.KEY + .CRT => .PFX / .P12 (.PFX and .P12 use the same PKCS#12 format!) *PositiveSSL*

.key *:
<number>.crt *OR* www_domain_com.crt *:
SectigoRSADomainValidationSecureServerCA.crt *:
USERTrustRSAAddTrustCA.crt *:
Password for PFX *: (Note: special characters like +äöü etc. might cause problems!)
 


.KEY + .CRT + .CA_BUNDLE => .PFX / .P12 (.PFX and .P12 use the same PKCS#12 format!) *PositiveSSL* *RapidSSL*

.key *:
.crt *OR* ServerCertificate.cer *:
.ca_bundle *OR* .ca-bundle *:
Password for PFX *: (Note: special characters like +äöü etc. might cause problems!)
 



Download: OpenSSL binaries

OpenSSL Command Line .P7B + .KEY -> .PFX:
openssl pkcs7 -print_certs -in cert.p7b -out cert.cer
openssl pkcs12 -export -in cert.cer -inkey cert.key -out cert.pfx -certfile CACert.cer


OpenSSL Command Line .CER + .KEY -> .PFX:
openssl pkcs12 -export -in cert.cer -inkey private.key -out cert.pfx -certfile CACert.cer


OpenSSL Command Line .CRT + .KEY + .CA_BUNDLE -> .PFX:
# PositiveSSL:
openssl pkcs12 -export -in cert.crt -inkey private.key -out cert.pfx -certfile cert.ca_bundle

# RapidSSL:
openssl pkcs12 -export -in ServerCertificate.cer -inkey private.key -out cert.pfx -certfile My_CA_Bundle.ca-bundle


OpenSSL Command Line .CRT + .KEY + COMODORSADomainValidationSecureServerCA.crt + COMODORSAAddTrustCA.crt -> .PFX:
# Certificates issued after Jan 14th 2019, use this command:
openssl pkcs12 -export -in cert.crt -inkey private.key -out cert.pfx \
  -certfile SectigoRSADomainValidationSecureServerCA.crt -certfile USERTrustRSAAddTrustCA.crt

# Certificates issued before Jan 14th 2019, use this command:
openssl pkcs12 -export -in cert.crt -inkey private.key -out cert.pfx \
  -certfile COMODORSADomainValidationSecureServerCA.crt -certfile COMODORSAAddTrustCA.crt


OpenSSL Command Line .PFX -> .CRT / .KEY
openssl pkcs12 -in cert.pfx -nocerts -out cert.key
openssl pkcs12 -in cert.pfx -clcerts -nokeys -out cert.crt
openssl pkcs12 -in cert.pfx -nodes -nokeys -passin pass:mypassword -out ca_bundle.pem