Self-sign a Certificate Signing Request (.csr) with its private key and bundle the result into a password protected PKCS#12 (.pfx) archive. Files are processed securely on the server and deleted immediately.
Waiting for input.
A CSR on its own cannot become a keystore because it contains no certificate. This tool first self-signs the request with the matching private key using openssl x509 -req -signkey, then bundles the resulting certificate and the key into a PKCS#12 (.pfx) archive with openssl pkcs12 -export. The .pfx format is commonly imported into Windows/IIS. The certificate is self-signed and is intended for testing or internal use - use a CA-issued certificate for production.
Convert and package keys for SSH, TLS, and keystore workflows.