cryptoflex-tool is used to manipulate PKCS data structures on Schlumberger Cryptoflex smart cards. Users can create, list and read PINs and keys stored on the smart card. User PIN authentication is performed for those operations that require it.
--app-df num, -a numSpecifies the DF to operate in
--create-key-files arg, -c argCreates new RSA key files for arg keys
--create-pin-files id, -P idCreates new PIN file for CHVid
--exponent exp, -e expSpecifies the RSA exponent, exp, to use in key generation. The default value is 3.
--generate-key, -gGenerate a new RSA key pair
--key-num num, -k numSpecifies the key number to operate on. The default is key number 1.
--list-keys, -lLists all keys stored in a public key file
--modulus-length length, -m lengthSpecifies the modulus length to use in key generation. The default value is 1024.
--prkey-file id, -p idSpecifies the private key file id, id, to use
--pubkey-file id, -u idSpecifies the public key file id, id, to use
--read-keyReads a public key from the card, allowing the user to extract and store or use the public key
--reader num, -r numForces cryptoflex-tool to use reader number num for operations. The default is to use reader number 0, the first reader in the system.
--verbose, -vCauses cryptoflex-tool to be more verbose. Specify this flag several times to enable debug output in the opensc library.
--verify-pin, -VVerifies CHV1 before issuing commands