Certificate Management#

Every private key has a certificate associated. The certificates can be read and written. The size of a certificate is limited by the transport layer and about 6kB.

Read Certificate#

Certificates can be read from the Nitrokey per key slot.

The certificate can be retrieved as follows.

nitropy nk3 piv read-certificate --key-slot <key-slot>``

Write Certificate#

Certificates can be written to the Nitrokey per key slot.

nitropy nk3 piv write-certificate --key-slot <key-slot>