Export-Certificate
Exports a certificate from a certificate store into a file.
Syntax
Default (Default)
Export-Certificate
[-Type <CertType>]
[-NoClobber]
[-Force]
-FilePath <String>
-Cert <Certificate>
[-WhatIf]
[-Confirm]
[<CommonParameters>]
Description
The Export-Certificate cmdlet exports a certificate from a certificate store to a file. The
private key is not included in the export. If more than one certificate is being exported, then the
default file format is SST. Otherwise, the default format is CERT. Use the Type parameter to
change the file format.
Examples
EXAMPLE 1
$cert = Get-ChildItem -Path Cert:\CurrentUser\My\EEDEF61D4FF6EDBAAD538BB08CCAADDC3EE28FF
Export-Certificate -Cert $cert -FilePath C:\Certs\user.sst -Type SST
This example exports a certificate to the file system as a Microsoft serialized certificate store without its private key.
EXAMPLE 2
$cert = Get-ChildItem -Path Cert:\CurrentUser\My\EEDEF61D4FF6EDBAAD538BB08CCAADDC3EE28FF
Export-Certificate -Cert $cert -FilePath C:\Certs\user.cer
This example exports a certificate to the file system as a DER-encoded .cer file without its
private key.
EXAMPLE 3
$cert = Get-ChildItem -Path Cert:\CurrentUser\My\EEDEF61D4FF6EDBAAD538BB08CCAADDC3EE28FF
Export-Certificate -Cert $cert -FilePath C:\Certs\user.p7b -Type p7b
This example exports a certificate to the file system as a PKCS#7-formatted .p7b file without its
private key.
EXAMPLE 4
Get-ChildItem -Path Cert:\CurrentUser\My |
Export-Certificate -FilePath C:\Certs\allcerts.sst -Type SST
This example exports all certificates under the Cert:\CurrentUser\My store into a Microsoft
serialized certificate store allcerts.sst.
Parameters
-Cert
Specifies one or more certificates to be exported to a file. A single certificate object, an array of certificate objects, or a path to one or more certificates in a certificate store can be specified.
Parameter properties
| Type: | Microsoft.CertificateServices.Commands.Certificate |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
(All)
| Position: | Named |
| Mandatory: | True |
| Value from pipeline: | True |
| Value from pipeline by property name: | False |
| Value from remaining arguments: | False |
-Confirm
Prompts you for confirmation before running the cmdlet.
Parameter properties
| Type: | SwitchParameter |
| Default value: | False |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | cf |
Parameter sets
(All)
| Position: | Named |
| Mandatory: | False |
| Value from pipeline: | False |
| Value from pipeline by property name: | False |
| Value from remaining arguments: | False |
-FilePath
Specifies the ___location where the exported certificate will be stored.
Parameter properties
| Type: | String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | FullName |
Parameter sets
(All)
| Position: | Named |
| Mandatory: | True |
| Value from pipeline: | False |
| Value from pipeline by property name: | False |
| Value from remaining arguments: | False |
-Force
Specifies that the exported certificate file will overwrite an existing certificate file, even if it has the Read-only attribute set. The NoClobber parameter takes precedence over this parameter when both are used.
Parameter properties
| Type: | SwitchParameter |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
(All)
| Position: | Named |
| Mandatory: | False |
| Value from pipeline: | False |
| Value from pipeline by property name: | False |
| Value from remaining arguments: | False |
-NoClobber
Prevents an exported certificate file from overwriting an existing certificate file. This parameter takes precedence over the Force parameter, which permits this cmdlet to overwrite an existing certificate file, even if it has the Read-only attribute set.
Parameter properties
| Type: | SwitchParameter |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
(All)
| Position: | Named |
| Mandatory: | False |
| Value from pipeline: | False |
| Value from pipeline by property name: | False |
| Value from remaining arguments: | False |
-Type
Specifies the type of output file for the certificate export as follows.
SST: A Microsoft serialized certificate store (.sst) file format which can contain one or more certificates. This is the default value for multiple certificates.CERT: A.cerfile format which contains a single DER-encoded certificate. This is the default value for one certificate.P7B: A PKCS#7 file format which can contain one or more certificates.
Parameter properties
| Type: | Microsoft.CertificateServices.Commands.CertType |
| Default value: | None |
| Accepted values: | SST, CERT, P7B |
| Supports wildcards: | False |
| DontShow: | False |
Parameter sets
(All)
| Position: | Named |
| Mandatory: | False |
| Value from pipeline: | False |
| Value from pipeline by property name: | False |
| Value from remaining arguments: | False |
-WhatIf
Shows what would happen if the cmdlet runs. The cmdlet is not run.
Parameter properties
| Type: | SwitchParameter |
| Default value: | False |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | wi |
Parameter sets
(All)
| Position: | Named |
| Mandatory: | False |
| Value from pipeline: | False |
| Value from pipeline by property name: | False |
| Value from remaining arguments: | False |
CommonParameters
This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutBuffer, -OutVariable, -PipelineVariable, -ProgressAction, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.
Inputs
X509Certificate2
A Certificate object can be piped into to this cmdlet.
Outputs
FileInfo
The FileInfo object contains the information about the certificate file.