Feature: display HPKP hashes

hlandau / acmetool

:lock: acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt)

https://hlandau.github.io/acmetool/

2.05k stars 129 forks source link

Feature: display HPKP hashes #160

Open kravietz opened 8 years ago

kravietz commented 8 years ago

It would be very useful if acmetool could calculate and display certificate hash for use with HTTP Public Key Pinning, per RFC 5469, which is equivalent to these commands:

openssl x509 -noout -in certificate.pem -pubkey |  openssl asn1parse -noout -inform pem -out public.key
openssl dgst -sha256 -binary public.key | openssl enc -base64

abeluck commented 6 years ago

This would be very useful.

And a related feature would be to output the public key portion to disk too (the first command in @kravietz 's comment)