🟣attest

Generate an attestation certificate for a key pair. Attestation is used to show that an asymmetric key was generated on the YubiKey and therefore doesn’t exist outside the device.

ykman piv keys attest OPTIONS SLOT CERTIFICATE

Options

Description

-h, --help

Show this message and exit.

-F, --format [PEM|DER]

Encoding format. [default: PEM]

Arguments

Description

CERTIFICATE

File to write attestation certificate to. Use '-' to use stdout.

SLOT

PIV slot of the private key.

HELP

Usage: ykman.exe piv keys attest [OPTIONS] SLOT CERTIFICATE

  Generate an attestation certificate for a key pair.

  Attestation is used to show that an asymmetric key was generated on the YubiKey and therefore doesn't exist outside the device.

  SLOT        PIV slot of the private key.
  CERTIFICATE File to write attestation certificate to. Use '-' to use stdout.

Options:
  -F, --format [PEM|DER]  Encoding format.  [default: PEM]
  -h, --help              Show this message and exit.

Previouskeys Nextexport

Last updated 1 year ago