Posted in the newsgroups by Jane Fleming:
If you’re trying to take a PFX file from a commercial source and split
that into unencrypted key and certificate files for use with NT, you
can download OpenSSL and use these commands:
Openssl pkcs12 --in MyDomain.pfx --nocerts --out MyDomainEncrypted.key
Openssl rsa --in MyDomainEncrypted.key --out MyDomain.key
Openssl pkcs12 --in MyDomain.pfx –clcerts -nokeys --out MyDomain.crt
Note: my newsreader (or Jane’s) appeared to mess with the double - in these commands, so you might have to tinker a bit.
More from Bruce:
An old discussion of certificates, and batch files can be found here;
Can’t get the Certificate and RSA key files generated correctly.
Using Trusted Certificate from Go Daddy on my server.