CERTUTIL CRLs

Certutil tasks for managing certificate revocation lists (CRL).

Syntax

CERTUTIL [-getcrl] [/?]

Parameters

delta (NT2003): Retrieves a delta CRL.
index_number (NT2003): Specifies the index identifier number.
length_days_hours (NT2003): Specifies the length of the CRL life in days and hours (DD:HH).; The expiration date is set to be one day and one hour from the time of publication to facilitate a daily publishing schedule.
output_file (NT2003): Specifies the file to which you want to send the output.

Switches

/? (NT2003): Display help.
-config machine\user (NT2003): Processes the operation by using the CA specified in the machine/user configuration string.; You must specify the machine or user in -config. Otherwise, the Select Certificate Authority dialog box appears and displays a list of all CAs that are available.; If you use "-config -", the operation is processed using the default CA.
-crl (NT2003): Publishes a new certificate revocation list (CRL).
-f (NT2003): Overwrites existing files or keys.
-getcrl (NT2003): Retrieves the certificate revocation list (CRL).; To perform this procedure, you must be a member of the Administrators group on the local computer or you must have been delegated the appropriate authority. If you do not have the appropriate authority, use -cainfo to retrieve CRLs.
-gmt (NT2003): Displays time as Greenwich mean time.
-seconds (NT2003): Displays time with seconds and milliseconds.
-split (NT2003): Splits the embedded Abstract Syntax Notation One (ASN.1) elements, and saves them to files.
-v (NT2003): Specifies verbose output.

Notes

none.

Examples

none.

Errorlevels

none.

Availability

External

Last Updated: 2003/07/28
Direct corrections or suggestions to: Rick Lively