The list command is used to display the content of the certificate store. It can be used to display the overall content of all certstore implementations, to display the content of a specific certstore implementation, or to display details about a specific certificate if its label is known.
Listing the content of all certstore implementations
To see all the certificates available on the device, use the command:
certtool -list
The output, depending on the actual certificates present on the device will look similar to:
Store Label: Software certificate store Root5CA is a X509 format which is a Root (CA) type Store Label: Software certificate store SymbianDSACA is a X509 format which is a Root (CA) type Store Label: Software certificate store SymbianRSACA is a X509 format which is a Root (CA) type
Listing the content of a specific certstore implementation
If only the content of a specific certstore implementation is to be retrieved, you can restrict the list command to that implementation using the –store option. Suppose the content of the certstore implementation with index 0 (see the section Working with multiple certstore implementations for details on how to list the available certstore implementations) is to be retrieved, issue the command:
certtool –store 0 –list
Depending on the content of the certstore implementation with index 0, output similar to the following is displayed:
Symbian CertStore Manipulation Tool Copyright (c) 2004-2009 Nokia Corporation and/or its subsidiary(-ies). All rights reserved. Label: TOCSP-Root5-RSA Format: X509 Owner Type: Root (CA) Issuer Name: TOCSP-Root5-RSA Subject Name: TOCSP-Root5-RSA Valid From: 13:52:28 Sun 26th Apr 2009 Valid Until: 13:52:28 Wed 25th Apr 2012 Trusted for Applications: SWInstall
If you try to specify a non-existing certstore implementation an error will occur, as shown:
Symbian CertStore Manipulation Tool Copyright (c) 2004-2009 Nokia Corporation and/or its subsidiary(-ies). All rights reserved. The specified certstore implementation does not exist. Error during list! Error code KErrArgument.
Providing certstore list based on owner type
It is possible to display a list of certificates according to an owner type. To do so, use the following command:
certtool -owner ca -list
The output, depending on the actual certificates present on the device, will look similar to:
Store Label: Software certificate store Version: 1.00 Serial Number: 0 Manufacturer: Nokia Corporation Store Type: Read only Label: Root5CA Format: X509 Owner Type: Root (CA) Issuer Name: Root5-RSA Subject Name: Root5-RSA Valid From 16:34:42 Wed 3rd Mar 2004 Valid Until 16:34:42 Sat 1st Mar 2014 Trusted for Applications: SWInstall Store Label: Software certificate store Version: 1.00 Serial Number: 0 Manufacturer: Nokia Corporation Store Type: Read only Label: SymbianTestDSACA Format: X509 Owner Type: Root (CA) Issuer Name: Nokia - DSA Subject Name: Nokia - DSA Valid From 14:37:11 Sun 18th Apr 2004 Valid Until 14:37:11 Mon 21st Sep 2020 Trusted for Applications: SWInstall SWInstallOCSP Store Label: Software certificate store Version: 1.00 Serial Number: 0 Manufacturer: Nokia Corporation Store Type: Read only Label: SymbianTestRSACA Format: X509 Owner Type: Root (CA) Issuer Name: Nokia - RSA Subject Name: Nokia - RSA Valid From 14:36:14 Sun 18th Apr 2004 Valid Until 14:36:14 Mon 21st Sep 2020 Trusted for Applications: SWInstall SWInstallOCSP
Displaying information about a certificate
It is possible to display information about a specific certificate of which the label is known. To display information about a certificate with label “…”, issue the command:
certtool –list “Limited Liability”
Remember that labels are case sensitive. The output should be similar to:
Symbian CertStore Manipulation Tool Copyright (c) 2004-2009 Nokia Corporation and/or its subsidiary(-ies). All rights reserved. Label: Limited Liability Format: WTLS Owner Type: Root (CA) Issuer Name: Limited Liability Subject Name: Limited Liability Valid From: 15:13:18 Tue 29th Feb 2000 Valid Until: 15:43:18 Sat 29th Feb 2020 Trusted for Applications:
If no certificate in the certstore corresponds to the given label, the following error will occur:
Symbian CertStore Manipulation Tool Copyright (c) 2004-2009 Nokia Corporation and/or its subsidiary(-ies). All rights reserved. Cannot find the specified certificate.
Providing detailed output of a certificate
It is possible to display detailed information about a specific certificate of which the label is known. To do so, use the command:
certtool –list -d
The output, depending on the actual certificates present on the device, will look similar to:
Store Label: Software certificate store Version: 1.00 Serial Number: 0 Manufacturer: Nokia Corporation Store Type: Read only Label: Root5CA Format: X509 Owner Type: Root (CA) Issuer Name: Root5-RSA Subject Name: Root5-RSA Valid From 16:34:42 Wed 3rd Mar 2004 Valid Until 16:34:42 Sat 1st Mar 2014 Trusted for Applications: SWInstall Store Label: Software certificate store Version: 1.00 Serial Number: 0 Manufacturer: Nokia Corporation Store Type: Read only Label: SymbianTestDSACA Format: X509 Owner Type: Root (CA) Issuer Name: Symbian Test - DSA Subject Name: Symbian Test - DSA Valid From 14:37:11 Sun 18th Apr 2004 Valid Until 14:37:11 Mon 21st Sep 2020 Trusted for Applications: SWInstall SWInstallOCSP
Copyright ©2010 Nokia Corporation and/or its subsidiary(-ies).
All rights
reserved. Unless otherwise stated, these materials are provided under the terms of the Eclipse Public License
v1.0.