Encode a binary DER (.der/.cer) certificate into a Base64 string. Everything runs in your browser.
A DER file stores a certificate as raw binary bytes. Base64 encoding turns those bytes into an ASCII string that can be safely pasted into config files, JSON, YAML, or environment variables. This tool reads your binary DER, encodes the exact bytes to Base64 as a clean single line, or you can Base64-encode the whole PEM representation (including the -----BEGIN CERTIFICATE----- headers) which is what tools like Kubernetes secrets expect.
Enable "Base64-encode the whole PEM text" to produce the value used in kubectl create secret tls data fields; leave it off to get the raw DER bytes Base64 (the certificate body).
Convert and package keys for SSH, TLS, and keystore workflows.