Universal Certificate 7.4.x Quick Reference Guide

Usage

ucert CMD [OPTIONS...]

Format

There is a long form and, for most options, a short form available for specifying each option on the command line. The long form is not case-sensitive; the short form is case-sensitive.

Options must be prefixed with a dash ( - ) character. If an option value is specified, the option and its value must be separated by at least one space.

CMD {-create | -revoke | -print | -verify | -help | -version}

Long Form

Short Form

Description

-create object

-c object

Universal Certificate is to create a certificate, certificate request, certificate revocation list (CRL), or transport file.

-revoke object

n/a

Universal Certificate is to revoke a certificate.

-print object

-p object

Universal Certificate is to print a certificate, certificate request, certificate revocation list (CRL), or transport file.

-verify object

n/a

Universal Certificate is to verify a certificate.

-help

-h

Writes a description of the command line options and their format.

-version

-v

Writes the program version and copyright information.

OPTIONS [-ca] [-ca_cert] [-ca_cert_file] [-cert_db] [-cert_file] [-cert_format] [-codepage] [-common_name] [-country] [-crl_file] [-crl_format] [-dns_name] [-elliptic_curve] [-email_address] [-encryptedfile] [-file] [-ip_address] [-key] [-key_size] [-level] [-locality] [-next_update_days] [-next_update_hours] [-nls] [-not_after_date] [-not_before_date] [-organization] [-organizational_unit] [-private_key_file] [-private_key_format] [-private_key_infile] [-private_key_pwd] [-private_key_type] [-request_file] [-request_format] [-revoke_reason] [-serial_number] [-state] [-transport_file] [-transport_file_pwd]

Long Form

Short Form

Description

-ca option

n/a

Specification for whether or not the certificate should be marked as a Certificate Authority certificate.

-ca_cert format

-A format

Format of the CA certificate file specified by -ca_cert_file.

-ca_cert_file file

-a file

File from which the CA certificate is read or file to which the CA certificate is written.

-cert_db file

n/a

Name of the certificate database.

-cert_file file

-d file

File from which the certificate is read or file to which the certificate is written.

-cert_format format

-D format

Format of the certificate file specified by -cert_file.

-codepage codepage

-t codepage

Character code page used to translate text data.

-common_name name

n/a

Common name of the subject field of a certificate.

-country name

n/a

Country name of the subject field of a certificate.

-crl_file file

n/a

File to which the Certificate Revocation List (CRL) is written.

-crl_format format

n/a

Format of the CRL file specified by -crl_file.

-dns_name name

n/a

Domain Name System (DNS) name of the computer system identified by the certificate.

-elliptic_curve name

-S name

Name of the Elliptic Curve used to generate the EC keys upon a certificate request. 

-email_address name

n/a

E-mail address of the entity identified by the certificate.

-encryptedfile filename

-x filename

Name of an encrypted command file.

-file filename

-f filename

Name of a plain text command file.

-ip_address name

n/a

Internet Protocol (IP) addresss of he computer system identified by the certificate.

-key key

-K key

Key used to encrypt the command file.

-key_size size

-s size

Key size of the RSA public / private keys.

-level level

-l level

Level of messages to write.

-locality name

n/a

Locality name of the subject field of a certificate.

-next_update_days days

n/a

Number of days to the next CRL update.

-next_update_hours hours

n/a

Number of hours to the next CRL update.

-nls_directory

n/a

Name of the directory where the code page UTT files are located.

-not_after_date date

n/a

Last day for which the certificate is considered valid.

-not_before_date date

n/a

First day for which the certificate is considered valid.

-organization name

n/a

Organization name of the subject field of a certificate.

-organizational_unit name

n/a

Organization unit name of the subject field of a certificate.

-private_key_file file

-e file

File from which the RSA private key is read or file to which the RSA private key is read.

-private_key_format format

-E format

Format of the private key file specified by -private_key_file.

-private_key_infile file

-i file

File from which an RSA private key is read.

-private_key_pwd password

-w password

Private key password that is used to read and write the private key file specified by -private_key_file.

-private_key_type type

-y type

Type of private key to generate during the certificate request process.

-request_file file

-r file

File from which the certificate request is read or file to which the certificate request is written.

-request_format format

-R format

Format of the certificate request file specified by -request_file.

-revoke_reason reason

n/a

Reason that a certificate is being revoked.

-serial_number number

n/a

Unique serial number to be assigned to the created certificate.

-state name

n/a

State name of the subject field of a certificate.

-transport_file file

n/a

File from which the certificate and private key is read or file to which the certificate and private key is written.

-transport_file_pwd password

n/a

Password used to protect the transport file specified by -transport_file.

Create a Certificate Request

-create request -request_file [-request_format] -private_key_file [-private_key_format] [-private_key_pwd] [-private_key_type] [-key_size] [-elliptic_curve] [-country] [-state] [-locality] [-organization] [-organizational_unit]
[-common_name] { [-dns_name] | [-ip_address] } [-email_address]


Create a Certificate from a Certificate Request

-create cert -request_file [-request_format] -cert_file [-cert_format] -private_key_file [-private_key_format] -private_key_infile [-private_key_format] [-private_key_pwd]

-ca_cert_file [-ca_cert_format] [-serial_number] [-not_before_date] [-not_after_date] [-ca] [-cert_db]


Create a Certificate from a Transport File

-create cert -transport_file [-transport_file_pwd] -cert_file [-cert_format] [-private_key_file [-private_key_format] ] -private_key_infile [-private_key_format] [-ca_cert_file file [-ca_cert_format] ]


Create a Certificate Revocation List

-create crl -crl_file [-crl_format] -ca_cert_file [-ca_cert_format] -private_key_file [-private_key_format] -private_key_infile [-private_key_format] [-private_key_pwd]

-next_update_days -next_update_hours [-cert_db]


Create a Transport File

-create transport -transport_file [-transport_file_pwd] -cert_file [-cert_format] -private_key_file [-private_key_format] -private_key_infile [-private_key_format]

[-private_key_pwd] [-ca_cert_file [-ca_cert_format] ]


Print a Certificate Request

-print request -request_file [-request_format]


Print a Certificate

-print cert -cert_file [-cert_format]


Print a Certificate Revocation List

-print crl -crl_file [-crl_format]


Print a Transport File

-print transport -transport_file [-transport_file_pwd]


Revoke a Certificate

-revoke cert [-revoke_reason] -cert_file [-cert_format] [-cert_db]


Verify a Certificate

-verify cert -cert_file [-cert_format] -ca_cert_file [-ca_cert_format] [-crl_file [-crl_format] ]