d0:c3:4a:86:c1:51:a1:f2:39:41:bf:17:cc:
31:55:3f:83:a4:e0:8a:b1:28:7f:53:bd:79:c4:2d:
9f:eb:78:e9:78:f4:71:ad:10:16:52:80:1d:6d:39:
16:c1:18:69:fa:7c:0e:6c:ad:0f:5a:33:0e:e4:0a:
11:f7:d5:8c:53:e7:41:81
Prime 1 (P):
c0:db:59:c4:30:cf:b5:67:60:a4:cc:c5:a7:20:23:
8a:21:6e:bd:16:59:1d:93:e8:a5:74:93:a1:d3:57:
96:d7:1a:3b:70:16:2f:64:1b:7f:e8:b2:4d:3a:e4:
a1:bf:52:29:64:c7:02:08:5e:0e:f6:d5:ae:ee:50:
01:c0:6f:41
Prime 2 (Q):
dd:6e:5b:13:a9:93:3c:fe:e8:14:20:cc:f7:c6:c8:
97:f6:49:eb:1a:c2:13:ea:a0:7e:03:18:0d:41:08:
1d:9d:40:ac:14:ff:83:5a:51:2e:ec:02:c1:2d:37:
9d:7e:60:ee:03:8b:c8:e7:c3:8b:9e:55:3c:e1:81:
d8:7f:fb:db
Exponent 1 (D mod (P-1)):
b4:7d:d5:b2:46:98:6e:47:14:ec:c7:74:88:28:0c:
fa:de:b5:3c:24:29:3d:04:4b:6c:66:01:31:27:91:
46:eb:83:72:73:41:60:13:09:a5:99:0b:1e:3a:6a:
f5:72:10:1c:0b:64:30:e3:d1:db:a1:69:74:f1:36:
51:9d:5e:c1
Exponent 2 (D mod (Q-1)):
3f:32:ed:19:ba:8f:84:9c:38:7e:ee:31:b2:12:71:
54:35:fe:38:f5:05:29:8c:10:cc:86:73:89:ec:e2:
b5:19:19:c9:43:a0:fd:cb:7c:5a:49:10:2c:34:8c:
a8:0d:d6:fa:77:d6:a0:bb:cd:6a:ff:00:d3:04:85:
fb:d5:e3:7b
Coefficient (Q^-1 mod P):
4f:0d:ea:8c:b6:44:05:27:03:93:ca:7f:6d:3f:84:
a0:ed:04:0a:69:ed:99:5c:7e:9a:fc:ae:4d:3e:b5:
8d:5c:b7:a6:94:8c:a0:57:09:56:33:a9:1d:cc:31:
af:05:95:d0:53:8b:20:1d:53:d9:81:5e:22:ca:eb:
4b:f2:ab:71
KeyID: 5164061b1d9acd1013d508c3ce6ebb11b9f4dd5dPublic Key Details
edgetk -pkey text -key "Public.pem"
Public key details:
-----BEGIN PUBLIC KEY-----
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCm0H9buWBp7ickJu+JOwQMNk6c
g9GSSQFod/nYbzo+XNKOupheM0hpGz3jAjpMlIxEkdqaJoSU5je78EOLZbCrFFrP
AJLxRU0GdePbU2/sx7BiGO4fjsC7lQ9Kram2zxQx2mF+Pkf6QxQYPVIwAi9YLyUc
oOCCFoq3db1ANfLnmwIDAQAB
-----END PUBLIC KEY-----
RSA Public-Key: (1024-bit)
Modulus:
00:a6:d0:7f:5b:b9:60:69:ee:27:24:26:ef:89:3b:
04:0c:36:4e:9c:83:d1:92:49:01:68:77:f9:d8:6f:
3a:3e:5c:d2:8e:ba:98:5e:33:48:69:1b:3d:e3:02:
3a:4c:94:8c:44:91:da:9a:26:84:94:e6:37:bb:f0:
43:8b:65:b0:ab:14:5a:cf:00:92:f1:45:4d:06:75:
e3:db:53:6f:ec:c7:b0:62:18:ee:1f:8e:c0:bb:95:
0f:4a:ad:a9:b6:cf:14:31:da:61:7e:3e:47:fa:43:
14:18:3d:52:30:02:2f:58:2f:25:1c:a0:e0:82:16:
8a:b7:75:bd:40:35:f2:e7:9b
Exponent: 65537 (0x10001)Generate Certificate Signing Request (CSR)
edgetk -pkey req -key Private.pem -cert "Cert.csr" -subj "/CN=Bob/OU=/O=/ST=/L=/C=/emailAddress=bob@test.com"
Certificate Signing Request generated successfully:
Raw Content of Cert.csr
-----BEGIN CERTIFICATE REQUEST-----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-----END CERTIFICATE REQUEST-----
Certificate Content: Cert.csr
edgetk -pkey text -cert Cert.csr
