Universal Certificate 7.4.x Quick Reference Guide
Usage
ucert CMD [OPTIONS...]
Format
There is a long form and, for most options, a short form available for specifying each option on the command line. The long form is not case-sensitive; the short form is case-sensitive.
Options must be prefixed with a dash ( - ) character. If an option value is specified, the option and its value must be separated by at least one space.
CMD {-create | -revoke | -print | -verify | -help | -version}
Long Form | Short Form | Description |
---|---|---|
-create object | -c object | Universal Certificate is to create a certificate, certificate request, certificate revocation list (CRL), or transport file. |
-revoke object | n/a | Universal Certificate is to revoke a certificate. |
-print object | -p object | Universal Certificate is to print a certificate, certificate request, certificate revocation list (CRL), or transport file. |
-verify object | n/a | Universal Certificate is to verify a certificate. |
-help | -h | Writes a description of the command line options and their format. |
-version | -v | Writes the program version and copyright information. |
OPTIONS [-ca] [-ca_cert] [-ca_cert_file] [-cert_db] [-cert_file] [-cert_format] [-codepage] [-common_name] [-country] [-crl_file] [-crl_format] [-dns_name] [-elliptic_curve] [-email_address] [-encryptedfile] [-file] [-ip_address] [-key] [-key_size] [-level] [-locality] [-next_update_days] [-next_update_hours] [-nls] [-not_after_date] [-not_before_date] [-organization] [-organizational_unit] [-private_key_file] [-private_key_format] [-private_key_infile] [-private_key_pwd] [-private_key_type] [-request_file] [-request_format] [-revoke_reason] [-serial_number] [-state] [-transport_file] [-transport_file_pwd]
Long Form | Short Form | Description |
---|---|---|
-ca option | n/a | Specification for whether or not the certificate should be marked as a Certificate Authority certificate. |
-ca_cert format | -A format | Format of the CA certificate file specified by -ca_cert_file. |
-ca_cert_file file | -a file | File from which the CA certificate is read or file to which the CA certificate is written. |
-cert_db file | n/a | Name of the certificate database. |
-cert_file file | -d file | File from which the certificate is read or file to which the certificate is written. |
-cert_format format | -D format | Format of the certificate file specified by -cert_file. |
-codepage codepage | -t codepage | Character code page used to translate text data. |
-common_name name | n/a | Common name of the subject field of a certificate. |
-country name | n/a | Country name of the subject field of a certificate. |
-crl_file file | n/a | File to which the Certificate Revocation List (CRL) is written. |
-crl_format format | n/a | Format of the CRL file specified by -crl_file. |
-dns_name name | n/a | Domain Name System (DNS) name of the computer system identified by the certificate. |
-elliptic_curve name | -S name | Name of the Elliptic Curve used to generate the EC keys upon a certificate request. |
-email_address name | n/a | E-mail address of the entity identified by the certificate. |
-encryptedfile filename | -x filename | Name of an encrypted command file. |
-file filename | -f filename | Name of a plain text command file. |
-ip_address name | n/a | Internet Protocol (IP) addresss of he computer system identified by the certificate. |
-key key | -K key | Key used to encrypt the command file. |
-key_size size | -s size | Key size of the RSA public / private keys. |
-level level | -l level | Level of messages to write. |
-locality name | n/a | Locality name of the subject field of a certificate. |
-next_update_days days | n/a | Number of days to the next CRL update. |
-next_update_hours hours | n/a | Number of hours to the next CRL update. |
-nls_directory | n/a | Name of the directory where the code page UTT files are located. |
-not_after_date date | n/a | Last day for which the certificate is considered valid. |
-not_before_date date | n/a | First day for which the certificate is considered valid. |
-organization name | n/a | Organization name of the subject field of a certificate. |
-organizational_unit name | n/a | Organization unit name of the subject field of a certificate. |
-private_key_file file | -e file | File from which the RSA private key is read or file to which the RSA private key is read. |
-private_key_format format | -E format | Format of the private key file specified by -private_key_file. |
-private_key_infile file | -i file | File from which an RSA private key is read. |
-private_key_pwd password | -w password | Private key password that is used to read and write the private key file specified by -private_key_file. |
-private_key_type type | -y type | Type of private key to generate during the certificate request process. |
-request_file file | -r file | File from which the certificate request is read or file to which the certificate request is written. |
-request_format format | -R format | Format of the certificate request file specified by -request_file. |
-revoke_reason reason | n/a | Reason that a certificate is being revoked. |
-serial_number number | n/a | Unique serial number to be assigned to the created certificate. |
-state name | n/a | State name of the subject field of a certificate. |
-transport_file file | n/a | File from which the certificate and private key is read or file to which the certificate and private key is written. |
-transport_file_pwd password | n/a | Password used to protect the transport file specified by -transport_file. |
Create a Certificate Request
-create request -request_file [-request_format] -private_key_file [-private_key_format] [-private_key_pwd] [-private_key_type] [-key_size] [-elliptic_curve] [-country] [-state] [-locality] [-organization] [-organizational_unit]
[-common_name] { [-dns_name] | [-ip_address] } [-email_address]
Create a Certificate from a Certificate Request
-create cert -request_file [-request_format] -cert_file [-cert_format] -private_key_file [-private_key_format] -private_key_infile [-private_key_format] [-private_key_pwd]
-ca_cert_file [-ca_cert_format] [-serial_number] [-not_before_date] [-not_after_date] [-ca] [-cert_db]
Create a Certificate from a Transport File
-create cert -transport_file [-transport_file_pwd] -cert_file [-cert_format] [-private_key_file [-private_key_format] ] -private_key_infile [-private_key_format] [-ca_cert_file file [-ca_cert_format] ]
Create a Certificate Revocation List
-create crl -crl_file [-crl_format] -ca_cert_file [-ca_cert_format] -private_key_file [-private_key_format] -private_key_infile [-private_key_format] [-private_key_pwd]
-next_update_days -next_update_hours [-cert_db]
Create a Transport File
-create transport -transport_file [-transport_file_pwd] -cert_file [-cert_format] -private_key_file [-private_key_format] -private_key_infile [-private_key_format]
[-private_key_pwd] [-ca_cert_file [-ca_cert_format] ]
Print a Certificate Request
-print request -request_file [-request_format]
Print a Certificate
-print cert -cert_file [-cert_format]
Print a Certificate Revocation List
-print crl -crl_file [-crl_format]
Print a Transport File
-print transport -transport_file [-transport_file_pwd]
Revoke a Certificate
-revoke cert [-revoke_reason] -cert_file [-cert_format] [-cert_db]
Verify a Certificate
-verify cert -cert_file [-cert_format] -ca_cert_file [-ca_cert_format] [-crl_file [-crl_format] ]