p11-kit

manages PKCS#11 modules

List modules

$ p11-kit list-modules

List tokens

$ p11-kit list-tokens

Show object info

$ p11-kit list-objects

Extract certificates

$ p11-kit extract --format=pem-bundle --filter=ca-anchors [output]

p11-kit [command] [options]

p11-kit manages PKCS#11 modules. Provides unified access to crypto tokens.
The tool configures module loading. Handles certificate extraction.

list-modules

List PKCS#11 modules.

list-tokens

List tokens.

list-objects

List objects.

extract

Extract certificates.

--format FORMAT

Output format.

--help

Display help information.

System configuration dependent. Used by many applications. Root for system changes.

p11-kit was created to unify PKCS#11 module management across applications.