Certificate Request:
Data:
Version: 0 (0x0)
Subject: C=,ST=,L=,STREET=,POSTALCODE=,O=,OU=,CN=Bob,emailAddress=bob@test.com
Subject Public Key Info:
Public Key Algorithm: RSA
Public-Key: (1024 bit)
Modulus:
a6:d0:7f:5b:b9:60:69:ee:27:24:26:ef:89:3b:04:
0c:36:4e:9c:83:d1:92:49:01:68:77:f9:d8:6f:3a:
3e:5c:d2:8e:ba:98:5e:33:48:69:1b:3d:e3:02:3a:
4c:94:8c:44:91:da:9a:26:84:94:e6:37:bb:f0:43:
8b:65:b0:ab:14:5a:cf:00:92:f1:45:4d:06:75:e3:
db:53:6f:ec:c7:b0:62:18:ee:1f:8e:c0:bb:95:0f:
4a:ad:a9:b6:cf:14:31:da:61:7e:3e:47:fa:43:14:
18:3d:52:30:02:2f:58:2f:25:1c:a0:e0:82:16:8a:
b7:75:bd:40:35:f2:e7:9b
Exponent: 65537 (0x10001)
Requested Extensions:
X509v3 Subject Alternative Name:
email:bob@test.com
Signature Algorithm: SHA256-RSA
6a:f6:da:f4:1b:bd:db:ca:ff:50:ac:86:91:2d:4c:22:50:ad:
9d:a7:b8:66:b1:af:6b:13:e6:e2:9f:9b:1a:6d:19:a8:b9:c0:
d1:45:32:8b:76:3d:d7:f6:dd:91:9a:b3:a4:d7:9c:7b:34:9b:
93:5f:26:b5:a6:0e:13:d4:b1:38:c9:fa:eb:79:9b:cc:bc:0a:
c1:72:13:ec:b1:c0:c6:c8:61:1b:d2:0c:67:df:c2:86:5c:24:
28:ee:69:40:ad:4c:b0:4f:ee:9f:ac:ae:ca:bf:4c:83:f8:79:
7b:14:3d:4e:97:c7:65:c4:df:c5:d9:b7:0e:6e:fc:29:1e:49:
a8:d7Sign CSR
edgetk -pkey x509 -root CA_Cert.pem -key CA_Priv.pem -days 365 -cert Cert.csr CERTIFICATE.crt
Certificate generated successfully:
Raw Content of CERTIFICATE.crt
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Certificate Content: CERTIFICATE.crt
edgetk -pkey text -cert CERTIFICATE.crt
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1228856804597766987048945317449946753202441229909 (0xd73fd84b6f7d5f75bf42beb31821d71e54fd1655)
Signature Algorithm: SHA256-RSA
Issuer: C=,ST=,L=,STREET=,POSTALCODE=,O=,OU=,CN=Alice
Validity
Not Before: Apr 6 21:11:52 2025 UTC
Not After : Apr 6 21:11:52 2026 UTC
Subject: C=,ST=,L=,STREET=,POSTALCODE=,O=,OU=,CN=Bob
Subject Public Key Info:
Public Key Algorithm: RSA
Public-Key: (1024 bit)
Modulus:
a6:d0:7f:5b:b9:60:69:ee:27:24:26:ef:89:3b:04:
0c:36:4e:9c:83:d1:92:49:01:68:77:f9:d8:6f:3a:
3e:5c:d2:8e:ba:98:5e:33:48:69:1b:3d:e3:02:3a:
4c:94:8c:44:91:da:9a:26:84:94:e6:37:bb:f0:43:
8b:65:b0:ab:14:5a:cf:00:92:f1:45:4d:06:75:e3:
db:53:6f:ec:c7:b0:62:18:ee:1f:8e:c0:bb:95:0f:
4a:ad:a9:b6:cf:14:31:da:61:7e:3e:47:fa:43:14:
18:3d:52:30:02:2f:58:2f:25:1c:a0:e0:82:16:8a:
b7:75:bd:40:35:f2:e7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
Client Authentication, Server Authentication
X509v3 Subject Key Identifier:
51:64:06:1B:1D:9A:CD:10:13:D5:08:C3:CE:6E:BB:11:B9:F4:DD:5D
X509v3 Authority Key Identifier:
keyid:BE:CD:D5:05:03:1A:DB:30:56:F7:92:B1:BD:FC:C2:07:33:CD:9A:09
