xca -- Graphical certification authority<hr>
<a href="http://www.hohnstaedt.de/xca.html">http://www.hohnstaedt.de/xca.html</a><hr>
Xca is a graphical user interface to OpenSSL, RSA public keys,
certificates, signing requests and revokation lists.  The keys do have
an internal counter, counting its use to avoid a duplicate use of a key
for creating a certificate or request. The Keys are of course encrypted
in the db file.  Xca supports next to the usual PEM and DER format of
certificates the import and export of PKCS 12 (aka *.pfx) files and the
Certificate import from PKCS 7 files.  Certificates can be created by
self signing it, by signing it by an other (usually CA) certificate or
by signing a PKCS 10 request. Netscape SPKAC is supported since version
0.4.6. The validity dates and x509.v3 extensions can be adjusted to fit
ones needs. The use of multiple certificates in CA chains is supported
and a tree view of the certificates reflects the dependencies. The
application takes care to not create duplicate certificates by checking
the serial number(s) on import and creation of certificates.  Certificate
Templates can be used to preset the input dialog with reasonable values
and to simplify the process of creating certificates and requests.
Issued certificates can be revoked and the revokation list can be created
and exported. External revokation lists can be imported and examined.
</listing>