Certificate Signing Request (CSR)
A PKCS#10 certificate signing request (PEM) with the subject and SAN, self-signed by the RSA key to prove key possession — for testing CSR parsers and certificate-authority intake flows.
-----BEGIN CERTIFICATE REQUEST-----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-----END CERTIFICATE REQUEST-----
Specifications
- Format
- PKCS#10 (PEM)
- Subject
- CN=sample.example
- Key
- RSA 2048
- Signature
- sha256WithRSA
- Sample Only
- true
What is a .csr file?
A CSR (Certificate Signing Request, PKCS#10) is a PEM-encoded request a party sends to a certificate authority to be issued a certificate. It contains the subject distinguished name and public key, self-signed with the matching private key to prove possession, but has no validity dates or issuer.
How to use this file
Use an example .csr to test CSR parsers, certificate-authority intake flows, and PKCS#10 decoders, or to verify subject and public-key extraction. Sample request only.
Related files
- keyEd25519 Private Key (PEM)An Ed25519 private key in PKCS#8 PEM, derived from a fixed seed — a published, sample-only modern elliptic-curve key for testing PEM parsers and Ed25519 tooling. Never use it for real.

- htpasswdhtpasswd (HTTP Basic Auth)An Apache/nginx .htpasswd file with two users hashed using the {SHA} scheme (Base64 SHA-1) — the sample passwords are documented in the file, for testing Basic-Auth credential parsers and hash identification.

- keyRSA 2048 Private Key (PEM)A 2048-bit RSA private key in unencrypted PKCS#8 PEM — a deliberately PUBLISHED, sample-only key for testing PEM key parsers and PKCS#8 decoders. Never use it for anything real.

- pubSSH Public Key (Ed25519)An OpenSSH-format Ed25519 public key (the shareable half of the key pair) — a single line of algorithm, Base64 key blob, and comment, for testing SSH public-key parsers and authorized_keys tooling.

- crtX.509 Certificate (.crt)The same self-signed certificate under the conventional .crt extension (PEM-encoded) — for testing trust-store importers and tools that key off the .crt extension. Sample only.

- derX.509 Certificate (DER)The binary DER encoding of the same certificate — for testing ASN.1/DER parsers, Java keystores, and DER-to-PEM converters. Published sample certificate, not a real identity.

Generated by generation/pki_security.py. Free for any use, no attribution required — license.