X509v3 Subject Alternative Name:
email:bob@test.com
Signature Algorithm: SHA256-RSA
09:b1:b3:0e:4f:8e:2e:a1:b9:50:07:56:30:50:70:34:c0:42:
f0:3c:38:dd:93:e7:e5:99:a8:9d:5d:1f:ab:ec:bf:a4:e4:5a:
5b:1f:3a:73:cd:09:e3:31:60:73:05:29:aa:74:12:5c:26:6a:
26:9c:5e:fd:b0:5f:ac:ec:7f:45:b3:2e:f1:3f:dc:cc:49:60:
d0:fe:ee:f0:fc:3f:c5:2b:75:60:64:55:b2:0e:e9:75:83:68:
d9:bb:79:8f:4a:95:f1:22:cc:da:e2:87:ba:b2:7e:db:ed:71:
ff:4e:a5:d2:a2:e0:e7:96:f2:4d:62:7f:e5:2e:09:70:b3:15:
58:58
IsValid: trueVerify Digital Signature of Certificate
edgetk -pkey check -cert CERTIFICATE.crt -key CA_Public.pem
Certificate signature verification status: Valid signature
Verified: true
Digital Signature Generation
edgetk -pkey sign -algorithm rsa -md sha256 -key "Private.pem" "test.txt" > sign.txt
Digital signature generated successfully:
91a280a36989e172edcd46e747a95d7353869f64679403037954dd473a7be97e329824c6832f02022c9ee24686f9c4d0d8d1337de6d61800f3c0a9a0305cfab39cd917f63d1eaa699f10597779775ffecaff21ca89927f37b218f5ca5b23a12df2a0fb2c423b408be72ba490c1bea49aea225653012767fdaad64eeb38394627
Digital Signature Verification
edgetk -pkey verify -algorithm rsa -md sha256 -key "Public.pem" -signature "91a280a36989e172edcd46e747a95d7353869f64679403037954dd473a7be97e329824c6832f02022c9ee24686f9c4d0d8d1337de6d61800f3c0a9a0305cfab39cd917f63d1eaa699f10597779775ffecaff21ca89927f37b218f5ca5b23a12df2a0fb2c423b408be72ba490c1bea49aea225653012767fdaad64eeb38394627" "test.txt"
Signature verified successfully:
Verified: true
Save Certificate and Private Key in PFX Format
edgetk -pkey pkcs12 -key Private.pem -cert CERTIFICATE.crt
Certificate and private key saved successfully in PFX format:
PFX Certificate Passphrase: The certificate has been generated: CERTIFICATE.pfx
Analyze PFX Certificate
edgetk -pkey pkcs12 -cert CERTIFICATE.pfx
PFX certificate analyzed successfully:
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN PUBLIC KEY-----
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCm0H9buWBp7ickJu+JOwQMNk6c
g9GSSQFod/nYbzo+XNKOupheM0hpGz3jAjpMlIxEkdqaJoSU5je78EOLZbCrFFrP
AJLxRU0GdePbU2/sx7BiGO4fjsC7lQ9Kram2zxQx2mF+Pkf6QxQYPVIwAi9YLyUc
oOCCFoq3db1ANfLnmwIDAQAB
-----END PUBLIC KEY-----
Expiry: Monday, 06-Apr-26 21:11:52 UTC
Common Name: Bob
Issuer: CN=Alice,OU=,O=,POSTALCODE=,STREET=,L=,ST=,C=
Subject: CN=Bob,OU=,O=,POSTALCODE=,STREET=,L=,ST=,C=
EmailAddresses: [bob@test.com]
SerialNumber: d73fd84b6f7d5f75bf42beb31821d71e54fd1655
AuthorityKeyId: becdd505031adb3056f792b1bdfcc20733cd9a09
Enter PEM Passphrase: -----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----