Knowledge Base

Some signing applications are designed to use a code signing certificate in the PFX or P12 format.

Exporting a code signing certificate is only possible if all of the following conditions are met:

1. Your code signing certificate was issued prior to the 1st of June, 2023.

2. The certificate and private key reside in the Certificate Store of your signing machine.

3. The private key is exportable.

If your code signing certificate meets the conditions above and the machine that the certificate was imported to is a Windows machine, you can export the certificate and private key using the Microsoft Management Console (MMC) using this guide: Exporting a .pfx using MMC

If your code signing certificate is stored on a USB token, Hardware Security Module (HSM) or using DigiCert KeyLocker, it will not be possible to convert the certificate to or export it as a PFX or P12 file.

The private key for code signing certificates issued on or after the 1st of June 2023 must be stored on a secured storage device in order to meet CA/Browser Forum requirements. More information on the requirements can be found here: New private key storage requirement for Code Signing certificates

If you are not sure where your certificate is located, please contact support.