Mimi, On Fri, Jun 25, 2021 at 08:22:15AM -0400, Mimi Zohar wrote: > On Tue, 2021-05-11 at 14:56 +0300, Vitaly Chikunov wrote: > > Allow to have certificate appended to the private key of `--key' > > specified (PEM) file (for v2 signing) to facilitate reading of keyid > > from the associated cert. This will allow users to have private and > > public key as a single file. There is no check that public key form the > > cert matches associated private key. > > Is this a standard formats for storing the public and private key in > the same file? I am not aware of any standard to keep ASCII armored text x509 cert together with the private key in the same file. But, it's common usage for some web servers, such as NGINX. People commonly suggest doing it in that context: https://stackoverflow.com/questions/991758/how-to-get-pem-file-from-key-and-crt-files "cat server.crt server.key > server.includesprivatekey.pem" "cat server.crt server.key > server.pem" Thanks, > > Mimi
