Encode a .pem certificate or key into a Base64 string. Everything runs in your browser.
A PEM file is already Base64 - between the -----BEGIN----- markers. This tool gives you that Base64 as a clean single line (the DER bytes encoded), or you can Base64-encode the entire PEM file including its headers, which is what tools like Kubernetes secrets and some environment variables expect.
Enable "Base64-encode the whole PEM text" to produce the value used in kubectl create secret tls data fields; leave it off to get the raw body Base64 (equivalent to the DER bytes).
Convert and package keys for SSH, TLS, and keystore workflows.